2020-05-20 16:06:15 +08:00
|
|
|
/*---------------------------------------------------------------------------------------------
|
|
|
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
|
|
* Licensed under the MIT License. See License.txt in the project root for license information.
|
|
|
|
*--------------------------------------------------------------------------------------------*/
|
|
|
|
|
2023-04-02 15:35:39 +08:00
|
|
|
import * as fs from 'fs';
|
2020-05-20 16:06:15 +08:00
|
|
|
import * as path from 'path';
|
2023-04-02 15:35:39 +08:00
|
|
|
import * as codesign from 'electron-osx-sign';
|
2022-03-18 22:48:48 +08:00
|
|
|
import { spawn } from '@malept/cross-spawn-promise';
|
2020-05-20 16:06:15 +08:00
|
|
|
|
2023-04-02 15:35:39 +08:00
|
|
|
const root = path.dirname(path.dirname(__dirname));
|
|
|
|
|
|
|
|
function getElectronVersion(): string {
|
2024-09-06 21:18:02 +08:00
|
|
|
const npmrc = fs.readFileSync(path.join(root, '.npmrc'), 'utf8');
|
|
|
|
const target = /^target="(.*)"$/m.exec(npmrc)![1];
|
2023-04-02 15:35:39 +08:00
|
|
|
return target;
|
|
|
|
}
|
|
|
|
|
|
|
|
async function main(buildDir?: string): Promise<void> {
|
2020-05-20 16:06:15 +08:00
|
|
|
const tempDir = process.env['AGENT_TEMPDIRECTORY'];
|
2020-11-24 07:31:03 +08:00
|
|
|
const arch = process.env['VSCODE_ARCH'];
|
2023-01-11 22:39:31 +08:00
|
|
|
const identity = process.env['CODESIGN_IDENTITY'];
|
2020-05-20 16:06:15 +08:00
|
|
|
|
|
|
|
if (!buildDir) {
|
|
|
|
throw new Error('$AGENT_BUILDDIRECTORY not set');
|
|
|
|
}
|
|
|
|
|
|
|
|
if (!tempDir) {
|
|
|
|
throw new Error('$AGENT_TEMPDIRECTORY not set');
|
|
|
|
}
|
|
|
|
|
2023-04-02 15:35:39 +08:00
|
|
|
const product = JSON.parse(fs.readFileSync(path.join(root, 'product.json'), 'utf8'));
|
2020-05-20 16:06:15 +08:00
|
|
|
const baseDir = path.dirname(__dirname);
|
2020-11-24 07:31:03 +08:00
|
|
|
const appRoot = path.join(buildDir, `VSCode-darwin-${arch}`);
|
2020-05-20 16:06:15 +08:00
|
|
|
const appName = product.nameLong + '.app';
|
|
|
|
const appFrameworkPath = path.join(appRoot, appName, 'Contents', 'Frameworks');
|
|
|
|
const helperAppBaseName = product.nameShort;
|
|
|
|
const gpuHelperAppName = helperAppBaseName + ' Helper (GPU).app';
|
|
|
|
const rendererHelperAppName = helperAppBaseName + ' Helper (Renderer).app';
|
2022-09-21 23:18:39 +08:00
|
|
|
const pluginHelperAppName = helperAppBaseName + ' Helper (Plugin).app';
|
2021-03-31 13:56:04 +08:00
|
|
|
const infoPlistPath = path.resolve(appRoot, appName, 'Contents', 'Info.plist');
|
2020-05-20 16:06:15 +08:00
|
|
|
|
|
|
|
const defaultOpts: codesign.SignOptions = {
|
|
|
|
app: path.join(appRoot, appName),
|
|
|
|
platform: 'darwin',
|
|
|
|
entitlements: path.join(baseDir, 'azure-pipelines', 'darwin', 'app-entitlements.plist'),
|
|
|
|
'entitlements-inherit': path.join(baseDir, 'azure-pipelines', 'darwin', 'app-entitlements.plist'),
|
|
|
|
hardenedRuntime: true,
|
|
|
|
'pre-auto-entitlements': false,
|
|
|
|
'pre-embed-provisioning-profile': false,
|
|
|
|
keychain: path.join(tempDir, 'buildagent.keychain'),
|
2023-04-02 15:35:39 +08:00
|
|
|
version: getElectronVersion(),
|
2023-01-11 22:39:31 +08:00
|
|
|
identity,
|
2020-05-20 16:06:15 +08:00
|
|
|
'gatekeeper-assess': false
|
|
|
|
};
|
|
|
|
|
|
|
|
const appOpts = {
|
|
|
|
...defaultOpts,
|
|
|
|
// TODO(deepak1556): Incorrectly declared type in electron-osx-sign
|
|
|
|
ignore: (filePath: string) => {
|
|
|
|
return filePath.includes(gpuHelperAppName) ||
|
2022-09-21 23:18:39 +08:00
|
|
|
filePath.includes(rendererHelperAppName) ||
|
|
|
|
filePath.includes(pluginHelperAppName);
|
2020-05-20 16:06:15 +08:00
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
const gpuHelperOpts: codesign.SignOptions = {
|
|
|
|
...defaultOpts,
|
|
|
|
app: path.join(appFrameworkPath, gpuHelperAppName),
|
|
|
|
entitlements: path.join(baseDir, 'azure-pipelines', 'darwin', 'helper-gpu-entitlements.plist'),
|
|
|
|
'entitlements-inherit': path.join(baseDir, 'azure-pipelines', 'darwin', 'helper-gpu-entitlements.plist'),
|
|
|
|
};
|
|
|
|
|
|
|
|
const rendererHelperOpts: codesign.SignOptions = {
|
|
|
|
...defaultOpts,
|
|
|
|
app: path.join(appFrameworkPath, rendererHelperAppName),
|
|
|
|
entitlements: path.join(baseDir, 'azure-pipelines', 'darwin', 'helper-renderer-entitlements.plist'),
|
|
|
|
'entitlements-inherit': path.join(baseDir, 'azure-pipelines', 'darwin', 'helper-renderer-entitlements.plist'),
|
|
|
|
};
|
|
|
|
|
2022-09-21 23:18:39 +08:00
|
|
|
const pluginHelperOpts: codesign.SignOptions = {
|
|
|
|
...defaultOpts,
|
|
|
|
app: path.join(appFrameworkPath, pluginHelperAppName),
|
|
|
|
entitlements: path.join(baseDir, 'azure-pipelines', 'darwin', 'helper-plugin-entitlements.plist'),
|
|
|
|
'entitlements-inherit': path.join(baseDir, 'azure-pipelines', 'darwin', 'helper-plugin-entitlements.plist'),
|
|
|
|
};
|
|
|
|
|
2022-03-21 15:05:13 +08:00
|
|
|
// Only overwrite plist entries for x64 and arm64 builds,
|
|
|
|
// universal will get its copy from the x64 build.
|
|
|
|
if (arch !== 'universal') {
|
|
|
|
await spawn('plutil', [
|
|
|
|
'-insert',
|
|
|
|
'NSAppleEventsUsageDescription',
|
|
|
|
'-string',
|
|
|
|
'An application in Visual Studio Code wants to use AppleScript.',
|
|
|
|
`${infoPlistPath}`
|
|
|
|
]);
|
|
|
|
await spawn('plutil', [
|
|
|
|
'-replace',
|
|
|
|
'NSMicrophoneUsageDescription',
|
|
|
|
'-string',
|
|
|
|
'An application in Visual Studio Code wants to use the Microphone.',
|
|
|
|
`${infoPlistPath}`
|
|
|
|
]);
|
|
|
|
await spawn('plutil', [
|
|
|
|
'-replace',
|
|
|
|
'NSCameraUsageDescription',
|
|
|
|
'-string',
|
|
|
|
'An application in Visual Studio Code wants to use the Camera.',
|
|
|
|
`${infoPlistPath}`
|
|
|
|
]);
|
|
|
|
}
|
2021-03-31 13:56:04 +08:00
|
|
|
|
2020-05-20 16:06:15 +08:00
|
|
|
await codesign.signAsync(gpuHelperOpts);
|
|
|
|
await codesign.signAsync(rendererHelperOpts);
|
2022-09-21 23:18:39 +08:00
|
|
|
await codesign.signAsync(pluginHelperOpts);
|
2020-05-20 16:06:15 +08:00
|
|
|
await codesign.signAsync(appOpts as any);
|
|
|
|
}
|
|
|
|
|
|
|
|
if (require.main === module) {
|
2023-04-02 15:35:39 +08:00
|
|
|
main(process.argv[2]).catch(err => {
|
2020-05-20 16:06:15 +08:00
|
|
|
console.error(err);
|
|
|
|
process.exit(1);
|
|
|
|
});
|
|
|
|
}
|