The
codesign
utility uses standard keychain APIs to access the digital identity it uses for signing, so it should be compatible with hardware tokens that integrate with the keychain (this presumes you have some way to load the Apple-issued certificate on to the hardware token).
If yes, please describe the process as well.
I don’t have any direct experience with this, alas. However, the usual setup for hardware tokens is that they appear as a keychain, so if your token is configured correctly, you shouldn’t need to do anything special on the
codesign
side of things. That is, you’d just pass a string that identifies the digital identity to
codesign
in the same way you currently do (see the
Signing Identities section of
codesign
man page).
Share and Enjoy
—
Quinn “The Eskimo!”
Apple Developer Relations, Developer Technical Support, Core OS/Hardware
let myEmail = "eskimo" + "1" + "@apple.com"