Channels
lincheck
kobweb
koalaql
gsoc
kotlin-foundation
decouple
compose-android
hiring-french
benchmarks
china
philippines
ohio-kotlin-users
vankotlin
dublin
canada
nigeria
rhein-main
kodex
hacktoberfest
truth
portugal
romania
argentina
sg-user-group
korean
helsinki
functional
oldenburg
cambodia
vietnam
hungary
colorado
panamá
turkey
kotlin-samples
eclipse
kotlin-by-example
wwdc
denmark
thailand
build-tools
coimbatore
sofl-user-group
kotlintlv
udacityindia
quasar
spanish
kotlinbot
dckotlin
ge-kotlin
vim
croatia
javafx
kotlin-multiplatform-contest
osgi
brikk
revolver
tricity-kotlin-user-group
russian_feed
munich
estatik
karg
kotlintest
french
kotlin-in-action
gui
uae
georgia
kotlinlondon
polish
german-lang
kdbc
kotlin-asia
tampa
brazil
kotlin-logging
nepal
redux-kotlin
reduks
austria
armenia
spacemacs
android-databinding
hamburg
budapest
switzerland
minnesota
jadx
hexagon
boston
malaysia
istanbulcoders
aem
codingame
cucumber-bdd
newname
room
ass
atm17
kakao
cincinnati-user-group
arabic
emacs
karlsruhe
fluid-libraries
amsterdam
libgdx
books
ai
vuejs
talking-kotlin
codemash-precompiler
dsl
kotlingforbeginners
stuttgart
cork
kotlin-szeged
utah
jhipster-kotlin
hibernate
jpa
strikt
macedonia
kovenant
kotlin-fuel
kotlinacademy
prozis-android-backup
reductor
funktionale
realworldkotlin
events
google-io
graviton-browser
scotland
spring-security
domain-driven-design
connect-audit-events
bayarea
pinoy
uk
javalin
re
server
kgen-doc-tools
tempe
pakistan
swiss-user-group
kubed
effectivekotlin
refactoring-to-kotlin
cloudfoundry
kprompt
jshdq
alexa
minutest
code-coverage
geospatial
jasync-sql
russian-kotlinasfirst
juul-libraries
lanark
wimix_sentry
pdx
databinding
slovak
austin
androidgithubprojects
data2viz
introduce-yourself
cobalt
korlibs
script
new-zealand
stlouis
linkeddata
kroto-plus
libkgd
zircon
big-data
pocketgitclient
mirror
moonbean
kong
hamkrest
kaskade
effective-kotlin
arkenv
knote
testing
oolong
hackathons
mu
kotlinx-files
pyhsikal
build
coursera
trójmiasto
anko
speaking
kohesive
vienna
communities
kotson
klock
korim
kotrix
kobalt
korte
arrow-meta
algolialibraries
codeforces
koans
result
ktcc
seattle
japanese
forum
uniflow
korio
jackson-kotlin
koin-dev
helios
io
kash_shell
graphql
kafka
kaal
kotlinx-html
freenode
leakcanary
lambdaworld_cadiz
intellij-tricks
kotlin-csv
bulgaria
kbuild
kloudformation
mpapt
100daysofcode
kmdc
package-search
terminal
kmongo
kotlin-pakistan
inkremental
motionlayout
navigation-architecture-component
strife-discord-lib
general-advice
unkonf
awesome-kotlin
tallinn
machinelearningbawas
leedskotlinusergroup
stayhungrystayfoolish
kotest-contributors
edinburgh
skrape-it
anime
moldova
losangeles
testtestest
kotlin-pune
knbt
godot-kotlin
practical-functional-programming
tensorflow
swagger-gradle-codegen
bazel
100daysofkotlin
fuchsia
rxjava
texas
dev-core
clikt
cli
hyderabad
vkug
kinta
detekt-hint
kotlinultimatechallenge
spotify-mobius
pattern-matching
kotlin-plugin
mumbai
mvrx
cyprus
kotlin-spark
lottie
kontent
metro-detroit
kotlin-beam
kotlick
hoplite
cryptography
androidx
kotlinforbeginners
sudan
appintro
tunisia
kotlin-roadmap
kotlin-mumbai
collaborations
pbandk
competitive-programming
scrimage
kotlindl
fp-in-kotlin
python
memes
rocksdb
docs-revamped
jdbi
rsocket
meetkotlin
hikari-cp
firebase
proguard
popkorn
kmm-español
npm-publish
failgood
rpi-pico
kalasim
swing
forkhandles
compose-ui-showcase
kug-torino
web-mpp
students
kondor-json
deprecated
reports
kotlin-sap
carrat-dev
compose-hiring
carrat
carrat-feed
competitivecoding
jobsworldwide
kotlin-data-storage
skia-wasm-interop-temp
tegal
kotlin-website
couchbase
tgbotapi
videos
java-to-kotlin-refactoring
event21-community-content
twitter-feed
androidx-xprocessing
embedded-kotlin
san-diego
atrium
snake
javadevelopers
klaxon
bangladesh
androidthings
lets-have-fun
training
ecuador
new-mexico
montreal
fb-internal-demo
monsterpuzzle
internships
webrtc
arksemdevteam
image-processing
myndocs-oauth2-server
otpisani
love
rethink
chile
kotlintest-devs
beepiz-libraries
korau
uuid
spin
lychee
ktp
debugging
miami
atlanta
scrcast
kotlinprogrammers
corda
swarm
kotlinmad
india
krawler
fritz2
phoenix
nodejs
stacks
lithuania
dutch
kraph
indonesia
cscenter-course-2016
czech
greece
ukrainian
kotlinconf
teamcity
colombia
cn
nyc
graphkool
uruguay
kweb
singapore
turkiye
graphic
jxadapter
karachi
hongkong
oceania
kotlin-serbia
madrid
spain
kotlinsu
norway
latvia
southafrica
morocco
dfw
algeria
peru
israel
kotlin-latam
barcelona
mexico
sweden
vancouver
belgium
iran
australia
london
bydgoszcz
k2-early-adopters
exposed
meta
spek
confetti
naming
dokka
gamedev
rx
intellij-plugins
compose-mp
language-proposals
hiring
stdlib
coroutines
kodein
codereview
announcements
mockk
scripting
koin
ios
feed
serialization
spring
eap
test
kontributors
random
korge
compiler
detekt
redux
library-development
javascript
tornadofx
kotless
ktlint
kvision
moko
kug-leads
fosdem
refreshversions
hire-me
orbit-mvi
language-evolution
graphql-kotlin
arrow
android-studio
flow
grpc
compose
chucker
ktor
russian
ksp
kotest
reaktive
education
touchlab-tools
mvikotlin
apollo-kotlin
doodle
intellij
kotlinx-datetime
framework-elide
reflect
compose-desktop
jvm-ir-backend-feedback
komapper
gradle
glance
ballast
android-architecture
kgraphql
compose-web
science
ktfmt
chicago
android
micronaut
100daysofkotlin-2021
github-workflows-kt
python-contributors
mathematics
kotlin-inject
compose-wear
splitties
squarelibraries
compose-ios
decompose
realm
dagger
arrow-contributors
kotlin-native
react
vertx
advent-of-code
webassembly
codingconventions
getting-started
kapt
stackoverflow
italian
berlin
opensource
multiplatform
datascience
http4k
Title
m
Mitchell Syer
05/30/2021, 11:36 PMHello
I am having trouble with MacOS signing in CI. I have everything I need to create a pkg inside the CI, the keychain, the certs, and everything else. It seems to get stuck on the PackagePkg task, I believe its because of the issue mentioned in this article https://localazy.com/blog/how-to-automatically-sign-macos-apps-using-github-actions. About how its asking the computer for input on allowing the keychain to be accessed. Here is the relevant github action yml, I am not sure how to fix it myself, as you need to sign the pkg during the build, and not after, and compose doesnt seem to have a way to force it like the article does like this
/usr/bin/codesign --force -s <identity-id> ./path/to/you/app -v- name: Build MacOS Package
if: ${{ matrix.runtime == 'osx-x64' }}
run: |
echo ${{ secrets.APPLE_CERT }} | base64 --decode > certificate.p12
security create-keychain -p ${{ secrets.APPLE_KEYCHAIN_PASSWORD }} build.keychain
security default-keychain -s build.keychain
security unlock-keychain -p ${{ secrets.APPLE_KEYCHAIN_PASSWORD }} build.keychain
security import certificate.p12 -k build.keychain -P ${{ secrets.APPLE_CERT_PASSWORD }} -T /usr/bin/codesign
security set-key-partition-list -S apple-tool:,apple:,codesign: -s -k ${{ secrets.APPLE_KEYCHAIN_PASSWORD }} build.keychain
./gradlew packagePkg notarizePkg \
-Pcompose.desktop.mac.sign=true \
-Pcompose.desktop.mac.signing.identity=${{ secrets.APPLE_IDENTITY }} \
-Pcompose.desktop.mac.notarization.appleID=${{ secrets.APPLE_ID }} \
-Pcompose.desktop.mac.notarization.password=${{ secrets.APPLE_PASSWORD }}o
olonho
05/31/2021, 7:29 AM@alexey.tsvetkov ^^^
m
Mitchell Syer
06/05/2021, 2:01 AMAny update on this?
a
alexey.tsvetkov
06/11/2021, 7:13 AM@Mitchell Syer hi! You need to pass
-Pcompose.desktop.mac.signing.keychain=<PATH_TO_KEYCHAIN>export KEYCHAIN=$(pwd)/build.keychain
./gradlew packagePkg notarizePkg \
-Pcompose.desktop.mac.sign=true \
-Pcompose.desktop.mac.signing.identity=${{ secrets.APPLE_IDENTITY }} \
-Pcompose.desktop.mac.signing.keychain=$KEYCHAIN \
-Pcompose.desktop.mac.notarization.appleID=${{ secrets.APPLE_ID }} \
-Pcompose.desktop.mac.notarization.password=${{ secrets.APPLE_PASSWORD }}m
Mitchell Syer
06/11/2021, 6:55 PMThanks! That sounds like it should work for me