mirror of
				https://github.com/TriliumNext/Notes.git
				synced 2025-10-27 01:51:34 +08:00 
			
		
		
		
	Merge pull request #1521 from TriliumNext/renovate/apple-actions-import-codesign-certs-5.x
chore(deps): update apple-actions/import-codesign-certs action to v5
This commit is contained in:
		
						commit
						60c0a6d543
					
				
							
								
								
									
										23
									
								
								.github/actions/build-electron/action.yml
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										23
									
								
								.github/actions/build-electron/action.yml
									
									
									
									
										vendored
									
									
								
							| @ -25,7 +25,7 @@ runs: | ||||
|       with: | ||||
|         p12-file-base64: ${{ env.APPLE_APP_CERTIFICATE_BASE64 }} | ||||
|         p12-password: ${{ env.APPLE_APP_CERTIFICATE_PASSWORD }} | ||||
|       keychain: build | ||||
|         keychain: build-app-${{ github.run_id }} | ||||
|         keychain-password: ${{ github.run_id }} | ||||
| 
 | ||||
|     - name: Install Installer certificate | ||||
| @ -34,17 +34,26 @@ runs: | ||||
|       with: | ||||
|         p12-file-base64: ${{ env.APPLE_INSTALLER_CERTIFICATE_BASE64 }} | ||||
|         p12-password: ${{ env.APPLE_INSTALLER_CERTIFICATE_PASSWORD }} | ||||
|       keychain: build | ||||
|         keychain: build-installer-${{ github.run_id }} | ||||
|         keychain-password: ${{ github.run_id }} | ||||
|       # We don't need to create a keychain here because we're using the build keychain that was created in the previous step | ||||
|       create-keychain: false | ||||
| 
 | ||||
|     - name: Verify certificates | ||||
|       if: inputs.os == 'macos' | ||||
|       shell: ${{ inputs.shell }} | ||||
|       run: | | ||||
|       echo "Available signing identities:" | ||||
|       security find-identity -v -p codesigning build.keychain | ||||
|         echo "Available signing identities in app keychain:" | ||||
|         security find-identity -v -p codesigning build-app-${{ github.run_id }}.keychain | ||||
| 
 | ||||
|         echo "Available signing identities in installer keychain:" | ||||
|         security find-identity -v -p codesigning build-installer-${{ github.run_id }}.keychain | ||||
| 
 | ||||
|         # Make the keychains searchable | ||||
|         security list-keychains -d user -s build-app-${{ github.run_id }}.keychain build-installer-${{ github.run_id }}.keychain $(security list-keychains -d user | tr -d '"') | ||||
|         security default-keychain -s build-app-${{ github.run_id }}.keychain | ||||
|         security unlock-keychain -p ${{ github.run_id }} build-app-${{ github.run_id }}.keychain | ||||
|         security unlock-keychain -p ${{ github.run_id }} build-installer-${{ github.run_id }}.keychain | ||||
|         security set-keychain-settings -t 3600 -l build-app-${{ github.run_id }}.keychain | ||||
|         security set-keychain-settings -t 3600 -l build-installer-${{ github.run_id }}.keychain | ||||
| 
 | ||||
|     - name: Set up Python and other macOS dependencies | ||||
|       if: ${{ inputs.os == 'macos' }} | ||||
| @ -94,7 +103,7 @@ runs: | ||||
|         if [ -n "$dmg_file" ]; then | ||||
|           echo "Found DMG: $dmg_file" | ||||
|           # Get the first valid signing identity from the keychain | ||||
|         SIGNING_IDENTITY=$(security find-identity -v -p codesigning build.keychain | grep "Developer ID Application" | head -1 | sed -E 's/.*"([^"]+)".*/\1/') | ||||
|           SIGNING_IDENTITY=$(security find-identity -v -p codesigning build-app-${{ github.run_id }}.keychain | grep "Developer ID Application" | head -1 | sed -E 's/.*"([^"]+)".*/\1/') | ||||
|           if [ -z "$SIGNING_IDENTITY" ]; then | ||||
|             echo "Error: No valid Developer ID Application certificate found in keychain" | ||||
|             exit 1 | ||||
|  | ||||
		Loading…
	
	
			
			x
			
			
		
	
		Reference in New Issue
	
	Block a user
	 Elian Doran
						Elian Doran