Skip to content

feat #45: add sign scripts #46

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
peilinok merged 1 commit into from
Mar 17, 2025
Merged

feat #45: add sign scripts #46

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
34 changes: 32 additions & 2 deletions .github/workflows/custom-build.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -183,12 +183,42 @@ jobs:
-v ${{ inputs.build_version }}
-t ${{ inputs.build_type }}
-f ${{ steps.strings.outputs.build-dir }}
-b ${{ steps.strings.outputs.build-output-dir }}
-b ${{ steps.strings.outputs

# There is no need to sign frameworks
# - name: Sign macOS iOS and xrOS
# if: ${{ matrix.os == 'macos-latest' && (matrix.target_platform == 'macos' || matrix.target_platform == 'ios' || matrix.target_platform == 'xros') }}
# env:
# BUILD_CERTIFICATE_BASE64: ${{ secrets.DIST_BUILD_CERTIFICATE_BASE64 }}
# BUILD_CERTIFICATE_NAME: ${{ secrets.DIST_BUILD_CERTIFICATE_NAME }}
# P12_PASSWORD: ${{ secrets.DIST_P12_PASSWORD }}
# KEYCHAIN_PASSWORD: ${{ secrets.DIST_KEYCHAIN_PASSWORD }}
# run: |
# CERTIFICATE_PATH=$RUNNER_TEMP/build_certificate.p12
# KEYCHAIN_PATH=$RUNNER_TEMP/app-signing.keychain-db

# # import certificate and provisioning profile from secrets
# echo -n "$BUILD_CERTIFICATE_BASE64" | base64 --decode -o $CERTIFICATE_PATH

# # create temporary keychain
# security create-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
# security set-keychain-settings -lut 21600 $KEYCHAIN_PATH
# security unlock-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH

# # import certificate to keychain
# security import $CERTIFICATE_PATH -P "$P12_PASSWORD" -A -t cert -f pkcs12 -k $KEYCHAIN_PATH
# security set-key-partition-list -S apple-tool:,apple: -k "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
# security list-keychain -d user -s $KEYCHAIN_PATH

# # sign every framework in the build output directory with command:
# find ${{ steps.strings.outputs.build-output-dir }} -name "*.framework" -exec codesign --force --deep --sign "$BUILD_CERTIFICATE_NAME" --options runtime --timestamp --verbose=2 {} \;

- name: Upload artifacts
if: ${{ inputs.upload_artifacts == true }}
uses: actions/upload-artifact@v4
# https://github.com/actions/upload-artifact/issues/93 the official version do not support to keep the symbolic link for now
uses: eXhumer/upload-artifact@0b7d5f5684d3f642f978d2faad9ade64f5b4dd57
with:
name: ${{ matrix.target_platform }}-${{ inputs.build_version }}-${{ steps.strings.outputs.build-id }}-${{ steps.strings.outputs.timestamp }}
path: ${{ steps.strings.outputs.build-output-dir }}
follow-symlinks: false
if-no-files-found: error
5 changes: 5 additions & 0 deletions src/main/CMakeLists.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -36,6 +36,11 @@ add_library(traa::main ALIAS ${TRAA_LIBRARY_MAIN})
# add main files
target_sources(${TRAA_LIBRARY_MAIN} PRIVATE ${TRAA_LIBRARY_MAIN_FILES})

# add public header files
# this also will take effect when generate framework, if you want to add public header files to framework,
# you must add public header files to target sources.
target_sources(${TRAA_LIBRARY_MAIN} PRIVATE ${TRAA_LIBRARY_PUBLIC_HEADER_FILES})

# link traa::base
target_link_libraries(${TRAA_LIBRARY_MAIN} PRIVATE traa::base::core)

Expand Down