mifr/subsurface
1
0
Fork 0
mirror of https://github.com/subsurface/subsurface.git synced 2025-02-19 22:16:15 +00:00
Code Issues Projects Releases Packages Wiki Activity

macOS: small improvements for resign script

Browse source 
Still, mostly useful for me, but this correctly deals with relative path
names for the working directory (and gives a usage message).

Signed-off-by: Dirk Hohndel <dirk@hohndel.org>
This commit is contained in:
Dirk Hohndel 2024-09-08 19:12:37 -07:00
parent a5effbe0a6
commit 5700379560
1 changed files with 10 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

17
packaging/macosx/resign.sh
View file

@ -6,8 +6,9 @@
# resign.sh path-where-DMG-is-mounted temp-dir-where-output-happens version
croak() {
echo "$0: $*" >&2
exit 1
echo "$0: $*" >&2
echo "usage: $0 <path to mounted DMG> <path to working directory> <version number without leading v>" >&2
exit 1
}
if [[ "$1" == "" || ! -d "$1" || ! -d "$1/Subsurface.app/Contents/MacOS" ]] ; then
@ -15,6 +16,7 @@ if [[ "$1" == "" || ! -d "$1" || ! -d "$1/Subsurface.app/Contents/MacOS" ]] ; th
fi
if [[ "$2" == "" || ! -d "$2" ]] ; then
mkdir -p "$2" || croak "can't create $2 as output directory"
WORKING=$( cd "$2" && pwd )
fi
[[ "$3" == "" ]] && croak "missing a version argument"
VERSION="$3"
@ -23,8 +25,9 @@ DIR=$( cd "$( dirname "${BASH_SOURCE[0]}" )" && cd ../../.. && pwd )
DMGCREATE=create-dmg
mkdir "$2"/staging
cd "$2"/staging
mkdir "$WORKING"/staging
cd "$WORKING"
pushd staging
cp -a "$1/Subsurface.app" .
@ -40,14 +43,14 @@ codesign --options runtime --keychain "$HOME/Library/Keychains/login.keychain" -
# ok, now the app is signed. let's notarize it
# first create a apple appropriate zip file;
# regular zip command isn't good enough, need to use "ditto"
ditto -c -k --sequesterRsrc --keepParent Subsurface.app "Subsurface-$VERSION.zip"
ditto -c -k --sequesterRsrc --keepParent Subsurface.app "$WORKING/Subsurface-$VERSION.zip"
# this assumes that you have setup the notary tool and have the credentials stored
# in your keychain
xcrun notarytool submit "./Subsurface-$VERSION.zip" --keychain-profile "notarytool-password" --wait
xcrun notarytool submit "$WORKING/Subsurface-$VERSION.zip" --keychain-profile "notarytool-password" --wait
xcrun stapler staple Subsurface.app
cd "$2"
popd
# it's not entirely clear if signing / stapling the DMG is required as well
# all I can say is that when I do both, it appears to work