Long shot... Any iOS app signing experts here? I have a GitHub Action building my iOS app (which uses KMP). This was all working until my cert expired. I have provisioning profiles setup in XCode to use an XCode Managed Profile. Everything builds fine there. And everything used to build fine in GitHub Actions. Now I'm getting:

error: Provisioning profile "iOS Team Provisioning Profile: ***" expired on Jan 15, 2023. (in target 'Kotlin_Bars' from project 'Kotlin_Bars')
error: Provisioning profile "iOS Team Provisioning Profile: ***" doesn't include signing certificate "Apple Development: James Ward (4YJCNSB3EZ)". (in target 'Kotlin_Bars' from project 'Kotlin_Bars')

There aren't any provisioning profiles listed in https://developer.apple.com/account/resources/profiles/list I could probably setup manual provisioning profiles but I believe this all used to work with the XCode Managed ones. I'm not sure where the apple-actions/download-provisioning-profiles action is getting them and why the managed ones aren't getting pulled since they were updated.

Maybe update all tokens or secrets on GH that you got from Apple.

Yeah, did that part. 😞

I have not much experience in Github Actions, but have you double-checked whatever profile and certificates you have set up on Github Actions?

I’m sorry that I can’t add anything specific towards solving this, but in general, GitHub doesn’t seem very invested in maintaining their macOS build machines. We’ve shortly considered standardizing on GitHub Actions, which would be a move from Bitrise for us, but GH Actions is just so much slower, more expensive, and they’re dragging their feet in terms of updating macOS to the latest versions (which are often needed for the latest Xcode versions) that it’s just no fun using GH Actions for iOS work.

Would consider using fastlane to handle this for you?

Yeah, I might need to switch to Fastlane as that seems like a much better approach. Just bummed that I had this all working and can't get it working again. BTW, I did update the cert in the Action secret.

+1 for Fastlane Match. It has simplified our code signing setup tremendously. We’re using it for App Store and Ad Hoc signing which is done in CI, and keep code signing of development builds on automatic so that Xcode can handle that and devs don’t have to use Fastlane Match on their dev machines.

Just curious if anyone has tried the XCode Cloud stuff for this kind of thing?