-
-
Notifications
You must be signed in to change notification settings - Fork 2
130 lines (109 loc) · 4.14 KB
/
build-mac.yml
File metadata and controls
130 lines (109 loc) · 4.14 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
name: Build and Package for Mac
on:
push:
tags:
- 'v*.*.*'
workflow_dispatch:
inputs:
version:
description: 'Version number (e.g., 1.0.0)'
required: true
type: string
jobs:
mac:
name: macos
runs-on: macos-14
permissions:
contents: write
env:
APPLE_API_ISSUER: ${{ secrets.APPLE_API_ISSUER }}
APPLE_API_KEY_ID: ${{ secrets.APPLE_API_KEY_ID }}
APPLE_API_KEY_BASE64: ${{ secrets.APPLE_API_KEY_BASE64 }}
CSC_KEY_PASSWORD: ${{ secrets.APPLE_CERTIFICATES_BUNDLE_PASSWORD }}
steps:
- name: Checkout repository
uses: actions/checkout@v4
- name: Set up Node.js
uses: actions/setup-node@v4
with:
node-version: '20'
- name: Install dependencies
run: npm ci
- name: Determine version variables
env:
GITHUB_REF: ${{ github.ref }}
VERSION_INPUT: ${{ github.event.inputs.version }}
run: |
if [ -n "$VERSION_INPUT" ]; then
# Manual trigger with version input
VERSION="$VERSION_INPUT"
else
# Tag trigger
VERSION="${GITHUB_REF#refs/tags/v}"
fi
VERSION_WITHOUT_PRERELEASE=$(echo "$VERSION" | sed 's/-.*//')
echo "VERSION=$VERSION" >> $GITHUB_ENV
echo "VERSION_WITHOUT_PRERELEASE=$VERSION_WITHOUT_PRERELEASE" >> $GITHUB_ENV
echo "Determined VERSION: $VERSION"
echo "Determined VERSION_WITHOUT_PRERELEASE: $VERSION_WITHOUT_PRERELEASE"
- name: Set version from tag or input
run: npm version "$VERSION" --no-git-tag-version --allow-same-version
- name: Build
run: npm run build
- name: Install Apple Code Signing Certificate
env:
APPLE_CERTIFICATES_BUNDLE_BASE64: ${{ secrets.APPLE_CERTIFICATES_BUNDLE_BASE64 }}
APPLE_CERTIFICATES_BUNDLE_PATH: ${{ runner.temp }}/apple_certificates_bundle.p12
run: |
echo -n "$APPLE_CERTIFICATES_BUNDLE_BASE64" | base64 --decode -o $APPLE_CERTIFICATES_BUNDLE_PATH
echo "CSC_LINK=$APPLE_CERTIFICATES_BUNDLE_PATH" >> $GITHUB_ENV
- name: Install Apple API key
run: |
mkdir -p ~/private_keys/
KEY_PATH=~/private_keys/AuthKey_$APPLE_API_KEY_ID.p8
echo -n "$APPLE_API_KEY_BASE64" | base64 --decode -o $KEY_PATH
echo "APPLE_API_KEY=$KEY_PATH" >> $GITHUB_ENV
- name: Install Mac Profiles
env:
APPLE_APPLE_DEVELOPMENT_PROFILE: ${{ secrets.APPLE_APPLE_DEVELOPMENT_PROFILE }}
APPLE_MAC_APP_STORE_PROFILE: ${{ secrets.APPLE_MAC_APP_STORE_PROFILE }}
run: |
echo -n "$APPLE_APPLE_DEVELOPMENT_PROFILE" | base64 -d -o build/AppleDevelopment.provisionprofile
echo -n "$APPLE_MAC_APP_STORE_PROFILE" | base64 -d -o build/MacAppStore.provisionprofile
- name: Package (Mac)
env:
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
run: npm run package:mac:publish
- name: Set version from tag or input (without pre-release)
run: npm version "$VERSION_WITHOUT_PRERELEASE" --no-git-tag-version --allow-same-version
- name: Package (Mac App Store)
env:
GITHUB_RUN_NUMBER: ${{ github.run_number }}
run: |
echo "Packaging for Mac App Store..."
npm run package:mac:store
- name: Submit to App Store Connect
continue-on-error: true
run: |
echo "Submitting to App Store Connect..."
PKG_FILE=$(find dist -name "*.pkg" -type f | head -1)
if [[ -z "$PKG_FILE" ]]; then
echo "Error: No .pkg file found in dist directory"
exit 1
fi
echo "Found package: $PKG_FILE"
xcrun altool \
--upload-app \
--file "$PKG_FILE" \
--type macos \
--apiKey "$APPLE_API_KEY_ID" \
--apiIssuer "$APPLE_API_ISSUER" \
--output-format xml \
--show-progress
- name: Upload artifacts
uses: actions/upload-artifact@v4
with:
name: Mac App Store Artifacts
retention-days: 60
path: |
dist/**/*.pkg