6177214e-ce7c-49e3-99de-ff9721b26f63 — Commit e1f8ff07

AuthorMikkel Thygesen<mikkelet@gmail.com>

Date2026-03-10 00:22:33 +0100

Devops: debug install signing

Changed files

.github/workflows/build-ios-stage.yml              | 10 +--------
 .../workflows/scripts/ios_install_signing_files.sh | 25 ++++++++++++----------
 2 files changed, 15 insertions(+), 20 deletions(-)

Diff

diff --git a/.github/workflows/build-ios-stage.yml b/.github/workflows/build-ios-stage.yml

index 482f773f..97d0c5f3 100644

--- a/.github/workflows/build-ios-stage.yml

+++ b/.github/workflows/build-ios-stage.yml

@@ -34,15 +34,7 @@ jobs:

P12_PASSWORD: ${{ secrets.CERTIFICATE_PASSWORD }}

PROVISIONING_PROFILE: ${{ secrets.PROV_PROFILE_STAGE }}

run: |

- # create variables

- mkdir -p temp

- CERTIFICATE_PATH=temp/build_certificate.p12

- PP_PATH=temp/build_pp.mobileprovision

- # import certificate and provisioning profile from secrets

- echo -n "$CERTIFICATE_P12" | base64 --decode -o $CERTIFICATE_PATH

- echo -n "$PROVISIONING_PROFILE" | base64 --decode -o $PP_PATH

- sh .github/workflows/scripts/ios_install_signing_files.sh $CERTIFICATE_PATH $P12_PASSWORD $PP_PATH

+ sh .github/workflows/scripts/ios_install_signing_files.sh $CERTIFICATE_P12 $P12_PASSWORD $PROVISIONING_PROFILE

- name: Download dotenv

env:

diff --git a/.github/workflows/scripts/ios_install_signing_files.sh b/.github/workflows/scripts/ios_install_signing_files.sh

index 18cd88b9..830b1d1b 100644

--- a/.github/workflows/scripts/ios_install_signing_files.sh

+++ b/.github/workflows/scripts/ios_install_signing_files.sh

@@ -1,8 +1,19 @@

-CERTIFICATE_PATH=$1

+CERTIFICATE_P12=$1

P12_PASSWORD=$2

-PP_PATH=$3

+PROVISIONING_PROFILE=$3

+# create variables

+mkdir -p temp

+CERTIFICATE_PATH=temp/build_certificate.p12

+PP_PATH=temp/build_pp.mobileprovision

KEYCHAIN_PATH=temp/app-signing.keychain-db

+# import certificate and provisioning profile from secrets

+echo "$CERTIFICATE_P12" | base64 --decode -o $CERTIFICATE_PATH

+echo "$PROVISIONING_PROFILE" | base64 --decode -o $PP_PATH

+# openssl pkcs12 -in $CERTIFICATE_P12 -nokeys -passin pass:$P12_PASSWORD | openssl x509 -sha1 -noout -fingerprint -subject -dates -nameopt utf8,sep_semi_plus_space

KEYCHAIN_PW="temp-password"

# create temporary keychain

security create-keychain -p "$KEYCHAIN_PW" $KEYCHAIN_PATH

@@ -10,16 +21,8 @@ security set-keychain-settings -lut 21600 $KEYCHAIN_PATH

security unlock-keychain -p "$KEYCHAIN_PW" $KEYCHAIN_PATH

# import certificate to keychain

-echo "security import $CERTIFICATE_PATH -P "$P12_PASSWORD" -A -t cert -f pkcs12 -k $KEYCHAIN_PATH"

-security import $CERTIFICATE_PATH \

- -P $P12_PASSWORD \

- -A \

- -t cert \

- -f pkcs12 \

- -k $KEYCHAIN_PATH

-echo "security set-key-partition-list -S apple-tool:,apple: -k \"$KEYCHAIN_PW\" $KEYCHAIN_PATH"

+security import $CERTIFICATE_PATH -P $P12_PASSWORD -A -t cert -f pkcs12 -k $KEYCHAIN_PATH

security set-key-partition-list -S apple-tool:,apple: -k "$KEYCHAIN_PW" $KEYCHAIN_PATH

-echo "3 list-keychain -d user -s $KEYCHAIN_PATH"

security list-keychain -d user -s $KEYCHAIN_PATH

# apply provisioning profile