From 17c3726e1dd013a9aa175893a4ad61b2895df2e6 Mon Sep 17 00:00:00 2001
From: Connor Yoh <connor@stirlingpdf.com>
Date: Wed, 9 Jul 2025 16:45:48 +0100
Subject: [PATCH] Sign Jar First for mac

---
 .github/workflows/tauri-test.yml | 18 ++++++++++++++++--
 1 file changed, 16 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/tauri-test.yml b/.github/workflows/tauri-test.yml
index 6a0bfbbda..81bce92dc 100644
--- a/.github/workflows/tauri-test.yml
+++ b/.github/workflows/tauri-test.yml
@@ -223,8 +223,22 @@ jobs:
           echo "CERT_ID=$CERT_ID" >> $GITHUB_ENV
           echo "Certificate imported."
 
-      
-      - name: Build Tauri app (test mode)
+      - name: codesign JAR
+        if: matrix.platform == 'macos-latest'
+        env:          
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          APPLE_CERTIFICATE: ${{ secrets.APPLE_CERTIFICATE }}
+          APPLE_CERTIFICATE_PASSWORD: ${{ secrets.APPLE_CERTIFICATE_PASSWORD }}
+          APPLE_SIGNING_IDENTITY: ${{ env.CERT_ID }}
+          APPLE_ID: ${{ secrets.APPLE_ID }}
+          APPLE_ID_PASSWORD: ${{ secrets.APPLE_ID_PASSWORD }}
+          APPLE_PASSWORD: ${{ secrets.APPLE_ID_PASSWORD }}
+          APPLE_TEAM_ID: ${{ secrets.APPLE_TEAM_ID }} 
+        run: |
+          echo "Signing JAR..."
+          codesign --deep --force --verify --verbose --sign "$CERT_ID" ./src-tauri/libs/stirling-pdf*
+          echo "jar signed successfully."
+      - name: Build Tauri app 
         uses: tauri-apps/tauri-action@v0
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}