Personally, we have a bunch of engineers and don't want any of them having direct access to the keystore. We don't keep it on the CI server because the machine is not in a secure firewall zone. You have to two-factor authenticate with a dedicated signing service which has the key and password on an encrypted filesystem.
On Mon, Sep 22, 2014 at 9:44 AM, Artem Zinnatullin < [email protected]> wrote: > Why not to produce production-signed builds from CI server? > > -- > You received this message because you are subscribed to the Google Groups > "adt-dev" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "adt-dev" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
