bump holochain to 0.5.2 #107

Workflow file for this run

.github/workflows/release.yaml at fe9d6e2

	name: 'publish'
	on:
	push:
	branches:
	- test-release

	jobs:
	publish:
	strategy:
	fail-fast: false
	matrix:
	platform: [windows-2019, macos-13, macos-latest, ubuntu-22.04]
	env:
	MACOSX_DEPLOYMENT_TARGET: 10.13

	permissions:
	contents: write
	runs-on: ${{ matrix.platform }}
	steps:
	- uses: actions/checkout@v2
	- name: setup node
	uses: actions/setup-node@v1
	with:
	node-version: 20

	- name: install Rust
	uses: dtolnay/[email protected]

	- name: install Go stable
	uses: actions/setup-go@v4
	with:
	go-version: 'stable'

	# This step is only used for testing in the official kangaroo repo
	- name: Overwrite Names for release testing
	if: ${{ github.repository }} == 'holochain-apps/kangaroo-electron'
	run: \|
	echo ${{ github.repository }}
	echo "overwriting names for release testing"
	node ./scripts/overwrite-with-test-name.js

	- name: Environment setup
	run: \|
	yarn setup

	- name: Read kangaroo config
	shell: bash
	id: kangarooConfig
	run: \|
	echo "APP_VERSION=$(node -p -e "require('./package.json').version")" >> $GITHUB_OUTPUT
	echo "APP_ID=$(node ./scripts/read-app-id.js)" >> $GITHUB_OUTPUT
	echo "MACOS_CODE_SIGNING=$(node ./scripts/read-macos-code-signing.js)" >> $GITHUB_OUTPUT
	echo "WINDOWS_CODE_SIGNING=$(node ./scripts/read-windows-code-signing.js)" >> $GITHUB_OUTPUT

	- name: Check that webhapp is available in pouch folder
	shell: bash
	run: \|
	if ! ls ./pouch/*.webhapp 1>/dev/null 2>&1; then
	echo "Error: No .webhapp file found in ./pouch folder. Make sure to specify a URL to your webhapp in kangaroo.config.ts or commit the webhapp to git."
	exit 1
	fi

	- name: Setup for macOS code signing
	if: (matrix.platform == 'macos-13' \|\| matrix.platform == 'macos-latest') && steps.kangarooConfig.outputs.MACOS_CODE_SIGNING == 'true'
	uses: matthme/import-codesign-certs@5565bb656f60c98c8fc515f3444dd8db73545dc2
	with:
	p12-file-base64: ${{ secrets.APPLE_CERTIFICATE }}
	p12-password: ${{ secrets.APPLE_CERTIFICATE_PASSWORD }}

	# macOS WITHOUT code signing
	#---------------------------------------------------------------------------------------
	- name: build and upload the app WITHOUT code signing (macOS x86)
	if: matrix.platform == 'macos-13' && steps.kangarooConfig.outputs.MACOS_CODE_SIGNING == 'false'
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	CSC_IDENTITY_AUTO_DISCOVERY: false
	run: \|
	yarn build:mac-x64
	ls dist

	- name: build and upload the app WITHOUT code signing (macOS arm64)
	if: matrix.platform == 'macos-latest' && steps.kangarooConfig.outputs.MACOS_CODE_SIGNING == 'false'
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	CSC_IDENTITY_AUTO_DISCOVERY: false
	run: \|
	yarn build:mac-arm64
	ls dist

	# macOS WITH code signing
	#---------------------------------------------------------------------------------------
	# Note this issue regarding the if condition: https://github.com/actions/runner/issues/1173
	- name: build and upload the app WITH code signing (macOS x86)
	if: matrix.platform == 'macos-13' && steps.kangarooConfig.outputs.MACOS_CODE_SIGNING == 'true'
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	APPLE_DEV_IDENTITY: ${{ secrets.APPLE_DEV_IDENTITY }}
	APPLE_ID_EMAIL: ${{ secrets.APPLE_ID_EMAIL }}
	APPLE_ID_PASSWORD: ${{ secrets.APPLE_ID_PASSWORD }}
	APPLE_TEAM_ID: ${{ secrets.APPLE_TEAM_ID }}
	DEBUG: electron-osx-sign,electron-notarize
	run: \|
	yarn build:mac-x64
	ls dist

	- name: build and upload the app WITH code signing (macOS arm64)
	if: matrix.platform == 'macos-latest' && steps.kangarooConfig.outputs.MACOS_CODE_SIGNING == 'true'
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	APPLE_DEV_IDENTITY: ${{ secrets.APPLE_DEV_IDENTITY }}
	APPLE_ID_EMAIL: ${{ secrets.APPLE_ID_EMAIL }}
	APPLE_ID_PASSWORD: ${{ secrets.APPLE_ID_PASSWORD }}
	APPLE_TEAM_ID: ${{ secrets.APPLE_TEAM_ID }}
	DEBUG: electron-osx-sign,electron-notarize
	run: \|
	yarn build:mac-arm64
	ls dist

	# Linux
	#---------------------------------------------------------------------------------------
	- name: build and upload the app (Ubuntu 22.04)
	if: matrix.platform == 'ubuntu-22.04'
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	run: \|
	yarn build:linux
	ls dist

	# Modify the postinst script of the .deb file
	node ./scripts/extend-deb-postinst.mjs
	gh release upload "v${{ steps.kangarooConfig.outputs.APP_VERSION }}" "latest-linux.yml" --clobber
	gh release upload "v${{ steps.kangarooConfig.outputs.APP_VERSION }}" "dist/${{ steps.kangarooConfig.outputs.APP_ID }}_${{ steps.kangarooConfig.outputs.APP_VERSION }}_amd64.deb" --clobber

	# Windows
	#---------------------------------------------------------------------------------------
	- name: build, sign and upload the app (Windows)
	shell: bash
	if: matrix.platform == 'windows-2019'
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	run: \|
	yarn build:win
	ls dist

	# If Windows EV code signing is set to true in kangaroo.config.ts, do code signing here
	if [ "${{ steps.kangarooConfig.outputs.WINDOWS_CODE_SIGNING }}" == "true" ]; then

	# Assumes this setup of EV certificates:
	# https://melatonin.dev/blog/how-to-code-sign-windows-installers-with-an-ev-cert-on-github-actions/

	# Sign the .exe file
	dotnet tool install --global --version 4.0.1 AzureSignTool
	echo "sha512 before code signing"
	CertUtil -hashfile "dist/${{ steps.kangarooConfig.outputs.APP_ID }}-${{ steps.kangarooConfig.outputs.APP_VERSION }}-setup.exe" SHA512
	AzureSignTool sign -kvu "${{ secrets.AZURE_KEY_VAULT_URI }}" -kvi "${{ secrets.AZURE_CLIENT_ID }}" -kvt "${{ secrets.AZURE_TENANT_ID }}" -kvs "${{ secrets.AZURE_CLIENT_SECRET }}" -kvc ${{ secrets.AZURE_CERT_NAME }} -tr http://timestamp.digicert.com -v "dist/${{ steps.kangarooConfig.outputs.APP_ID }}-${{ steps.kangarooConfig.outputs.APP_VERSION }}-setup.exe"
	echo "sha512 after code signing"
	CertUtil -hashfile "dist/${{ steps.kangarooConfig.outputs.APP_ID }}-${{ steps.kangarooConfig.outputs.APP_VERSION }}-setup.exe" SHA512

	# Overwrite the latest.yml one with one containing the sha512 of the code signed .exe file
	node ./scripts/latest-yaml.js
	gh release upload "v${{ steps.kangarooConfig.outputs.APP_VERSION }}" "latest.yml" --clobber
	gh release upload "v${{ steps.kangarooConfig.outputs.APP_VERSION }}" "dist/${{ steps.kangarooConfig.outputs.APP_ID }}-${{ steps.kangarooConfig.outputs.APP_VERSION }}-setup.exe" --clobber

	fi

	- name: Merge latest-mac.yml mac release files
	if: matrix.platform == 'macos-latest' \|\| matrix.platform == 'macos-13'
	run: \|
	node ./scripts/merge-mac-yamls.mjs
	env:
	GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

bump holochain to 0.5.2 #107

Workflow file

bump holochain to 0.5.2 #107

Jobs

Run details

Workflow file for this run