Hi,
Our Company wants code signing enabled for all code and we use on-prem Appian. Is there any way this is possible in Appian.
Discussion posts and replies are publicly visible
What do you mean by code signing?
could you please explain ?
By "code signing" you mean a method by which you can establish if the code has been tampered with, perhaps between environments?"
Do you mean version controlling ?
Yes, currently we just import and export the zip file between environments. Our company also want to do cyber ark vaulting of passwords that are currently stored in constants within Appian. Is that possible in Appian.
Code signing definition -Code signing is a method of putting a digital signature on a program, file, software update or executable, so that its authenticity and integrity can be verified upon installation and execution.
Basically there is an encryption key and the authenticity is verified before code execution.
It could be possible if you have your own CI/CD pipeline to generate a props file on the fly with secrets coming from your vault. But it is not possible if you are using compare and deploy.
Code signing is a method of putting a digital signature on a program, file, software update or executable, so that its authenticity and integrity can be verified upon installation and execution. The digital signature on the package will assure that the binary contents of the package are not altered in any way.