New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[sigh] Resign OnDemandResources #16669
Conversation
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
Allows sigh to resign OnDemandResource assetpacks fixes fastlane#16668
CLAs look good, thanks! ℹ️ Googlers: Go here for more info. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks safe enough to approve without actually understanding what exactly it does ;)
Thanks @janpio - I probably should have explained better. Apple allows you to push certain assets to OnDemandResources ( https://developer.apple.com/library/archive/documentation/FileManagement/Conceptual/On_Demand_Resources_Guide/index.html ). Normally during your dev cycles, you can either host these extra resources on your own local web servers, or embed them directly in the app. When you embed, it puts them in the Payload/(app name)/OnDemandResources, but that's really only for debug purposes.. In those instances though, fastlane signs them because it finds them in the app directory. However, when you deploy to the AppStore, the AppStore must host the resources, but when you build the IPA for the AppStore, it actually creates the OnDemandResources folder in Payload, rather than the Payload/(app name). sigh currently doesn't detect that however, so the resources don't get signed/resigned. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@sjmh Thanks for adding this! Can you add a changelog to the top of the file? There should be a format you can follow up there 😇
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@sjmh Thanks for adding this! Can you add a changelog to the top of the file? There should be a format you can follow up there 😇
Oops, of course! |
Added changelog message for changes to ODR signing
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This seems good to me! Thanks for adding this ❤️
Hey @sjmh 👋 Thank you for your contribution to fastlane and congrats on getting this pull request merged 🎉 Please let us know if this change requires an immediate release by adding a comment here 👍 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Congratulations! 🎉 This was released as part of fastlane 2.151.0 🚀
* [sigh] Resign OnDemandResources Allows sigh to resign OnDemandResource assetpacks fixes fastlane#16668 * Add changelog message Added changelog message for changes to ODR signing
Allows sigh to resign OnDemandResource assetpacks
fixes #16668
Checklist
bundle exec rspec
from the root directory to see all new and existing tests passbundle exec rubocop -a
to ensure the code style is validMotivation and Context
We have teams that create/sign IPAs with development provisioning profiles and then we centrally sign with fastlane before deploying to the store. They would like to start using ODR's, however, when we resign, these ODR's are not being (re)signed.
Description
Detects if an ODR folder is within the Payload folder, if so, removes any codesignature's from each pack and resigns each pack.
Testing Steps
Modified a local installation of fastlane with these changes and ran an IPA with ODR through it. IPA came out successfully signed.