Merge pull request #2845 from Microsoft/users/mg/xcode8m105

xcode 8 changes port to M105

Author: madhurig

Tasks/Common/ios-signing-common/ios-signing-common.ts

@@ -4,7 +4,7 @@ import Q = require('q');
 import tl = require('vsts-task-lib/task');
 import {ToolRunner} from 'vsts-task-lib/toolrunner';
 
-var userProvisioningProfilesPath = path.join(tl.getVariable('HOME'), 'Library', 'MobileDevice', 'Provisioning Profiles');
+var userProvisioningProfilesPath = tl.resolve(tl.getVariable('HOME'), 'Library', 'MobileDevice', 'Provisioning Profiles');
 
 /**
  * Creates a temporary keychain and installs the P12 cert in the temporary keychain
@@ -18,31 +18,26 @@ export async function installCertInTemporaryKeychain(keychainPath : string, keyc
     await deleteKeychain(keychainPath);
 
     //create keychain
-    var createKeychainCommand : ToolRunner =  tl.createToolRunner(tl.which('security', true));
-    createKeychainCommand.arg(['create-keychain', '-p', keychainPwd]);
-    createKeychainCommand.pathArg(keychainPath);
+    var createKeychainCommand : ToolRunner =  tl.tool(tl.which('security', true));
+    createKeychainCommand.arg(['create-keychain', '-p', keychainPwd, keychainPath]);
     await createKeychainCommand.exec();
 
     //update keychain settings
-    var keychainSettingsCommand : ToolRunner = tl.createToolRunner(tl.which('security', true));
-    keychainSettingsCommand.arg(['set-keychain-settings', '-lut', '7200']);
-    keychainSettingsCommand.pathArg(keychainPath);
+    var keychainSettingsCommand : ToolRunner = tl.tool(tl.which('security', true));
+    keychainSettingsCommand.arg(['set-keychain-settings', '-lut', '7200', keychainPath]);
     await keychainSettingsCommand.exec();
 
     //unlock keychain
     await unlockKeychain(keychainPath, keychainPwd);
 
     //import p12 cert into the keychain
-    var importP12Command : ToolRunner = tl.createToolRunner(tl.which('security', true));
-    importP12Command.arg('import');
-    importP12Command.pathArg(p12CertPath);
-    importP12Command.arg(['-P', p12Pwd, '-A', '-t', 'cert', '-f', 'pkcs12', '-k']);
-    importP12Command.pathArg(keychainPath);
+    var importP12Command : ToolRunner = tl.tool(tl.which('security', true));
+    importP12Command.arg(['import', p12CertPath, '-P', p12Pwd, '-A', '-t', 'cert', '-f', 'pkcs12', '-k', keychainPath]);
     await importP12Command.exec();
 
     //list the keychains to get current keychains in search path
     var listAllOutput : string;
-    var listAllCommand : ToolRunner = tl.createToolRunner(tl.which('security', true));
+    var listAllCommand : ToolRunner = tl.tool(tl.which('security', true));
     listAllCommand.arg(['list-keychain', '-d', 'user']);
     listAllCommand.on('stdout', function(data) {
         if(data) {
@@ -68,11 +63,11 @@ export async function installCertInTemporaryKeychain(keychainPath : string, keyc
         //login keychain is not in the search path,
         //this might have happened with the 2.1.21 version of Xcode task
         //add it back explicitly, this can be removed after a couple of sprints
-        allKeychainsArr.push(path.join(tl.getVariable('HOME'), 'Library', 'Keychains', 'login.keychain'));
+        allKeychainsArr.push(tl.resolve(tl.getVariable('HOME'), 'Library', 'Keychains', 'login.keychain'));
     }
 
     //add the temporary keychain to list path along with existing keychains
-    var listAddCommand : ToolRunner = tl.createToolRunner(tl.which('security', true));
+    var listAddCommand : ToolRunner = tl.tool(tl.which('security', true));
     listAddCommand.arg(['list-keychain', '-d', 'user', '-s',  keychainPath]);
     for(var i : number = 0; i < allKeychainsArr.length; i ++) {
         listAddCommand.arg(allKeychainsArr[i].trim().replace(/"/gm, ''));
@@ -81,7 +76,7 @@ export async function installCertInTemporaryKeychain(keychainPath : string, keyc
     await listAddCommand.exec();
 
     var listVerifyOutput : string;
-    var listVerifyCommand : ToolRunner = tl.createToolRunner(tl.which('security', true));
+    var listVerifyCommand : ToolRunner = tl.tool(tl.which('security', true));
     listVerifyCommand.arg(['list-keychain', '-d', 'user']);
     listVerifyCommand.on('stdout', function(data) {
         if(data) {
@@ -108,9 +103,8 @@ export async function installCertInTemporaryKeychain(keychainPath : string, keyc
  */
 export async function findSigningIdentity(keychainPath: string) {
     var signIdentity : string;
-    var findIdentityCmd : ToolRunner = tl.createToolRunner(tl.which('security', true));
-    findIdentityCmd.arg(['find-identity', '-v', '-p', 'codesigning']);
-    findIdentityCmd.pathArg(keychainPath);
+    var findIdentityCmd : ToolRunner = tl.tool(tl.which('security', true));
+    findIdentityCmd.arg(['find-identity', '-v', '-p', 'codesigning', keychainPath]);
     findIdentityCmd.on('stdout', function (data) {
         if (data) {
             var matches = data.toString().trim().match(/"(.+)"/g);
@@ -140,9 +134,8 @@ export async function getProvisioningProfileUUID(provProfilePath: string) {
 
     //find the provisioning profile UUID
     var provProfileDetails : string;
-    var getProvProfileDetailsCmd : ToolRunner = tl.createToolRunner(tl.which('security', true));
-    getProvProfileDetailsCmd.arg(['cms', '-D', '-i']);
-    getProvProfileDetailsCmd.pathArg(provProfilePath);
+    var getProvProfileDetailsCmd : ToolRunner = tl.tool(tl.which('security', true));
+    getProvProfileDetailsCmd.arg(['cms', '-D', '-i', provProfilePath]);
     getProvProfileDetailsCmd.on('stdout', function(data) {
         if(data) {
             if(provProfileDetails) {
@@ -165,9 +158,8 @@ export async function getProvisioningProfileUUID(provProfilePath: string) {
     //use PlistBuddy to figure out the UUID
     var provProfileUUID : string;
     var plist = tl.which('/usr/libexec/PlistBuddy', true);
-    var plistTool : ToolRunner = tl.createToolRunner(plist);
-    plistTool.arg(['-c', 'Print UUID']);
-    plistTool.pathArg(tmpPlist);
+    var plistTool : ToolRunner = tl.tool(plist);
+    plistTool.arg(['-c', 'Print UUID', tmpPlist]);
     plistTool.on('stdout', function (data) {
         if (data) {
             provProfileUUID = data.toString();
@@ -176,19 +168,16 @@ export async function getProvisioningProfileUUID(provProfilePath: string) {
     await plistTool.exec();
 
     //delete the temporary plist file
-    var deletePlistCommand : ToolRunner = tl.createToolRunner(tl.which('rm', true));
-    deletePlistCommand.arg('-f');
-    deletePlistCommand.pathArg(tmpPlist);
+    var deletePlistCommand : ToolRunner = tl.tool(tl.which('rm', true));
+    deletePlistCommand.arg(['-f', tmpPlist]);
     await deletePlistCommand.exec();
 
     if(provProfileUUID) {
         //copy the provisioning profile file to ~/Library/MobileDevice/Provisioning Profiles
         tl.mkdirP(userProvisioningProfilesPath); // Path may not exist if Xcode has not been run yet.
         var pathToProvProfile : string = getProvisioningProfilePath(provProfileUUID);
-        var copyProvProfileCmd : ToolRunner = tl.createToolRunner(tl.which('cp', true));
-        copyProvProfileCmd.arg('-f');
-        copyProvProfileCmd.pathArg(provProfilePath); //source
-        copyProvProfileCmd.pathArg(pathToProvProfile); //dest
+        var copyProvProfileCmd : ToolRunner = tl.tool(tl.which('cp', true));
+        copyProvProfileCmd.arg(['-f', provProfilePath, pathToProvProfile]);
         await copyProvProfileCmd.exec();
 
         return provProfileUUID;
@@ -197,15 +186,103 @@ export async function getProvisioningProfileUUID(provProfilePath: string) {
     }
 }
 
+
+/**
+ * Find the type of the provisioning profile - development, app-store or ad-hoc
+ * @param provProfilePath
+ * @returns {string} type
+ */
+export async function getProvisioningProfileType(provProfilePath: string) {
+    var provProfileType: string;
+    try {
+        //find the provisioning profile details
+        var provProfileDetails:string;
+        var getProvProfileDetailsCmd:ToolRunner = tl.tool(tl.which('security', true));
+        getProvProfileDetailsCmd.arg(['cms', '-D', '-i', provProfilePath]);
+        getProvProfileDetailsCmd.on('stdout', function (data) {
+            if (data) {
+                if (provProfileDetails) {
+                    provProfileDetails = provProfileDetails.concat(data.toString().trim().replace(/[,\n\r\f\v]/gm, ''));
+                } else {
+                    provProfileDetails = data.toString().trim().replace(/[,\n\r\f\v]/gm, '');
+                }
+            }
+        })
+        await getProvProfileDetailsCmd.exec();
+
+        if (provProfileDetails) {
+            //write the provisioning profile to a plist
+            var tmpPlist = '_xcodetasktmp.plist';
+            fs.writeFileSync(tmpPlist, provProfileDetails);
+        } else {
+            throw tl.loc('ProvProfileDetailsNotFound', provProfilePath);
+        }
+
+        //get ProvisionsAllDevices - this will exist for enterprise profiles
+        var provisionsAllDevices: string = await printFromPlist('ProvisionsAllDevices', tmpPlist);
+        tl.debug('provisionsAllDevices = ' + provisionsAllDevices);
+        if(provisionsAllDevices && provisionsAllDevices.toLowerCase() === 'true') {
+            //ProvisionsAllDevices = true in enterprise profiles
+            provProfileType = 'enterprise';
+        } else {
+            var getTaskAllow: string = await printFromPlist('Entitlements:get-task-allow', tmpPlist);
+            tl.debug('getTaskAllow = ' + getTaskAllow);
+            if (getTaskAllow && getTaskAllow.trim().toLowerCase() === 'true') {
+                //get-task-allow = true means it is a development profile
+                provProfileType = 'development';
+            } else {
+                var provisionedDevices:string = await printFromPlist('ProvisionedDevices', tmpPlist);
+                if (!provisionedDevices) {
+                    // no provisioned devices for non-development profile means it is an app-store profile
+                    provProfileType = 'app-store';
+                } else {
+                    // non-development profile with provisioned devices - use ad-hoc
+                    provProfileType = 'ad-hoc';
+                }
+            }
+        }
+
+        //delete the temporary plist file
+        var deletePlistCommand:ToolRunner = tl.tool(tl.which('rm', true));
+        deletePlistCommand.arg(['-f', tmpPlist]);
+        await deletePlistCommand.exec();
+    } catch (err) {
+        tl.debug(err);
+    }
+
+    return provProfileType;
+}
+
+async function printFromPlist(itemToPrint: string, plistPath: string) {
+    var plist = tl.which('/usr/libexec/PlistBuddy', true);
+    var plistTool:ToolRunner = tl.tool(plist);
+    plistTool.arg(['-c', 'Print ' + itemToPrint, plistPath]);
+
+    var printedValue: string;
+    plistTool.on('stdout', function (data) {
+        if (data) {
+            printedValue = data.toString();
+        }
+    });
+
+    try {
+        await plistTool.exec();
+    } catch (err) {
+        tl.debug('Exception when looking for ' + itemToPrint + ' in plist.');
+        printedValue = null;
+    }
+
+    return printedValue;
+}
+
 /**
  * Delete specified iOS keychain
  * @param keychainPath
  */
 export async function deleteKeychain(keychainPath: string) {
     if (fs.existsSync(keychainPath)) {
-        var deleteKeychainCommand : ToolRunner = tl.createToolRunner(tl.which('security', true));
-        deleteKeychainCommand.arg('delete-keychain');
-        deleteKeychainCommand.pathArg(keychainPath);
+        var deleteKeychainCommand : ToolRunner = tl.tool(tl.which('security', true));
+        deleteKeychainCommand.arg(['delete-keychain', keychainPath]);
         await deleteKeychainCommand.exec();
     }
 }
@@ -217,9 +294,8 @@ export async function deleteKeychain(keychainPath: string) {
  */
 export async function unlockKeychain(keychainPath: string, keychainPwd: string) {
     //unlock the keychain
-    var unlockCommand : ToolRunner = tl.createToolRunner(tl.which('security', true));
-    unlockCommand.arg(['unlock-keychain', '-p', keychainPwd]);
-    unlockCommand.pathArg(keychainPath);
+    var unlockCommand : ToolRunner = tl.tool(tl.which('security', true));
+    unlockCommand.arg(['unlock-keychain', '-p', keychainPwd, keychainPath]);
     await unlockCommand.exec();
 }
 
@@ -233,23 +309,22 @@ export async function deleteProvisioningProfile(uuid: string) {
     if(fs.existsSync(provProfilePath)) {
         tl.warning('Deleting provisioning profile: ' + provProfilePath);
 
-        var deleteProfileCommand : ToolRunner = tl.createToolRunner(tl.which('rm', true));
-        deleteProfileCommand.arg('-f');
-        deleteProfileCommand.pathArg(provProfilePath);
+        var deleteProfileCommand : ToolRunner = tl.tool(tl.which('rm', true));
+        deleteProfileCommand.arg(['-f', provProfilePath]);
         await deleteProfileCommand.exec();
     }
 }
 
 function getProvisioningProfilePath(uuid: string) : string {
-    return path.join(userProvisioningProfilesPath, uuid.trim().concat('.mobileprovision'));
+    return tl.resolve(userProvisioningProfilesPath, uuid.trim().concat('.mobileprovision'));
 }
 
 /**
  * Gets the path to the iOS default keychain
  */
 export async function getDefaultKeychainPath() {
     var defaultKeychainPath : string;
-    var getKeychainCmd : ToolRunner = tl.createToolRunner(tl.which('security', true));
+    var getKeychainCmd : ToolRunner = tl.tool(tl.which('security', true));
     getKeychainCmd.arg('default-keychain');
     getKeychainCmd.on('stdout', function (data) {
         if (data) {