1
0
mirror of https://github.com/bitwarden/desktop.git synced 2024-12-28 17:18:24 +01:00

after-sign safari ext libs

This commit is contained in:
Kyle Spearrin 2019-09-27 12:03:12 -04:00
parent 67c89e4114
commit f3674aa7b2
4 changed files with 76 additions and 20 deletions

View File

@ -59,7 +59,7 @@
"output": "dist",
"app": "build"
},
"afterSign": "scripts/notarize.js",
"afterSign": "scripts/after-sign.js",
"mac": {
"electronUpdaterCompatibility": ">=0.0.1",
"category": "public.app-category.productivity",

View File

@ -0,0 +1,14 @@
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>com.apple.security.app-sandbox</key>
<true/>
<key>com.apple.security.files.user-selected.read-write</key>
<true/>
<key>com.apple.security.network.client</key>
<true/>
<key>com.apple.security.network.server</key>
<true/>
</dict>
</plist>

61
scripts/after-sign.js Normal file
View File

@ -0,0 +1,61 @@
require('dotenv').config();
const { notarize } = require('electron-notarize');
exports.default = run;
async function run(context) {
console.log(context);
const appleId = process.env.APPLEID;
const appName = context.packager.appInfo.productFilename;
const appPath = `${context.appOutDir}/${appName}.app`;
const masBuild = context.electronPlatformName === 'mas';
const macBuild = context.electronPlatformName === 'darwin';
if (masBuild || macBuild) {
console.log('### Signing Safari App Extension Libs');
const resourcesPath = context.packager.MacPackager.info.Packager._buildResourcesDir;
const devId = masBuild ? '3rd Party Mac Developer Application: 8bit Solutions LLC' :
'Developer ID Application: 8bit Solutions LLC';
await signSafariAppLibs(appPath, resourcesPath, devId);
}
if (macBuild) {
console.log('### Notarizing ' + appPath);
return await notarize({
appBundleId: 'com.bitwarden.desktop',
appPath: appPath,
appleId: appleId,
appleIdPassword: `@keychain:AC_PASSWORD`,
});
}
}
async function signSafariAppLibs(appPath, resourcesPath, devId) {
const appexPath = appPath + '/Contents/PlugIns/safari.appex';
const appexFrameworkPath = appexPath + '/Contents/Frameworks/';
const entitlementsPath = resourcesPath + '/safari.entitlements';
const libs = fs.readdirSync(appexFrameworkPath).filter((p) => p.endsWith('.dylib'))
.map((p) => appexFrameworkPath + p);
const promises = [];
libs.forEach((i) => {
const proc = child.spawn('codesign', [
'--verbose',
'--force',
'-o',
'runtime',
'--sign',
devId,
'--entitlements',
entitlementsPath,
i]);
stdOutProc(proc);
promises.push(new Promise((resolve) => proc.on('close', resolve)));
});
await Promise.all(promises);
}
function stdOutProc(proc) {
proc.stdout.on('data', (data) => console.log(data.toString()));
proc.stderr.on('data', (data) => console.error(data.toString()));
}

View File

@ -1,19 +0,0 @@
require('dotenv').config();
const { notarize } = require('electron-notarize');
exports.default = async function notarizing(context) {
const { electronPlatformName, appOutDir } = context;
if (electronPlatformName !== 'darwin') {
return;
}
const appleId = process.env.APPLEID;
const appName = context.packager.appInfo.productFilename;
const appPath = `${appOutDir}/${appName}.app`;
console.log('Notarizing ' + appPath);
return await notarize({
appBundleId: 'com.bitwarden.desktop',
appPath: appPath,
appleId: appleId,
appleIdPassword: `@keychain:AC_PASSWORD`,
});
};