Merge pull request #3 from tiagonoronha/release/1.0.1 #17

Workflow file for this run

.github/workflows/release.yml at 413edd2

	name: Release

	on:
	push:
	tags:
	- "v*"

	jobs:
	release:
	permissions:
	contents: write
	strategy:
	fail-fast: false
	matrix:
	include:
	- platform: macos-latest
	args: "--target universal-apple-darwin"
	rust_target: universal-apple-darwin
	runs-on: ${{ matrix.platform }}
	steps:
	- name: Checkout
	uses: actions/checkout@v4

	- name: Setup Node
	uses: actions/setup-node@v4
	with:
	node-version: lts/*
	cache: npm

	- name: Install Rust toolchain
	uses: dtolnay/rust-toolchain@stable
	with:
	targets: aarch64-apple-darwin,x86_64-apple-darwin

	- name: Rust cache
	uses: swatinem/rust-cache@v2
	with:
	workspaces: './src-tauri -> target'

	- name: Install dependencies
	run: npm ci

	- name: Import Apple certificate
	env:
	APPLE_CERTIFICATE: ${{ secrets.APPLE_CERTIFICATE }}
	APPLE_CERTIFICATE_PASSWORD: ${{ secrets.APPLE_CERTIFICATE_PASSWORD }}
	run: \|
	CERTIFICATE_PATH=$RUNNER_TEMP/certificate.p12
	KEYCHAIN_PATH=$RUNNER_TEMP/app-signing.keychain-db
	KEYCHAIN_PASSWORD=$(openssl rand -base64 32)

	echo -n "$APPLE_CERTIFICATE" \| base64 --decode -o $CERTIFICATE_PATH

	security create-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
	security set-keychain-settings -lut 21600 $KEYCHAIN_PATH
	security unlock-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH

	security import $CERTIFICATE_PATH -P "$APPLE_CERTIFICATE_PASSWORD" \
	-A -t cert -f pkcs12 -k $KEYCHAIN_PATH
	security set-key-partition-list -S apple-tool:,apple: \
	-k "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
	security list-keychain -d user -s $KEYCHAIN_PATH

	- name: Build and release
	uses: tauri-apps/tauri-action@v0
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	TAURI_SIGNING_PRIVATE_KEY: ${{ secrets.TAURI_SIGNING_PRIVATE_KEY }}
	TAURI_SIGNING_PRIVATE_KEY_PASSWORD: ${{ secrets.TAURI_SIGNING_PRIVATE_KEY_PASSWORD }}
	APPLE_SIGNING_IDENTITY: ${{ secrets.APPLE_SIGNING_IDENTITY }}
	APPLE_ID: ${{ secrets.APPLE_ID }}
	APPLE_PASSWORD: ${{ secrets.APPLE_PASSWORD }}
	APPLE_TEAM_ID: ${{ secrets.APPLE_TEAM_ID }}
	with:
	tagName: ${{ github.ref_name }}
	releaseName: "${{ github.ref_name }}"
	releaseBody: "See the assets to download and install this version."
	releaseDraft: true
	prerelease: false
	args: ${{ matrix.args }}

	- name: Notarize DMG
	env:
	APPLE_ID: ${{ secrets.APPLE_ID }}
	APPLE_PASSWORD: ${{ secrets.APPLE_PASSWORD }}
	APPLE_TEAM_ID: ${{ secrets.APPLE_TEAM_ID }}
	run: \|
	DMG_PATH=$(find src-tauri/target -name "*.dmg" -type f \| head -1)
	echo "Notarizing $DMG_PATH"
	xcrun notarytool submit "$DMG_PATH" \
	--apple-id "$APPLE_ID" \
	--password "$APPLE_PASSWORD" \
	--team-id "$APPLE_TEAM_ID" \
	--wait
	xcrun stapler staple "$DMG_PATH"

	- name: Upload notarized DMG to release
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	run: \|
	DMG_PATH=$(find src-tauri/target -name "*.dmg" -type f \| head -1)
	gh release upload "${{ github.ref_name }}" "$DMG_PATH" --clobber

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge pull request #3 from tiagonoronha/release/1.0.1 #17

Workflow file

Merge pull request #3 from tiagonoronha/release/1.0.1 #17

Uh oh!

Workflow file for this run