Upstream/bitwarden-browser
1
0
Fork 0
mirror of https://github.com/bitwarden/browser.git synced 2024-09-21 03:11:27 +02:00
Code Issues Projects Releases Wiki Activity

BRE-315 - Update workflow to push to TestFlight on protected branches (#11082)

Browse Source
This commit is contained in:
Vince Grassia 2024-09-16 13:15:34 -04:00 committed by GitHub
parent 15610906d2
commit f2142e318e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 59 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

67
.github/workflows/build-desktop.yml vendored
View File

@ -738,7 +738,7 @@ jobs:
$package = Get-Content -Raw -Path electron-builder.json | ConvertFrom-Json $package = Get-Content -Raw -Path electron-builder.json | ConvertFrom-Json
$package | Add-Member -MemberType NoteProperty -Name buildVersion -Value "$env:BUILD_NUMBER" $package | Add-Member -MemberType NoteProperty -Name buildVersion -Value "$env:BUILD_NUMBER"
$package | ConvertTo-Json -Depth 32 | Set-Content -Path electron-builder.json $package | ConvertTo-Json -Depth 32 | Set-Content -Path electron-builder.json
"### MacOS GitHub build number: $env:BUILD_NUMBER" | Out-File -FilePath $env:GITHUB_STEP_SUMMARY -Append Write-Output "### MacOS GitHub build number: $env:BUILD_NUMBER"
- name: Install Node dependencies - name: Install Node dependencies
run: npm ci run: npm ci
@ -879,6 +879,13 @@ jobs:
with: with:
creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }} creds: ${{ secrets.AZURE_KV_CI_SERVICE_PRINCIPAL }}
- name: Retrieve Slack secret
id: retrieve-slack-secret
uses: bitwarden/gh-actions/get-keyvault-secrets@main
with:
keyvault: bitwarden-ci
secrets: "slack-bot-token"
- name: Download Provisioning Profiles secrets - name: Download Provisioning Profiles secrets
env: env:
ACCOUNT_NAME: bitwardenci ACCOUNT_NAME: bitwardenci
@ -955,7 +962,7 @@ jobs:
$package = Get-Content -Raw -Path electron-builder.json | ConvertFrom-Json $package = Get-Content -Raw -Path electron-builder.json | ConvertFrom-Json
$package | Add-Member -MemberType NoteProperty -Name buildVersion -Value "$env:BUILD_NUMBER" $package | Add-Member -MemberType NoteProperty -Name buildVersion -Value "$env:BUILD_NUMBER"
$package | ConvertTo-Json -Depth 32 | Set-Content -Path electron-builder.json $package | ConvertTo-Json -Depth 32 | Set-Content -Path electron-builder.json
"### MacOS App Store build number: $env:BUILD_NUMBER" | Out-File -FilePath $env:GITHUB_STEP_SUMMARY -Append Write-Output "### MacOS App Store build number: $env:BUILD_NUMBER"
- name: Install Node dependencies - name: Install Node dependencies
run: npm ci run: npm ci
@ -1016,16 +1023,60 @@ jobs:
if-no-files-found: error if-no-files-found: error
- name: Deploy to TestFlight - name: Deploy to TestFlight
id: testflight-deploy
if: | if: |
(github.ref == 'refs/heads/main' (github.ref == 'refs/heads/main'
&& needs.setup.outputs.rc_branch_exists == 0 || github.ref == 'refs/heads/rc'
&& needs.setup.outputs.hotfix_branch_exists == 0) || github.ref == 'refs/heads/hotfix-rc-desktop')
|| (github.ref == 'refs/heads/rc' && needs.setup.outputs.hotfix_branch_exists == 0)
|| github.ref == 'refs/heads/hotfix-rc-desktop'
env: env:
APP_STORE_CONNECT_TEAM_ISSUER: ${{ secrets.APP_STORE_CONNECT_TEAM_ISSUER }} APP_STORE_CONNECT_TEAM_ISSUER: ${{ secrets.APP_STORE_CONNECT_TEAM_ISSUER }}
APP_STORE_CONNECT_AUTH_KEY: 6TV9MKN3GP APP_STORE_CONNECT_AUTH_KEY: 6TV9MKN3GP
run: npm run upload:mas run: |
xcrun altool \
--upload-app \
--type macos \
--file "$(find ./dist/mas-universal/Bitwarden*.pkg)" \
--apiKey $APP_STORE_CONNECT_AUTH_KEY \
--apiIssuer $APP_STORE_CONNECT_TEAM_ISSUER \
&> output.txt
UUID=$(cat output.txt | grep "Delivery UUID" | sed -E 's/Delivery UUID: (.*)/\1/')
echo "uuid=$UUID" >> $GITHUB_OUTPUT
- name: Post message to a Slack channel
id: slack-message
if: |
(github.ref == 'refs/heads/main'
|| github.ref == 'refs/heads/rc'
|| github.ref == 'refs/heads/hotfix-rc-desktop')
uses: slackapi/slack-github-action@6c661ce58804a1a20f6dc5fbee7f0381b469e001 # v1.25.0
with:
channel-id: C074F5UESQ0
payload: |
{
"blocks": [
{
"type": "section",
"text": {
"type": "mrkdwn",
"text": "Desktop client v${{ env._PACKAGE_VERSION }} <${{ github.server_url }}/${{ github.repository }}/actions/runs/${{ github.run_id }}|build> success on *${{ github.ref_name }}*"
},
"accessory": {
"type": "button",
"text": {
"type": "plain_text",
"text": "TestFlight Build",
"emoji": true
},
"url": "https://appstoreconnect.apple.com/teams/${{ env.APP_STORE_CONNECT_TEAM_ISSUER }}/apps/1352778147/testflight/macos/${{ env.BUILD_UUID }}"
}
}
]
}
env:
APP_STORE_CONNECT_TEAM_ISSUER: ${{ secrets.APP_STORE_CONNECT_TEAM_ISSUER }}
SLACK_BOT_TOKEN: ${{ steps.retrieve-slack-secret.outputs.slack-bot-token }}
BUILD_UUID: ${{ steps.testflight-deploy.outputs.uuid }}
macos-package-dev: macos-package-dev:
@ -1158,7 +1209,7 @@ jobs:
$package = Get-Content -Raw -Path electron-builder.json | ConvertFrom-Json $package = Get-Content -Raw -Path electron-builder.json | ConvertFrom-Json
$package | Add-Member -MemberType NoteProperty -Name buildVersion -Value "$env:BUILD_NUMBER" $package | Add-Member -MemberType NoteProperty -Name buildVersion -Value "$env:BUILD_NUMBER"
$package | ConvertTo-Json -Depth 32 | Set-Content -Path electron-builder.json $package | ConvertTo-Json -Depth 32 | Set-Content -Path electron-builder.json
"### MacOS Dev build number: $env:BUILD_NUMBER" | Out-File -FilePath $env:GITHUB_STEP_SUMMARY -Append Write-Output "### MacOS Dev build number: $env:BUILD_NUMBER"
- name: Install Node dependencies - name: Install Node dependencies
run: npm ci run: npm ci