diff --git a/.github/workflows/ios.yml b/.github/workflows/ios.yml new file mode 100644 index 00000000..a1249447 --- /dev/null +++ b/.github/workflows/ios.yml @@ -0,0 +1,66 @@ +name: Build source code on iOS + +on: + push: + branches: + - main + pull_request: + workflow_dispatch: + +jobs: + build_ios: + runs-on: macOS-latest + steps: + - uses: actions/checkout@v5 + - name: Use Node.js 20 + uses: actions/setup-node@v4 + with: + node-version: 24 + cache: npm + + - name: Install dependencies + id: install_code + run: npm ci + + - name: Build + id: build_code + run: npm run build -- --configuration production + + - uses: actions/cache@v3 + with: + path: ios/App/Pods + key: ${{ runner.os }}-pods-${{ hashFiles('**/Podfile.lock') }} + restore-keys: | + ${{ runner.os }}-pods- + + - name: Sync + id: sync_code + run: npx cap sync + + - uses: ruby/setup-ruby@v1 + with: + ruby-version: '3.2' + bundler-cache: true + working-directory: fastlane + + - uses: maierj/fastlane-action@v3.1.0 + env: + APP_STORE_CONNECT_TEAM_ID: ${{ secrets.APP_STORE_CONNECT_TEAM_ID }} + BUNDLE_IDENTIFIER: ${{ secrets.BUNDLE_IDENTIFIER }} + BUILD_CERTIFICATE_BASE64: ${{ secrets.BUILD_CERTIFICATE_BASE64 }} + BUILD_PROVISION_PROFILE_BASE64: ${{ secrets.BUILD_PROVISION_PROFILE_BASE64 }} + APPLE_KEY_ID: ${{ secrets.APPLE_KEY_ID }} + APPLE_ISSUER_ID: ${{ secrets.APPLE_ISSUER_ID }} + APPLE_KEY_CONTENT: ${{ secrets.APPLE_KEY_CONTENT }} + P12_PASSWORD: ${{ secrets.P12_PASSWORD }} + APPLE_PROFILE_NAME: ${{ secrets.APPLE_PROFILE_NAME }} + with: + lane: ios beta + subdirectory: fastlane + + - name: Upload release bundle + uses: actions/upload-artifact@v4 + with: + name: ios-release + path: ./App.ipa + retention-days: 10 diff --git a/fastlane/Fastfile b/fastlane/Fastfile new file mode 100644 index 00000000..b860a908 --- /dev/null +++ b/fastlane/Fastfile @@ -0,0 +1,139 @@ +platform :ios do + desc 'Export ipa and submit to TestFlight' + lane :beta do + keychain_info = { keychain_name: "ios-build-#{Time.now.to_i}.keychain", keychain_password: SecureRandom.uuid } + + begin + setup_signing(keychain_info) + bump_build_number + build_app_with_signing(keychain_info) + submit_to_testflight + ensure + cleanup_keychain(keychain_info) + end + end + + private_lane :setup_signing do |options| + create_keychain( + name: options[:keychain_name], + password: options[:keychain_password], + unlock: true, + timeout: 0, + lock_when_sleeps: false, + add_to_search_list: true + ) + import_cert(options) + install_profile + update_project_settings + end + + lane :bump_build_number do + file = File.read('../package.json') + data_hash = JSON.parse(file) + api_key = app_store_connect_api_key( + key_id: ENV['APPLE_KEY_ID'], + issuer_id: ENV['APPLE_ISSUER_ID'], + key_content: ENV['APPLE_KEY_CONTENT'], + is_key_content_base64: true, + duration: 1200, + in_house: false + ) + build_num = app_store_build_number( + api_key: api_key, + app_identifier: ENV['BUNDLE_IDENTIFIER'], + live: false + ) + build_num = build_num + 1 + UI.message("Bumped build number to #{build_num}") + increment_build_number( + build_number: build_num, + xcodeproj: "./ios/App/App.xcodeproj", + skip_info_plist: true + ) + end + + private_lane :import_cert do |options| + cert_path = "#{Dir.tmpdir}/build_certificate.p12" + File.write(cert_path, Base64.decode64(ENV['BUILD_CERTIFICATE_BASE64'])) + import_certificate( + certificate_path: cert_path, + certificate_password: ENV['P12_PASSWORD'] || "", + keychain_name: options[:keychain_name], + keychain_password: options[:keychain_password], + log_output: true + ) + File.delete(cert_path) + end + + private_lane :cleanup_keychain do |options| + delete_keychain( + name: options[:keychain_name] + ) + end + + private_lane :install_profile do + profile_path = "#{Dir.tmpdir}/build_pp.mobileprovision" + File.write(profile_path, Base64.decode64(ENV['BUILD_PROVISION_PROFILE_BASE64'])) + UI.user_error!("Failed to create provisioning profile at #{profile_path}") unless File.exist?(profile_path) + ENV['PROVISIONING_PROFILE_PATH'] = profile_path + install_provisioning_profile(path: profile_path) + File.delete(profile_path) + end + + private_lane :update_project_settings do + update_code_signing_settings( + use_automatic_signing: false, + path: "./ios/App/App.xcodeproj", + code_sign_identity: "iPhone Distribution", + profile_name: ENV['APPLE_PROFILE_NAME'], + bundle_identifier: ENV['BUNDLE_IDENTIFIER'], + team_id: ENV['APP_STORE_CONNECT_TEAM_ID'] + ) + update_project_team( + path: "./ios/App/App.xcodeproj", + teamid: ENV['APP_STORE_CONNECT_TEAM_ID'] + ) + end + + private_lane :build_app_with_signing do |options| + unlock_keychain( + path: options[:keychain_name], + password: options[:keychain_password], + set_default: false + ) + build_app( + workspace: "./ios/App/App.xcworkspace", + scheme: "PyCon US", + configuration: "Release", + export_method: "app-store", + output_name: "App.ipa", + export_options: { + provisioningProfiles: { + ENV['BUNDLE_IDENTIFIER'] => ENV['APPLE_PROFILE_NAME'] + } + }, + xcargs: "-verbose", + buildlog_path: "./build_logs", + export_xcargs: "-allowProvisioningUpdates", + ) + end + +# private_lane :submit_to_testflight do +# api_key = app_store_connect_api_key( +# key_id: ENV['APPLE_KEY_ID'], +# issuer_id: ENV['APPLE_ISSUER_ID'], +# key_content: ENV['APPLE_KEY_CONTENT'], +# is_key_content_base64: true, +# duration: 1200, +# in_house: false +# ) +# pilot( +# api_key: api_key, +# skip_waiting_for_build_processing: true, +# skip_submission: true, +# distribute_external: false, +# notify_external_testers: false, +# ipa: "./App.ipa" +# ) +# end +end diff --git a/fastlane/Gemfile b/fastlane/Gemfile new file mode 100644 index 00000000..7a118b49 --- /dev/null +++ b/fastlane/Gemfile @@ -0,0 +1,3 @@ +source "https://rubygems.org" + +gem "fastlane" diff --git a/fastlane/Gemfile.lock b/fastlane/Gemfile.lock new file mode 100644 index 00000000..ea111bd7 --- /dev/null +++ b/fastlane/Gemfile.lock @@ -0,0 +1,229 @@ +GEM + remote: https://rubygems.org/ + specs: + CFPropertyList (3.0.7) + base64 + nkf + rexml + addressable (2.8.7) + public_suffix (>= 2.0.2, < 7.0) + artifactory (3.0.17) + atomos (0.1.3) + aws-eventstream (1.4.0) + aws-partitions (1.1175.0) + aws-sdk-core (3.234.0) + aws-eventstream (~> 1, >= 1.3.0) + aws-partitions (~> 1, >= 1.992.0) + aws-sigv4 (~> 1.9) + base64 + bigdecimal + jmespath (~> 1, >= 1.6.1) + logger + aws-sdk-kms (1.115.0) + aws-sdk-core (~> 3, >= 3.234.0) + aws-sigv4 (~> 1.5) + aws-sdk-s3 (1.201.0) + aws-sdk-core (~> 3, >= 3.234.0) + aws-sdk-kms (~> 1) + aws-sigv4 (~> 1.5) + aws-sigv4 (1.12.1) + aws-eventstream (~> 1, >= 1.0.2) + babosa (1.0.4) + base64 (0.3.0) + bigdecimal (3.3.1) + claide (1.1.0) + colored (1.2) + colored2 (3.1.2) + commander (4.6.0) + highline (~> 2.0.0) + declarative (0.0.20) + digest-crc (0.7.0) + rake (>= 12.0.0, < 14.0.0) + domain_name (0.6.20240107) + dotenv (2.8.1) + emoji_regex (3.2.3) + excon (0.112.0) + faraday (1.10.4) + faraday-em_http (~> 1.0) + faraday-em_synchrony (~> 1.0) + faraday-excon (~> 1.1) + faraday-httpclient (~> 1.0) + faraday-multipart (~> 1.0) + faraday-net_http (~> 1.0) + faraday-net_http_persistent (~> 1.0) + faraday-patron (~> 1.0) + faraday-rack (~> 1.0) + faraday-retry (~> 1.0) + ruby2_keywords (>= 0.0.4) + faraday-cookie_jar (0.0.7) + faraday (>= 0.8.0) + http-cookie (~> 1.0.0) + faraday-em_http (1.0.0) + faraday-em_synchrony (1.0.1) + faraday-excon (1.1.0) + faraday-httpclient (1.0.1) + faraday-multipart (1.1.1) + multipart-post (~> 2.0) + faraday-net_http (1.0.2) + faraday-net_http_persistent (1.2.0) + faraday-patron (1.0.0) + faraday-rack (1.0.0) + faraday-retry (1.0.3) + faraday_middleware (1.2.1) + faraday (~> 1.0) + fastimage (2.4.0) + fastlane (2.228.0) + CFPropertyList (>= 2.3, < 4.0.0) + addressable (>= 2.8, < 3.0.0) + artifactory (~> 3.0) + aws-sdk-s3 (~> 1.0) + babosa (>= 1.0.3, < 2.0.0) + bundler (>= 1.12.0, < 3.0.0) + colored (~> 1.2) + commander (~> 4.6) + dotenv (>= 2.1.1, < 3.0.0) + emoji_regex (>= 0.1, < 4.0) + excon (>= 0.71.0, < 1.0.0) + faraday (~> 1.0) + faraday-cookie_jar (~> 0.0.6) + faraday_middleware (~> 1.0) + fastimage (>= 2.1.0, < 3.0.0) + fastlane-sirp (>= 1.0.0) + gh_inspector (>= 1.1.2, < 2.0.0) + google-apis-androidpublisher_v3 (~> 0.3) + google-apis-playcustomapp_v1 (~> 0.1) + google-cloud-env (>= 1.6.0, < 2.0.0) + google-cloud-storage (~> 1.31) + highline (~> 2.0) + http-cookie (~> 1.0.5) + json (< 3.0.0) + jwt (>= 2.1.0, < 3) + mini_magick (>= 4.9.4, < 5.0.0) + multipart-post (>= 2.0.0, < 3.0.0) + naturally (~> 2.2) + optparse (>= 0.1.1, < 1.0.0) + plist (>= 3.1.0, < 4.0.0) + rubyzip (>= 2.0.0, < 3.0.0) + security (= 0.1.5) + simctl (~> 1.6.3) + terminal-notifier (>= 2.0.0, < 3.0.0) + terminal-table (~> 3) + tty-screen (>= 0.6.3, < 1.0.0) + tty-spinner (>= 0.8.0, < 1.0.0) + word_wrap (~> 1.0.0) + xcodeproj (>= 1.13.0, < 2.0.0) + xcpretty (~> 0.4.1) + xcpretty-travis-formatter (>= 0.0.3, < 2.0.0) + fastlane-sirp (1.0.0) + sysrandom (~> 1.0) + gh_inspector (1.1.3) + google-apis-androidpublisher_v3 (0.54.0) + google-apis-core (>= 0.11.0, < 2.a) + google-apis-core (0.11.3) + addressable (~> 2.5, >= 2.5.1) + googleauth (>= 0.16.2, < 2.a) + httpclient (>= 2.8.1, < 3.a) + mini_mime (~> 1.0) + representable (~> 3.0) + retriable (>= 2.0, < 4.a) + rexml + google-apis-iamcredentials_v1 (0.17.0) + google-apis-core (>= 0.11.0, < 2.a) + google-apis-playcustomapp_v1 (0.13.0) + google-apis-core (>= 0.11.0, < 2.a) + google-apis-storage_v1 (0.31.0) + google-apis-core (>= 0.11.0, < 2.a) + google-cloud-core (1.8.0) + google-cloud-env (>= 1.0, < 3.a) + google-cloud-errors (~> 1.0) + google-cloud-env (1.6.0) + faraday (>= 0.17.3, < 3.0) + google-cloud-errors (1.5.0) + google-cloud-storage (1.47.0) + addressable (~> 2.8) + digest-crc (~> 0.4) + google-apis-iamcredentials_v1 (~> 0.1) + google-apis-storage_v1 (~> 0.31.0) + google-cloud-core (~> 1.6) + googleauth (>= 0.16.2, < 2.a) + mini_mime (~> 1.0) + googleauth (1.8.1) + faraday (>= 0.17.3, < 3.a) + jwt (>= 1.4, < 3.0) + multi_json (~> 1.11) + os (>= 0.9, < 2.0) + signet (>= 0.16, < 2.a) + highline (2.0.3) + http-cookie (1.0.8) + domain_name (~> 0.5) + httpclient (2.9.0) + mutex_m + jmespath (1.6.2) + json (2.15.1) + jwt (2.10.2) + base64 + logger (1.7.0) + mini_magick (4.13.2) + mini_mime (1.1.5) + multi_json (1.17.0) + multipart-post (2.4.1) + mutex_m (0.3.0) + nanaimo (0.4.0) + naturally (2.3.0) + nkf (0.2.0) + optparse (0.6.0) + os (1.1.4) + plist (3.7.2) + public_suffix (6.0.2) + rake (13.3.0) + representable (3.2.0) + declarative (< 0.1.0) + trailblazer-option (>= 0.1.1, < 0.2.0) + uber (< 0.2.0) + retriable (3.1.2) + rexml (3.4.4) + rouge (3.28.0) + ruby2_keywords (0.0.5) + rubyzip (2.4.1) + security (0.1.5) + signet (0.21.0) + addressable (~> 2.8) + faraday (>= 0.17.5, < 3.a) + jwt (>= 1.5, < 4.0) + multi_json (~> 1.10) + simctl (1.6.10) + CFPropertyList + naturally + sysrandom (1.0.5) + terminal-notifier (2.0.0) + terminal-table (3.0.2) + unicode-display_width (>= 1.1.1, < 3) + trailblazer-option (0.1.2) + tty-cursor (0.7.1) + tty-screen (0.8.2) + tty-spinner (0.9.3) + tty-cursor (~> 0.7) + uber (0.1.0) + unicode-display_width (2.6.0) + word_wrap (1.0.0) + xcodeproj (1.27.0) + CFPropertyList (>= 2.3.3, < 4.0) + atomos (~> 0.1.3) + claide (>= 1.0.2, < 2.0) + colored2 (~> 3.1) + nanaimo (~> 0.4.0) + rexml (>= 3.3.6, < 4.0) + xcpretty (0.4.1) + rouge (~> 3.28.0) + xcpretty-travis-formatter (1.0.1) + xcpretty (~> 0.2, >= 0.0.7) + +PLATFORMS + arm64-darwin-25 + ruby + +DEPENDENCIES + fastlane + +BUNDLED WITH + 2.7.2