ci: set up automatic build for iOS

Author: pixelspark

.github/workflows/build-ios.yml

@@ -0,0 +1,100 @@
+name: "Build iOS app"
+
+on:
+  pull_request:
+  push:
+
+env:
+  GO_VERSION: "~1.24.0"
+
+permissions:
+  id-token: write
+  contents: read
+  attestations: write
+
+jobs:
+  build_with_signing:
+    runs-on: macos-latest
+    steps:
+      - name: Check Xcode version
+        run: /usr/bin/xcodebuild -version
+
+      - name: Check out repository
+        uses: actions/checkout@v3
+
+      - name: Install Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: ${{ env.GO_VERSION }}
+          cache: false
+          check-latest: true
+
+      - name: Build core
+        run: |
+          cd SushitrainCore && make deps && make
+
+      - name: Install the Apple certificate and provisioning profile
+        env:
+          BUILD_CERTIFICATE_BASE64: ${{ secrets.BUILD_CERTIFICATE_BASE64 }}
+          P12_PASSWORD: ${{ secrets.P12_PASSWORD }}
+          BUILD_PROVISION_PROFILE_BASE64: ${{ secrets.BUILD_PROVISION_PROFILE_BASE64 }}
+          KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+        run: |
+          # create variables
+          CERTIFICATE_PATH=$RUNNER_TEMP/build_certificate.p12
+          PP_PATH=$RUNNER_TEMP/build_pp.mobileprovision
+          KEYCHAIN_PATH=$RUNNER_TEMP/app-signing.keychain-db
+
+          # import certificate and provisioning profile from secrets
+          echo -n "$BUILD_CERTIFICATE_BASE64" | base64 --decode -o $CERTIFICATE_PATH
+          echo -n "$BUILD_PROVISION_PROFILE_BASE64" | base64 --decode -o $PP_PATH
+
+          # create temporary keychain
+          security create-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
+          security set-keychain-settings -lut 21600 $KEYCHAIN_PATH
+          security unlock-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
+
+          # import certificate to keychain
+          security import $CERTIFICATE_PATH -P "$P12_PASSWORD" -A -t cert -f pkcs12 -k $KEYCHAIN_PATH
+          security list-keychain -d user -s $KEYCHAIN_PATH
+
+          # apply provisioning profile
+          mkdir -p ~/Library/MobileDevice/Provisioning\ Profiles
+          cp $PP_PATH ~/Library/MobileDevice/Provisioning\ Profiles
+          ls -la ~/Library/MobileDevice/Provisioning\ Profiles
+
+      - name: Build archive
+        run: |
+          xcodebuild -scheme "Synctrain release" \
+          -archivePath $RUNNER_TEMP/synctrain.xcarchive \
+          -exportOptionsPlist ./Scripts/ExportOptions.plist \
+          -sdk iphoneos \
+          -configuration Release \
+          -destination generic/platform=iOS \
+          clean archive
+          ls -la $RUNNER_TEMP
+
+      - name: Export ipa
+        env:
+          EXPORT_OPTIONS_PLIST: ${{ secrets.EXPORT_OPTIONS_PLIST }}
+        run: |
+          xcodebuild -exportArchive -archivePath $RUNNER_TEMP/synctrain.xcarchive -exportOptionsPlist ./Scripts/ExportOptions.plist -exportPath $RUNNER_TEMP/build
+          ls -la $RUNNER_TEMP
+
+      - name: Upload application
+        uses: actions/upload-artifact@v4
+        with:
+          name: app
+          path: ${{ runner.temp }}/build/synctrain.ipa
+          # you can also archive the entire directory 
+          # path: ${{ runner.temp }}/build
+          retention-days: 3
+
+      - name: Generate artifact attestation
+        uses: actions/attest-build-provenance@v2
+        with:
+          subject-path: ${{ runner.temp }}/build/synctrain.ipa
+
+      - name: Clean up
+        run: |
+          security delete-keychain $KEYCHAIN_PATH

Scripts/ExportOptions.plist

@@ -0,0 +1,23 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+	<dict>
+		<key>compileBitcode</key>
+		<false />
+		<key>method</key>
+		<string>development</string>
+		<key>signingStyle</key>
+		<string>automatic</string>
+		<key>stripSwiftSymbols</key>
+		<true />
+		<key>teamID</key>
+		<string>2N89DJPQ2P</string>
+		<key>thinning</key>
+		<string>&lt;none&gt;</string>
+		<key>provisioningProfiles</key>
+		<dict>
+			<key>nl.t-shaped.Sushitrain</key>
+			<string>589483bc-da9c-4fda-a64f-8dc02e1491a1</string>
+		</dict>
+	</dict>
+</plist>

SushitrainCore/Makefile

@@ -3,7 +3,7 @@
 # This Source Code Form is subject to the terms of the Mozilla Public
 # License, v. 2.0. If a copy of the MPL was not distributed with this file,
 # You can obtain one at https://mozilla.org/MPL/2.0/.
-PATH := /opt/homebrew/bin:$(HOME)/go/bin:$(PATH)
+PATH := $(shell pwd):/opt/homebrew/bin:$(HOME)/go/bin:$(PATH)
 SHELL := env PATH="$(PATH)" /bin/bash
 GOMOBILE_VERSION := $(shell gomobile version)
 GO_VERSION := $(shell go version)
@@ -18,6 +18,9 @@ ifndef GO_VERSION
 endif
 ifndef GOMOBILE_VERSION
 	go get golang.org/x/mobile/cmd/gomobile
+	go get golang.org/x/mobile/cmd/gobind
+	go build golang.org/x/mobile/cmd/gomobile
+	go build golang.org/x/mobile/cmd/gobind
 endif
 
 notices.html: notices.template.html go.mod go.sum