Here I give an example for CircleCI, in a step prior to using the certificate, let's say for code-signing, make sure you have installed the certificate on your macOS executor every time you trigger the ci/cd workflow.
See commands below for following actions.
sign-app-on-macOS:
macos:
xcode: 15.2.0
resource_class: macos.m1.medium.gen1
steps:
- run:
name: Download and install P12 certificate on macOS
command: |
aws s3 cp s3://bucket/certificates/Certificates.p12 Certificates.p12
security create-keychain -p "password" ci.keychain
security default-keychain -s ci.keychain
security unlock-keychain -p "password" ci.keychain
security import Certificates.p12 -k ci.keychain -P $CSC_KEY_PASSWORD
security set-key-partition-list -S apple-tool:,apple: -s -k "password" ci.keychain
security find-identity -p codesigning -v
- run: codesign --deep blah blah ...
Note that CSC_KEY_PASSWORD environment variable is set for importing the password protected cert.
Источник: dev.to
Наш сайт является информационным посредником. Сообщить о нарушении авторских прав.
circleci codesigning