Build AppFlowy iOS #240

Workflow file for this run

	name: Build AppFlowy iOS

	on:
	workflow_dispatch:
	inputs:
	repo:
	description: "Repo"
	required: true
	default: "AppFlowy-IO/AppFlowy"
	branch:
	description: "Branch"
	required: true
	default: "main"
	build_name:
	description: "Build Version (it should match the version in pubspec.yaml)"
	required: true
	default: "0.9.7"
	build_number:
	description: "Build Number (it should be unique)"
	required: true
	default: "1"
	internal_build:
	type: choice
	description: "Internal Build Type (1 for internal, 0 for external)"
	required: true
	default: "1"
	options:
	- "0"
	- "1"
	- "2"
	workflow_call:
	inputs:
	repo:
	description: "Repo"
	required: true
	type: string
	branch:
	description: "Branch"
	required: true
	type: string
	build_name:
	description: "Build Version"
	required: true
	type: string
	build_number:
	description: "Build Number"
	required: true
	type: string
	internal_build:
	description: "Internal Build Type"
	required: true
	type: string
	upload_url:
	description: "Upload URL for release assets"
	required: false
	type: string

	env:
	FLUTTER_VERSION: "3.27.4"
	RUST_TOOLCHAIN: "1.85.0"

	jobs:
	build:
	strategy:
	fail-fast: true
	matrix:
	os: [macos-14]
	include:
	- target: aarch64-apple-ios
	runs-on: ${{ matrix.os }}

	steps:
	- name: Checkout source code
	uses: actions/checkout@v2
	with:
	repository: ${{ inputs.repo }}
	ref: ${{ inputs.branch }}
	token: ${{ secrets.PRIVATE_REPO_TOKEN }}

	- uses: maxim-lobanov/setup-xcode@v1
	with:
	xcode-version: latest-stable

	- name: Install the Apple certificate and provisioning profile
	env:
	IOS_CERTIFICATE_BASE64: ${{ secrets.IOS_CERTIFICATE_BASE64 }}
	P12_PASSWORD: ${{ secrets.P12_PASSWORD }}
	IOS_PROVISION_PROFILE_BASE64: ${{ secrets.IOS_PROVISION_PROFILE_BASE64 }}
	IOS_WIDGET_PROVISION_PROFILE_BASE64: ${{ secrets.IOS_WIDGET_PROVISION_PROFILE_BASE64 }}
	IOS_SHARE_PROVISION_PROFILE_BASE64: ${{ secrets.IOS_SHARE_PROVISION_PROFILE_BASE64 }}
	IOS_KEYCHAIN_PASSWORD: ${{ secrets.IOS_KEYCHAIN_PASSWORD }}
	run: \|
	# create variables
	CERTIFICATE_PATH=$RUNNER_TEMP/build_certificate.p12
	PP_PATH=$RUNNER_TEMP/build_pp.mobileprovision
	WPP_PATH=$RUNNER_TEMP/build_wpp.mobileprovision
	SPP_PATH=$RUNNER_TEMP/build_spp.mobileprovision
	KEYCHAIN_PATH=$RUNNER_TEMP/app-signing.keychain-db

	# import certificate and provisioning profile from secrets
	echo -n "$IOS_CERTIFICATE_BASE64" \| base64 --decode -o $CERTIFICATE_PATH
	echo -n "$IOS_PROVISION_PROFILE_BASE64" \| base64 --decode -o $PP_PATH
	echo -n "$IOS_WIDGET_PROVISION_PROFILE_BASE64" \| base64 --decode -o $WPP_PATH
	echo -n "$IOS_SHARE_PROVISION_PROFILE_BASE64" \| base64 --decode -o $SPP_PATH

	# create temporary keychain
	security create-keychain -p "$IOS_KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
	security set-keychain-settings -lut 21600 $KEYCHAIN_PATH
	security unlock-keychain -p "$IOS_KEYCHAIN_PASSWORD" $KEYCHAIN_PATH

	# import certificate to keychain
	security import $CERTIFICATE_PATH -P "$P12_PASSWORD" -A -t cert -f pkcs12 -k $KEYCHAIN_PATH
	security list-keychain -d user -s $KEYCHAIN_PATH

	# apply provisioning profile
	mkdir -p ~/Library/MobileDevice/Provisioning\ Profiles
	cp $PP_PATH ~/Library/MobileDevice/Provisioning\ Profiles
	cp $WPP_PATH ~/Library/MobileDevice/Provisioning\ Profiles
	cp $SPP_PATH ~/Library/MobileDevice/Provisioning\ Profiles

	- name: Install Rust toolchain
	id: rust_toolchain
	uses: actions-rs/toolchain@v1
	with:
	toolchain: ${{ env.RUST_TOOLCHAIN }}
	target: ${{ matrix.target }}
	override: true
	profile: minimal

	- name: Install flutter
	id: flutter
	uses: subosito/flutter-action@v2
	with:
	channel: "stable"
	flutter-version: ${{ env.FLUTTER_VERSION }}
	cache: true

	- uses: davidB/rust-cargo-make@v1
	with:
	version: "0.37.5"

	- name: Install prerequisites
	working-directory: frontend
	run: \|
	rustup target install aarch64-apple-ios
	cargo install duckscript_cli --force --locked
	cargo install cargo-lipo --force --locked
	cargo make appflowy-flutter-deps-tools
	shell: bash

	- name: Generate env file
	working-directory: frontend/appflowy_flutter
	run: \|
	echo "INTERNAL_BUILD=${{ inputs.internal_build }}" >> .env
	echo "SENTRY_DSN=${{ secrets.SENTRY_DSN }}" >> .env
	shell: bash

	- name: Configure Git credentials for Cargo
	run: \|
	git config --global credential.helper store
	echo "https://${{ secrets.ADMIN_GITHUB_TOKEN }}:x-oauth-basic@github.com" > ~/.git-credentials

	- name: Build AppFlowy
	working-directory: frontend
	run: \|
	export CARGO_FEATURE_NO_NEON=1

	cargo make --profile production-ios-arm64 appflowy-core-dev-ios
	cargo make --profile production-ios-arm64 code_generation

	cd appflowy_flutter
	flutter build ipa --build-name ${{ inputs.build_name }} --build-number ${{ inputs.build_number }} --split-debug-info=./debug_info --obfuscate
	- name: Upload ipa
	uses: actions/upload-artifact@v4
	with:
	name: AppFlowy-${{ inputs.build_name }}.xcarchive
	path: frontend/appflowy_flutter/build/ios/archive/Runner.xcarchive

	- name: Upload debug symbols
	uses: actions/upload-artifact@v4
	with:
	name: AppFlowy-${{ inputs.build_name }}-ios-debug-symbols
	path: frontend/appflowy_flutter/debug_info

	- name: Upload IPA to Release
	if: inputs.upload_url != ''
	run: \|
	# First, we need to export the IPA from the xcarchive
	xcodebuild -exportArchive \
	-archivePath "frontend/appflowy_flutter/build/ios/archive/Runner.xcarchive" \
	-exportPath "frontend/appflowy_flutter/build/ios/ipa" \
	-exportOptionsPlist "frontend/appflowy_flutter/ios/ExportOptions.plist" \|\| {
	echo "Warning: IPA export failed. Uploading xcarchive instead."
	# If IPA export fails, upload the xcarchive
	cd frontend/appflowy_flutter/build/ios/archive
	zip -r "AppFlowy-${{ inputs.build_name }}.xcarchive.zip" Runner.xcarchive

	filename="AppFlowy-${{ inputs.build_name }}.xcarchive.zip"
	filepath="AppFlowy-${{ inputs.build_name }}.xcarchive.zip"

	# URL encode the filename
	encoded_filename=$(echo -n "$filename" \| jq -sRr @uri)

	# Remove the {?name,label} template from upload URL if present
	upload_url=$(echo "${{ inputs.upload_url }}" \| sed 's/{[^}]*}//g')

	echo "Uploading $filename to release..."

	curl -L \
	-X POST \
	-H "Accept: application/vnd.github.v3+json" \
	-H "Authorization: token ${{ secrets.GITHUB_TOKEN }}" \
	-H "Content-Type: application/octet-stream" \
	--data-binary @"$filepath" \
	"${upload_url}?name=${encoded_filename}" \
	--fail-with-body
	exit 0
	}

	# If we get here, IPA export succeeded
	filename="AppFlowy-${{ inputs.build_name }}.ipa"
	filepath="frontend/appflowy_flutter/build/ios/ipa/Runner.ipa"

	# Rename the IPA file
	mv "$filepath" "frontend/appflowy_flutter/build/ios/ipa/$filename"
	filepath="frontend/appflowy_flutter/build/ios/ipa/$filename"

	# URL encode the filename
	encoded_filename=$(echo -n "$filename" \| jq -sRr @uri)

	# Remove the {?name,label} template from upload URL if present
	upload_url=$(echo "${{ inputs.upload_url }}" \| sed 's/{[^}]*}//g')

	echo "Uploading $filename to release..."

	curl -L \
	-X POST \
	-H "Accept: application/vnd.github.v3+json" \
	-H "Authorization: token ${{ secrets.GITHUB_TOKEN }}" \
	-H "Content-Type: application/octet-stream" \
	--data-binary @"$filepath" \
	"${upload_url}?name=${encoded_filename}" \
	--fail-with-body

	- name: Setup Sentry CLI
	uses: mathieu-bour/setup-sentry-cli@v1
	with:
	version: latest
	token: ${{ SECRETS.SENTRY_TOKEN }}
	organization: appflowy
	project: appflowy

	- name: Upload symbols to Sentry
	run: sentry-cli debug-files upload -o appflowy -p appflowy frontend/appflowy_flutter/build

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Build AppFlowy iOS #240

Workflow file

Build AppFlowy iOS #240

Uh oh!

Workflow file for this run