0.0.10 #14
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This workflow will do a clean installation of node dependencies, cache/restore them, build the source code and run tests across different versions of node | |
| # For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-nodejs | |
| name: Build Electron App | |
| on: | |
| workflow_dispatch: | |
| push: | |
| tags: '*' | |
| jobs: | |
| build: | |
| strategy: | |
| matrix: | |
| os: [macos-latest, windows-latest] | |
| runs-on: ${{ matrix.os }} | |
| permissions: | |
| contents: write | |
| repository-projects: write | |
| environment: production | |
| steps: | |
| # https://github.com/electron/forge/issues/2807 | |
| - run: python3 -m pip install setuptools | |
| - uses: actions/checkout@v4 | |
| - uses: actions/setup-node@v4 | |
| with: | |
| node-version: '20' | |
| cache: 'npm' | |
| - name: Export version as variable | |
| run: | | |
| VERSION=$(node -p "require('./package.json').version") | |
| echo "VERSION=$VERSION" >> "$GITHUB_ENV" | |
| echo "Current version: $VERSION" | |
| shell: bash | |
| - name: Install dependencies | |
| run: npm ci | |
| - name: Install the Apple certificate and api key | |
| if: ${{ runner.os == 'macOS' }} | |
| env: | |
| BUILD_CERTIFICATE_BASE64: ${{ secrets.BUILD_CERTIFICATE_BASE64 }} | |
| P12_PASSWORD: ${{ secrets.P12_PASSWORD }} | |
| API_KEY_BASE64: ${{ secrets.API_KEY_BASE64 }} | |
| KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }} | |
| run: | | |
| # create variables | |
| CERTIFICATE_PATH=$RUNNER_TEMP/build_certificate.p12 | |
| API_KEY_PATH=$RUNNER_TEMP/auth_key.p8 | |
| KEYCHAIN_PATH=$RUNNER_TEMP/app-signing.keychain-db | |
| # import certificate and api key from secrets | |
| echo -n "$BUILD_CERTIFICATE_BASE64" | base64 --decode -o $CERTIFICATE_PATH | |
| echo -n "$API_KEY_BASE64" | base64 --decode -o $API_KEY_PATH | |
| echo "APPLE_API_KEY=$API_KEY_PATH" >> "$GITHUB_ENV" | |
| # create temporary keychain | |
| security create-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH | |
| security set-keychain-settings -lut 21600 $KEYCHAIN_PATH | |
| security unlock-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH | |
| # import certificate to keychain | |
| security import $CERTIFICATE_PATH -P "$P12_PASSWORD" -A -t cert -f pkcs12 -k $KEYCHAIN_PATH | |
| security set-key-partition-list -S apple-tool:,apple: -k "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH | |
| security list-keychain -d user -s $KEYCHAIN_PATH | |
| - name: Package and publish | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| APPLE_ID: ${{ secrets.APPLE_ID }} | |
| APPLE_ID_PASSWORD: ${{ secrets.APPLE_ID_PASSWORD }} | |
| APPLE_TEAM_ID: ${{ secrets.APPLE_TEAM_ID }} | |
| APPLE_API_KEY_ID: ${{ secrets.APPLE_API_KEY_ID }} | |
| APPLE_API_ISSUER: ${{ secrets.APPLE_API_ISSUER }} | |
| run: npm run publish | |
| - name: Upload to Cloud Storage | |
| if: ${{ startsWith(github.ref, 'refs/tags/') }} | |
| run: | | |
| echo "Current version: $VERSION" | |
| npm i ali-oss | |
| node ./scripts/upload-oss.js | |
| env: | |
| ALI_OSS_REGION: ${{ vars.ALI_OSS_REGION }} | |
| ALI_OSS_ACCESS_KEY_ID: ${{ secrets.ALI_OSS_ACCESS_KEY_ID }} | |
| ALI_OSS_ACCESS_KEY_SECRET: ${{ secrets.ALI_OSS_ACCESS_KEY_SECRET }} | |
| ALI_OSS_BUCKET: ${{ vars.ALI_OSS_BUCKET }} | |
| ALI_OSS_ENDPOINT: ${{ vars.ALI_OSS_ENDPOINT }} | |
| ALI_OSS_RELEASE_PATH: ${{ vars.ALI_OSS_RELEASE_PATH }} | |
| shell: bash |