Long shot Any iOS app signing experts here I have a GitHub A kotlinlang #multiplatform

Long shot... Any iOS app signing experts here? I ...

James Ward

03/29/2023, 9:05 PM

Long shot... Any iOS app signing experts here? I have a GitHub Action building my iOS app (which uses KMP). This was all working until my cert expired. I have provisioning profiles setup in XCode to use an XCode Managed Profile. Everything builds fine there. And everything used to build fine in GitHub Actions. Now I'm getting:

Copy code

error: Provisioning profile "iOS Team Provisioning Profile: ***" expired on Jan 15, 2023. (in target 'Kotlin_Bars' from project 'Kotlin_Bars')
error: Provisioning profile "iOS Team Provisioning Profile: ***" doesn't include signing certificate "Apple Development: James Ward (4YJCNSB3EZ)". (in target 'Kotlin_Bars' from project 'Kotlin_Bars')

There aren't any provisioning profiles listed in https://developer.apple.com/account/resources/profiles/list I could probably setup manual provisioning profiles but I believe this all used to work with the XCode Managed ones. I'm not sure where the apple-actions/download-provisioning-profiles action is getting them and why the managed ones aren't getting pulled since they were updated.

corneil

03/29/2023, 10:24 PM

Maybe update all tokens or secrets on GH that you got from Apple.

James Ward

03/29/2023, 11:37 PM

Yeah, did that part. 😞

Pat Teruel

03/30/2023, 1:32 AM

I have not much experience in Github Actions, but have you double-checked whatever profile and certificates you have set up on Github Actions?

Pat Teruel

03/30/2023, 1:33 AM

Because it seems to me that it loads your old certificate files or something

Daniel Seither

03/30/2023, 9:19 AM

I’m sorry that I can’t add anything specific towards solving this, but in general, GitHub doesn’t seem very invested in maintaining their macOS build machines. We’ve shortly considered standardizing on GitHub Actions, which would be a move from Bitrise for us, but GH Actions is just so much slower, more expensive, and they’re dragging their feet in terms of updating macOS to the latest versions (which are often needed for the latest Xcode versions) that it’s just no fun using GH Actions for iOS work.

Denzil Ferreira

03/30/2023, 9:52 AM

Would consider using fastlane to handle this for you?

Denzil Ferreira

03/30/2023, 9:53 AM

https://docs.fastlane.tools/best-practices/continuous-integration/github/

Denzil Ferreira

03/30/2023, 9:53 AM

Because they handle all this mambo jambo

James Ward

03/30/2023, 2:53 PM

Yeah, I might need to switch to Fastlane as that seems like a much better approach. Just bummed that I had this all working and can't get it working again. BTW, I did update the cert in the Action secret.

Daniel Seither

03/30/2023, 2:57 PM

+1 for Fastlane Match. It has simplified our code signing setup tremendously. We’re using it for App Store and Ad Hoc signing which is done in CI, and keep code signing of development builds on automatic so that Xcode can handle that and devs don’t have to use Fastlane Match on their dev machines.

James Ward

03/30/2023, 2:59 PM

Just curious if anyone has tried the XCode Cloud stuff for this kind of thing?

12 Views

Open in Slack

Previous Next