Create signed windows builds #16

	name: Continuous Deployment

	on:
	pull_request:
	push:
	branches:
	- main

	jobs:
	build-windows:
	runs-on: windows-latest
	steps:
	- uses: actions/checkout@v4

	- name: Install Node.js
	uses: actions/setup-node@v3
	with:
	node-version: 20
	cache: npm

	- name: Install dependencies
	run: npm ci

	- name: Install AzureSignTool
	run: dotnet tool install --global AzureSignTool

	- name: Setup tmate session
	uses: mxschmitt/action-tmate@v3
	with:
	limit-access-to-actor: true

	- uses: azure/login@v1
	with:
	creds: ${{ secrets.TOOLS__AZURE_CREDENTIALS }}

	- name: Set Azure token on environment
	run: \|
	$az_token=$(az account get-access-token --scope https://vault.azure.net/.default --query accessToken --output tsv)
	echo "::add-mask::$az_token"
	echo "AZURE_TOKEN=$az_token" \| Out-File -FilePath $env:GITHUB_ENV -Encoding utf8 -Append

	- name: Build Electron app
	run: npm run build:win
	env:
	AZURE_KEY_VAULT_APPLICATION_ID: ${{ secrets.AZURE_KEY_VAULT_APPLICATION_ID }}
	AZURE_KEY_VAULT_CLIENT_SECRET: ${{ secrets.AZURE_KEY_VAULT_CLIENT_SECRET }}
	AZURE_KEY_VAULT_URL: ${{ secrets.AZURE_KEY_VAULT_URL }}

Provide feedback