-
Notifications
You must be signed in to change notification settings - Fork 42
113 lines (111 loc) · 3.61 KB
/
release.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
name: BuildAndReleaseMaster
on:
push:
tags:
- "*"
jobs:
create_release:
name: Create release
runs-on: ubuntu-latest
outputs:
upload_url: ${{ steps.create_release.outputs.upload_url }}
env:
PUBLISH_FOR_PULL_REQUEST: true
CSC_FOR_PULL_REQUEST: true
steps:
- name: Release
if: startsWith(github.ref, 'refs/tags/')
id: create_release
uses: softprops/action-gh-release@v1
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
with:
prerelease: true
tag_name: ${{ github.ref_name }}
name: ${{ github.ref_name }}
build_release:
name: Build release
needs: create_release
runs-on: ${{ matrix.os }}
env:
PUBLISH_FOR_PULL_REQUEST: 1
CSC_FOR_PULL_REQUEST: true
strategy:
matrix:
os: [ubuntu-20.04, windows-latest, macOS-latest]
rust: [stable]
steps:
- name: Checkout
uses: actions/checkout@v3
- name: libudev-dev
if: runner.os == 'Linux'
run: sudo apt-get install -y libudev-dev
- name: install ruby
uses: ruby/setup-ruby@v1
with:
ruby-version: "3.0"
bundler-cache: true
- name: install ruby:gem::dotenv
run: gem install dotenv
- name: install ruby:gem::json
run: gem install json
- name: install node
uses: actions/setup-node@master
with:
node-version: "current"
- name: install rust
uses: hecrj/setup-rust-action@v1
with:
rust-version: ${{ matrix.rust }}
- name: cargo install nj-cli
run: cargo install nj-cli
- name: install wasm-pack
run: curl https://rustwasm.github.io/wasm-pack/installer/init.sh -sSf | sh
- name: setup keychain for signing and notarising
if: runner.os == 'macOS'
env:
KEYCHAIN_NAME: "build.keychain"
CSC_LINK: ${{ secrets.CSC_LINK }}
CSC_KEY_PASSWORD: ${{ secrets.CSC_KEY_PASSWORD }}
KEYCHAIN_PWD: ${{ secrets.KEYCHAIN_PWD }}
run: |
security create-keychain -p "$KEYCHAIN_PWD" "$KEYCHAIN_NAME"
security default-keychain -s "$KEYCHAIN_NAME"
certfile="${HOME}/buildcert.p12"
echo "$CSC_LINK" | base64 -d > "$certfile"
security import \
"$certfile" \
-P "$CSC_KEY_PASSWORD" \
-A \
-k "$KEYCHAIN_NAME"
rm "$certfile"
security set-key-partition-list \
-S 'apple:' \
-s \
-k "$KEYCHAIN_PWD" \
"$KEYCHAIN_NAME"
- name: build release
working-directory: ./application/holder
run: rake release:prod --trace
env:
KEYCHAIN_NAME: "build.keychain"
CSC_LINK: ${{ secrets.CSC_LINK }}
CSC_KEY_PASSWORD: ${{ secrets.CSC_KEY_PASSWORD }}
APPLEID: ${{ secrets.APPLEID }}
APPLEIDPASS: ${{ secrets.APPLEIDPASS }}
TEAMID: ${{ secrets.TEAMID }}
SIGNING_ID: ${{ secrets.SIGNING_ID }}
KEYCHAIN_PWD: ${{ secrets.KEYCHAIN_PWD }}
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
- name: list release files
working-directory: ./application/holder/release
run: ls
- name: upload files
if: startsWith(github.ref, 'refs/tags/')
uses: AButler/upload-release-assets@v2.0
with:
files: "./application/holder/release/*.tgz;./application/holder/release/*.zip"
repo-token: ${{ secrets.GITHUB_TOKEN }}
release-tag: ${{ github.ref_name }}
env:
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}