Refactor GitHub Actions workflows: update build.yml for naming consistency and add release.yml for automated release process

pfhuillet · pfhuillet · commit 347b88c81723 · 2025-09-17T17:42:44.000+02:00
diff --git a/.github/workflows/4D.entitlements b/.github/workflows/4D.entitlements
@@ -0,0 +1,32 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>com.apple.security.automation.apple-events</key>
+	<true/>
+	<key>com.apple.security.cs.allow-dyld-environment-variables</key>
+	<true/>
+	<key>com.apple.security.cs.allow-jit</key>
+	<true/>
+	<key>com.apple.security.cs.allow-unsigned-executable-memory</key>
+	<true/>
+	<key>com.apple.security.cs.debugger</key>
+	<true/>
+	<key>com.apple.security.cs.disable-executable-page-protection</key>
+	<true/>
+	<key>com.apple.security.cs.disable-library-validation</key>
+	<true/>
+	<key>com.apple.security.device.audio-input</key>
+	<true/>
+	<key>com.apple.security.device.camera</key>
+	<true/>
+	<key>com.apple.security.personal-information.addressbook</key>
+	<true/>
+	<key>com.apple.security.personal-information.calendars</key>
+	<true/>
+	<key>com.apple.security.personal-information.location</key>
+	<true/>
+	<key>com.apple.security.personal-information.photos-library</key>
+	<true/>
+</dict>
+</plist>
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
@@ -1,18 +1,13 @@
-name: build
+name: Build
 
 on:
   push:
     paths-ignore: ['**.md', '.vscode/**','docs/**','pictures/**']
-    #branches:
-    #  - main
   pull_request:
     types: [opened, synchronize, reopened]
     paths-ignore: ['**.md', '.vscode/**','docs/**','pictures/**']
 
 env:
-  #TOOL4D_PRODUCT_LINE: 'vcs'
-  #TOOL4D_VERSION: 'vcs'
-  #TOOL4D_BUILDNUMBER : 'official'
   TOOL4D_PRODUCT_LINE: '20Rx'
   TOOL4D_VERSION: '20R10'
   TOOL4D_BUILDNUMBER : '100221'
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -0,0 +1,101 @@
+name: Release
+on: 
+  release:
+    types: [published]
+
+permissions:
+  contents: write
+  packages: write
+
+env:
+  TOOL4D_PRODUCT_LINE: '20Rx'
+  TOOL4D_VERSION: '20R10'
+  TOOL4D_BUILDNUMBER : '100221'
+
+
+jobs:
+  build:
+    name: "Build"
+    runs-on: [macOS]
+    steps:
+    - name: 📄 Checkout repository
+      uses: actions/checkout@v4
+      with:
+        lfs: true
+        # Disabling shallow clone is recommended for improving relevancy of reporting
+        fetch-depth: 0
+
+    - name: Checkout build4d-action
+      uses:  actions/checkout@v4
+      with: 
+        repository: 4d/build4d-action
+        token: ${{ secrets.GH_4D_ACTION_TOKEN }}
+        path: .github/actions/build4d-action
+
+    - name: Checkout tool4d-action
+      uses:  actions/checkout@v4
+      with: 
+        repository: 4d/tool4d-action
+        token: ${{ secrets.GH_4D_ACTION_TOKEN }}
+        path: .github/actions/tool4d-action
+          
+    
+    - name: 🏗️ Build ${{ github.event.repository.name }}
+      uses: ./.github/actions/build4d-action
+      with:
+        project: ${{ github.workspace }}/${{ github.event.repository.name }}/Project/${{ github.event.repository.name }}.4DProject
+        product-line: ${{env.TOOL4D_PRODUCT_LINE}}
+        version: ${{env.TOOL4D_VERSION}}
+        targets : all
+        #actions: "build,pack,sign,archive"
+        actions: "build,pack,archive"
+        build: ${{env.TOOL4D_BUILDNUMBER}}
+        token: ${{ secrets.TOOL4D_DL_TOKEN }}
+        ignore-warnings: true
+
+
+    #- name: Notarize
+    #  run: |
+    #    xcrun notarytool submit "${{ github.event.repository.name }}/build/${{ github.event.repository.name }}.zip" --keychain-profile "notary" --wait >> notary_tool.log
+    #    if grep -r "status: Accepted" "notary_tool.log"; then
+    #      echo "Notarize Success"
+    #      exit 0
+    #    else
+    #      echo "Notarize Failed"
+    #      exit 1
+    #    fi
+            
+    - name: Upload Artifact
+      if: github.event_name != 'pull_request'
+      uses: actions/upload-artifact@v4
+      with:
+        name: "${{ github.event.repository.name }}.zip"
+        path: "${{ github.event.repository.name }}/build/${{ github.event.repository.name }}.zip"
+        retention-days: 1
+        if-no-files-found: error
+  release:
+    needs: build
+    name: "Release Component"
+    runs-on: ubuntu-latest
+    steps:
+      - name: 📄 Checkout repository
+        uses: actions/checkout@v4
+        with:
+          lfs: true
+          # Disabling shallow clone is recommended for improving relevancy of reporting
+          fetch-depth: 0
+
+      - name: Download packages
+        uses: actions/download-artifact@v4
+        with:
+          name: "${{ github.event.repository.name }}.zip"
+          path: artifact
+
+      - name: Display Artifact Directory Content
+        run: ls -R artifact
+        
+      - name: 📦 release package
+        run: |
+          gh release upload ${{github.event.release.tag_name}} "${{github.workspace}}/artifact/${{ github.event.repository.name }}.zip"
+        env:
+          GITHUB_TOKEN: ${{ github.TOKEN }}
