chore: codesign tauri app
This commit is contained in:
Service Account
Hien To
parent
64756cca94
commit
b926f35c01
93
.github/workflows/template-build-macos.yml
vendored
93
.github/workflows/template-build-macos.yml
vendored
@ -48,6 +48,12 @@ on:
|
|||||||
required: false
|
required: false
|
||||||
DEVELOPER_ID:
|
DEVELOPER_ID:
|
||||||
required: false
|
required: false
|
||||||
|
TAURI_SIGNING_PRIVATE_KEY:
|
||||||
|
required: false
|
||||||
|
TAURI_SIGNING_PRIVATE_KEY_PASSWORD:
|
||||||
|
required: false
|
||||||
|
TAURI_SIGNING_PUBLIC_KEY:
|
||||||
|
required: false
|
||||||
|
|
||||||
jobs:
|
jobs:
|
||||||
build-macos:
|
build-macos:
|
||||||
@ -148,11 +154,19 @@ jobs:
|
|||||||
env:
|
env:
|
||||||
VERSION_TAG: ${{ inputs.new_version }}
|
VERSION_TAG: ${{ inputs.new_version }}
|
||||||
|
|
||||||
- name: Get Cer for code signing
|
# - name: Get Cer for code signing
|
||||||
run: base64 -d <<< "$CODE_SIGN_P12_BASE64" > /tmp/codesign.p12
|
# run: |
|
||||||
|
# echo "$CODE_SIGN_P12_BASE64" > /tmp/certificate-base64.txt
|
||||||
|
# openssl base64 -in /tmp/codesign.p12 -out /tmp/certificate-base64.txt
|
||||||
|
# shell: bash
|
||||||
|
# env:
|
||||||
|
# CODE_SIGN_P12_BASE64: ${{ secrets.CODE_SIGN_P12_BASE64 }}
|
||||||
|
|
||||||
|
- name: Get key for notarize
|
||||||
|
run: base64 -d <<< "$NOTARIZE_P8_BASE64" > /tmp/notary-key.p8
|
||||||
shell: bash
|
shell: bash
|
||||||
env:
|
env:
|
||||||
CODE_SIGN_P12_BASE64: ${{ secrets.CODE_SIGN_P12_BASE64 }}
|
NOTARIZE_P8_BASE64: ${{ secrets.NOTARIZE_P8_BASE64 }}
|
||||||
|
|
||||||
- uses: apple-actions/import-codesign-certs@v2
|
- uses: apple-actions/import-codesign-certs@v2
|
||||||
continue-on-error: true
|
continue-on-error: true
|
||||||
@ -172,21 +186,25 @@ jobs:
|
|||||||
fi
|
fi
|
||||||
env:
|
env:
|
||||||
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
||||||
CSC_LINK: '/tmp/codesign.p12'
|
# CSC_LINK: '/tmp/codesign.p12'
|
||||||
CSC_KEY_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
# CSC_KEY_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
||||||
CSC_IDENTITY_AUTO_DISCOVERY: 'true'
|
# CSC_IDENTITY_AUTO_DISCOVERY: 'true'
|
||||||
APPLE_ID: ${{ secrets.APPLE_ID }}
|
|
||||||
APPLE_APP_SPECIFIC_PASSWORD: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
|
|
||||||
APP_PATH: '.'
|
APP_PATH: '.'
|
||||||
DEVELOPER_ID: ${{ secrets.DEVELOPER_ID }}
|
# DEVELOPER_ID: ${{ secrets.DEVELOPER_ID }}
|
||||||
AWS_ACCESS_KEY_ID: ${{ secrets.DELTA_AWS_ACCESS_KEY_ID }}
|
# AWS_ACCESS_KEY_ID: ${{ secrets.DELTA_AWS_ACCESS_KEY_ID }}
|
||||||
AWS_SECRET_ACCESS_KEY: ${{ secrets.DELTA_AWS_SECRET_ACCESS_KEY }}
|
# AWS_SECRET_ACCESS_KEY: ${{ secrets.DELTA_AWS_SECRET_ACCESS_KEY }}
|
||||||
AWS_DEFAULT_REGION: auto
|
# AWS_DEFAULT_REGION: auto
|
||||||
AWS_EC2_METADATA_DISABLED: 'true'
|
# AWS_EC2_METADATA_DISABLED: 'true'
|
||||||
AWS_MAX_ATTEMPTS: '5'
|
# AWS_MAX_ATTEMPTS: '5'
|
||||||
POSTHOG_KEY: ${{ secrets.POSTHOG_KEY }}
|
POSTHOG_KEY: ${{ secrets.POSTHOG_KEY }}
|
||||||
POSTHOG_HOST: ${{ secrets.POSTHOG_HOST }}
|
POSTHOG_HOST: ${{ secrets.POSTHOG_HOST }}
|
||||||
CORTEX_API_PORT: ${{ inputs.cortex_api_port }}
|
CORTEX_API_PORT: ${{ inputs.cortex_api_port }}
|
||||||
|
APPLE_CERTIFICATE: ${{ secrets.CODE_SIGN_P12_BASE64 }}
|
||||||
|
APPLE_CERTIFICATE_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
||||||
|
APPLE_API_ISSUER: ${{ secrets.NOTARY_ISSUER }}
|
||||||
|
APPLE_API_KEY: ${{ secrets.NOTARY_KEY_ID }}
|
||||||
|
APPLE_API_KEY_PATH: /tmp/notary-key.p8
|
||||||
|
|
||||||
- name: Build and publish app to github
|
- name: Build and publish app to github
|
||||||
if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/') && inputs.public_provider == 'github' && inputs.beta == false
|
if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/') && inputs.public_provider == 'github' && inputs.beta == false
|
||||||
@ -194,15 +212,20 @@ jobs:
|
|||||||
make build-and-publish
|
make build-and-publish
|
||||||
env:
|
env:
|
||||||
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
||||||
CSC_LINK: '/tmp/codesign.p12'
|
# CSC_LINK: '/tmp/codesign.p12'
|
||||||
CSC_KEY_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
# CSC_KEY_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
||||||
CSC_IDENTITY_AUTO_DISCOVERY: 'true'
|
# CSC_IDENTITY_AUTO_DISCOVERY: 'true'
|
||||||
APPLE_ID: ${{ secrets.APPLE_ID }}
|
# APPLE_ID: ${{ secrets.APPLE_ID }}
|
||||||
APPLE_APP_SPECIFIC_PASSWORD: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
|
# APPLE_APP_SPECIFIC_PASSWORD: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
|
||||||
APP_PATH: '.'
|
APP_PATH: '.'
|
||||||
DEVELOPER_ID: ${{ secrets.DEVELOPER_ID }}
|
# DEVELOPER_ID: ${{ secrets.DEVELOPER_ID }}
|
||||||
POSTHOG_KEY: ${{ secrets.POSTHOG_KEY }}
|
POSTHOG_KEY: ${{ secrets.POSTHOG_KEY }}
|
||||||
POSTHOG_HOST: ${{ secrets.POSTHOG_HOST }}
|
POSTHOG_HOST: ${{ secrets.POSTHOG_HOST }}
|
||||||
|
APPLE_CERTIFICATE: ${{ secrets.CODE_SIGN_P12_BASE64 }}
|
||||||
|
APPLE_CERTIFICATE_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
||||||
|
APPLE_API_ISSUER: ${{ secrets.NOTARY_ISSUER }}
|
||||||
|
APPLE_API_KEY: ${{ secrets.NOTARY_KEY_ID }}
|
||||||
|
APPLE_API_KEY_PATH: /tmp/notary-key.p8
|
||||||
|
|
||||||
- name: Build and publish app to github
|
- name: Build and publish app to github
|
||||||
if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/') && inputs.public_provider == 'github' && inputs.beta == true
|
if: github.event_name == 'push' && startsWith(github.ref, 'refs/tags/') && inputs.public_provider == 'github' && inputs.beta == true
|
||||||
@ -210,24 +233,30 @@ jobs:
|
|||||||
make build-and-publish
|
make build-and-publish
|
||||||
env:
|
env:
|
||||||
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
||||||
CSC_LINK: '/tmp/codesign.p12'
|
# CSC_LINK: '/tmp/codesign.p12'
|
||||||
CSC_KEY_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
# CSC_KEY_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
||||||
CSC_IDENTITY_AUTO_DISCOVERY: 'true'
|
# CSC_IDENTITY_AUTO_DISCOVERY: 'true'
|
||||||
APPLE_ID: ${{ secrets.APPLE_ID }}
|
# APPLE_ID: ${{ secrets.APPLE_ID }}
|
||||||
APPLE_APP_SPECIFIC_PASSWORD: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
|
# APPLE_APP_SPECIFIC_PASSWORD: ${{ secrets.APPLE_APP_SPECIFIC_PASSWORD }}
|
||||||
APP_PATH: '.'
|
APP_PATH: '.'
|
||||||
DEVELOPER_ID: ${{ secrets.DEVELOPER_ID }}
|
# DEVELOPER_ID: ${{ secrets.DEVELOPER_ID }}
|
||||||
AWS_ACCESS_KEY_ID: ${{ secrets.DELTA_AWS_ACCESS_KEY_ID }}
|
# AWS_ACCESS_KEY_ID: ${{ secrets.DELTA_AWS_ACCESS_KEY_ID }}
|
||||||
AWS_SECRET_ACCESS_KEY: ${{ secrets.DELTA_AWS_SECRET_ACCESS_KEY }}
|
# AWS_SECRET_ACCESS_KEY: ${{ secrets.DELTA_AWS_SECRET_ACCESS_KEY }}
|
||||||
AWS_DEFAULT_REGION: auto
|
# AWS_DEFAULT_REGION: auto
|
||||||
AWS_EC2_METADATA_DISABLED: 'true'
|
# AWS_EC2_METADATA_DISABLED: 'true'
|
||||||
AWS_MAX_ATTEMPTS: '5'
|
# AWS_MAX_ATTEMPTS: '5'
|
||||||
POSTHOG_KEY: ${{ secrets.POSTHOG_KEY }}
|
POSTHOG_KEY: ${{ secrets.POSTHOG_KEY }}
|
||||||
POSTHOG_HOST: ${{ secrets.POSTHOG_HOST }}
|
POSTHOG_HOST: ${{ secrets.POSTHOG_HOST }}
|
||||||
|
APPLE_CERTIFICATE: ${{ secrets.CODE_SIGN_P12_BASE64 }}
|
||||||
|
APPLE_CERTIFICATE_PASSWORD: ${{ secrets.CODE_SIGN_P12_PASSWORD }}
|
||||||
|
APPLE_API_ISSUER: ${{ secrets.NOTARY_ISSUER }}
|
||||||
|
APPLE_API_KEY: ${{ secrets.NOTARY_KEY_ID }}
|
||||||
|
APPLE_API_KEY_PATH: /tmp/notary-key.p8
|
||||||
|
|
||||||
- name: Upload Artifact
|
- name: Upload Artifact
|
||||||
if: inputs.public_provider != 'github'
|
if: inputs.public_provider != 'github'
|
||||||
uses: actions/upload-artifact@v4
|
uses: actions/upload-artifact@v4
|
||||||
with:
|
with:
|
||||||
name: jan-mac-universal-${{ inputs.new_version }}
|
name: jan-mac-universal-${{ inputs.new_version }}
|
||||||
path: ./electron/dist/*.dmg
|
path: |
|
||||||
|
./src-tauri/target/release/bundle/dmg/*.dmg
|
||||||
@ -56,7 +56,7 @@
|
|||||||
"bundle": {
|
"bundle": {
|
||||||
"active": true,
|
"active": true,
|
||||||
"targets": "all",
|
"targets": "all",
|
||||||
"createUpdaterArtifacts": true,
|
"createUpdaterArtifacts": false,
|
||||||
"icon": [
|
"icon": [
|
||||||
"icons/32x32.png",
|
"icons/32x32.png",
|
||||||
"icons/128x128.png",
|
"icons/128x128.png",
|
||||||
|
|||||||
@ -144,10 +144,10 @@ const ModelPage = ({ model, onGoBack }: Props) => {
|
|||||||
{model.type !== 'cloud' && (
|
{model.type !== 'cloud' && (
|
||||||
<>
|
<>
|
||||||
<th></th>
|
<th></th>
|
||||||
<th className="hidden max-w-32 px-6 py-3 text-left text-sm font-semibold sm:table-cell">
|
<th className="max-w-32 hidden px-6 py-3 text-left text-sm font-semibold sm:table-cell">
|
||||||
Format
|
Format
|
||||||
</th>
|
</th>
|
||||||
<th className="hidden max-w-32 px-6 py-3 text-left text-sm font-semibold sm:table-cell">
|
<th className="max-w-32 hidden px-6 py-3 text-left text-sm font-semibold sm:table-cell">
|
||||||
Size
|
Size
|
||||||
</th>
|
</th>
|
||||||
</>
|
</>
|
||||||
|
|||||||
@ -166,8 +166,7 @@ const RemoteEngineSettings = ({
|
|||||||
<p className="mt-1 text-[hsla(var(--text-secondary))]">
|
<p className="mt-1 text-[hsla(var(--text-secondary))]">
|
||||||
{!customEngineLogo ? (
|
{!customEngineLogo ? (
|
||||||
<span>
|
<span>
|
||||||
Enter your authentication key to activate this
|
Enter your authentication key to activate this engine.{' '}
|
||||||
engine.{' '}
|
|
||||||
</span>
|
</span>
|
||||||
) : (
|
) : (
|
||||||
<span>
|
<span>
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user