Class: Spaceship::PortalClient

Inherits:

Client

• Object
• Client
• Spaceship::PortalClient

Defined in:

lib/spaceship/portal/portal_client.rb

Overview

rubocop:disable Metrics/ClassLength

Constant Summary

Constants inherited from Client

Client::PROTOCOL_VERSION, Client::USER_AGENT

Instance Attribute Summary

Attributes inherited from Client

#client, #csrf_tokens, #logger, #user

Init and Login

• .hostname ⇒ Object
• #api_key ⇒ Object

  Fetches the latest API Key from the Apple Dev Portal.

• #in_house? ⇒ Boolean

  Is the current session from an Enterprise In House account?.

• #select_team ⇒ Object

  Shows a team selection for the user in the terminal.

• #send_login_request(user, password) ⇒ Object
• #team_id ⇒ String

  The currently selected Team ID.

• #team_id=(team_id) ⇒ Object

  Set a new team ID which will be used from now on.

• #team_information ⇒ Hash

  Fetches all information of the currently used team.

• #teams ⇒ Array

  A list of all available teams.

Apps

• #apps(mac: false) ⇒ Object
• #associate_groups_with_app(app, groups) ⇒ Object
• #create_app!(type, name, bundle_id, mac: false) ⇒ Object
• #delete_app!(app_id, mac: false) ⇒ Object
• #details_for_app(app) ⇒ Object
• #update_service_for_app(app, service) ⇒ Object

App Groups

• #app_groups ⇒ Object
• #create_app_group!(name, group_id) ⇒ Object
• #delete_app_group!(app_group_id) ⇒ Object

Devices

• #create_device!(device_name, device_id, mac: false) ⇒ Object
• #devices(mac: false) ⇒ Object
• #devices_by_class(device_class) ⇒ Object

Certificates

• #certificates(types, mac: false) ⇒ Object
• #create_certificate!(type, csr, app_id = nil) ⇒ Object
• #download_certificate(certificate_id, type, mac: false) ⇒ Object
• #revoke_certificate!(certificate_id, type, mac: false) ⇒ Object

Provisioning Profiles

• #create_provisioning_profile!(name, distribution_method, app_id, certificate_ids, device_ids, mac: false, sub_platform: nil) ⇒ Object
• #delete_provisioning_profile!(profile_id, mac: false) ⇒ Object
• #download_provisioning_profile(profile_id, mac: false) ⇒ Object
• #provisioning_profiles(mac: false) ⇒ Object
• #repair_provisioning_profile!(profile_id, name, distribution_method, app_id, certificate_ids, device_ids, mac: false) ⇒ Object

Methods inherited from Client

#UI, #cookie, #handle_two_factor, #handle_two_step, #initialize, #itc_service_key, #load_session_from_env, #load_session_from_file, login, #login, #page_size, #paging, #persistent_cookie_path, #select_device, #send_shared_login_request, #store_cookie, #store_session, #with_retry

Constructor Details

This class inherits a constructor from Spaceship::Client

Class Method Details

.hostname ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 8

def self.hostname
  "https://developer.apple.com/services-account/#{PROTOCOL_VERSION}/"
end

Instance Method Details

#api_key ⇒ Object

Fetches the latest API Key from the Apple Dev Portal

# File 'lib/spaceship/portal/portal_client.rb', line 13

def api_key
  cache_path = File.expand_path("~/Library/Caches/spaceship_api_key.txt")
  begin
    cached = File.read(cache_path)
  rescue Errno::ENOENT
  end
  return cached if cached

  landing_url = "https://developer.apple.com/account/"
  logger.info("GET: " + landing_url)
  headers = @client.get(landing_url).headers
  results = headers['location'].match(/.*appIdKey=(\h+)/)
  if (results || []).length > 1
    api_key = results[1]
    FileUtils.mkdir_p(File.dirname(cache_path))
    File.write(cache_path, api_key) if api_key.length == 64
    return api_key
  else
    raise "Could not find latest API Key from the Dev Portal - the server might be slow right now"
  end
end

#app_groups ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 205

def app_groups
  paging do |page_number|
    r = request(:post, 'account/ios/identifiers/listApplicationGroups.action', {
      teamId: team_id,
      pageNumber: page_number,
      pageSize: page_size,
      sort: 'name=asc'
    })
    parse_response(r, 'applicationGroupList')
  end
end

#apps(mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 112

def apps(mac: false)
  paging do |page_number|
    r = request(:post, "account/#{platform_slug(mac)}/identifiers/listAppIds.action", {
      teamId: team_id,
      pageNumber: page_number,
      pageSize: page_size,
      sort: 'name=asc'
    })
    parse_response(r, 'appIds')
  end
end

#associate_groups_with_app(app, groups) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 145

def associate_groups_with_app(app, groups)
  ensure_csrf(Spaceship::AppGroup)

  request(:post, 'account/ios/identifiers/assignApplicationGroupToAppId.action', {
    teamId: team_id,
    appIdId: app.app_id,
    displayId: app.app_id,
    applicationGroups: groups.map(&:app_group_id)
  })

  details_for_app(app)
end

#certificates(types, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 286

def certificates(types, mac: false)
  paging do |page_number|
    r = request(:post, "account/#{platform_slug(mac)}/certificate/listCertRequests.action", {
      teamId: team_id,
      types: types.join(','),
      pageNumber: page_number,
      pageSize: page_size,
      sort: 'certRequestStatusCode=asc'
    })
    parse_response(r, 'certRequests')
  end
end

#create_app!(type, name, bundle_id, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 158

def create_app!(type, name, bundle_id, mac: false)
  # We moved the ensure_csrf to the top of this method
  # as we got some users with issues around creating new apps
  # https://github.com/fastlane/fastlane/issues/5813
  ensure_csrf(Spaceship::App)

  ident_params = case type.to_sym
                 when :explicit
                   {
                     type: 'explicit',
                     identifier: bundle_id,
                     push: 'on',
                     inAppPurchase: 'on',
                     gameCenter: 'on'
                   }
                 when :wildcard
                   {
                     type: 'wildcard',
                     identifier: bundle_id
                   }
                 end

  params = {
    name: name,
    teamId: team_id
  }

  params.merge!(ident_params)

  r = request(:post, "account/#{platform_slug(mac)}/identifiers/addAppId.action", params)
  parse_response(r, 'appId')
end

#create_app_group!(name, group_id) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 217

def create_app_group!(name, group_id)
  ensure_csrf(Spaceship::AppGroup)

  r = request(:post, 'account/ios/identifiers/addApplicationGroup.action', {
    name: name,
    identifier: group_id,
    teamId: team_id
  })
  parse_response(r, 'applicationGroup')
end

#create_certificate!(type, csr, app_id = nil) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 299

def create_certificate!(type, csr, app_id = nil)
  ensure_csrf(Spaceship::Certificate)

  r = request(:post, 'account/ios/certificate/submitCertificateRequest.action', {
    teamId: team_id,
    type: type,
    csrContent: csr,
    appIdId: app_id # optional
  })
  parse_response(r, 'certRequest')
end

#create_device!(device_name, device_id, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 267

def create_device!(device_name, device_id, mac: false)
  ensure_csrf(Spaceship::Device)

  req = request(:post) do |r|
    r.url "https://developerservices2.apple.com/services/#{PROTOCOL_VERSION}/#{platform_slug(mac)}/addDevice.action"
    r.params = {
      teamId: team_id,
      deviceNumber: device_id,
      name: device_name
    }
  end

  parse_response(req, 'device')
end

#create_provisioning_profile!(name, distribution_method, app_id, certificate_ids, device_ids, mac: false, sub_platform: nil) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 355

def create_provisioning_profile!(name, distribution_method, app_id, certificate_ids, device_ids, mac: false, sub_platform: nil)
  # Calling provisioning_profiles uses a different api end point than creating or deleting them so we
  # use a different entity to gather the csrf token
  ensure_csrf(Spaceship::App)

  params = {
    teamId: team_id,
    provisioningProfileName: name,
    appIdId: app_id,
    distributionType: distribution_method,
    certificateIds: certificate_ids,
    deviceIds: device_ids
  }
  params[:subPlatform] = sub_platform if sub_platform

  r = request(:post, "account/#{platform_slug(mac)}/profile/createProvisioningProfile.action", params)
  parse_response(r, 'provisioningProfile')
end

#delete_app!(app_id, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 191

def delete_app!(app_id, mac: false)
  ensure_csrf(Spaceship::App)

  r = request(:post, "account/#{platform_slug(mac)}/identifiers/deleteAppId.action", {
    teamId: team_id,
    appIdId: app_id
  })
  parse_response(r)
end

#delete_app_group!(app_group_id) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 228

def delete_app_group!(app_group_id)
  ensure_csrf(Spaceship::AppGroup)

  r = request(:post, 'account/ios/identifiers/deleteApplicationGroup.action', {
    teamId: team_id,
    applicationGroup: app_group_id
  })
  parse_response(r)
end

#delete_provisioning_profile!(profile_id, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 391

def delete_provisioning_profile!(profile_id, mac: false)
  # Calling provisioning_profiles uses a different api end point than creating or deleting them so we
  # use a different entity to gather the csrf token
  ensure_csrf(Spaceship::App)

  r = request(:post, "account/#{platform_slug(mac)}/profile/deleteProvisioningProfile.action", {
    teamId: team_id,
    provisioningProfileId: profile_id
  })
  parse_response(r)
end

#details_for_app(app) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 124

def details_for_app(app)
  r = request(:post, "account/#{platform_slug(app.mac?)}/identifiers/getAppIdDetail.action", {
    teamId: team_id,
    appIdId: app.app_id
  })
  parse_response(r, 'appId')
end

#devices(mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 242

def devices(mac: false)
  paging do |page_number|
    r = request(:post, "account/#{platform_slug(mac)}/device/listDevices.action", {
      teamId: team_id,
      pageNumber: page_number,
      pageSize: page_size,
      sort: 'name=asc'
    })
    parse_response(r, 'devices')
  end
end

#devices_by_class(device_class) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 254

def devices_by_class(device_class)
  paging do |page_number|
    r = request(:post, 'account/ios/device/listDevices.action', {
      teamId: team_id,
      pageNumber: page_number,
      pageSize: page_size,
      sort: 'name=asc',
      deviceClasses: device_class
    })
    parse_response(r, 'devices')
  end
end

#download_certificate(certificate_id, type, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 311

def download_certificate(certificate_id, type, mac: false)
  { type: type, certificate_id: certificate_id }.each { |k, v| raise "#{k} must not be nil" if v.nil? }

  r = request(:get, "account/#{platform_slug(mac)}/certificate/downloadCertificateContent.action", {
    teamId: team_id,
    certificateId: certificate_id,
    type: type
  })
  a = parse_response(r)
  if r.success? && a.include?("Apple Inc")
    return a
  else
    raise UnexpectedResponse.new, "Couldn't download certificate, got this instead: #{a}"
  end
end

#download_provisioning_profile(profile_id, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 374

def download_provisioning_profile(profile_id, mac: false)
  # Calling provisioning_profiles uses a different api end point than creating or deleting them so we
  # use a different entity to gather the csrf token
  ensure_csrf(Spaceship::App)

  r = request(:get, "account/#{platform_slug(mac)}/profile/downloadProfileContent", {
    teamId: team_id,
    provisioningProfileId: profile_id
  })
  a = parse_response(r)
  if r.success? && a.include?("DOCTYPE plist PUBLIC")
    return a
  else
    raise UnexpectedResponse.new, "Couldn't download provisioning profile, got this instead: #{a}"
  end
end

#in_house? ⇒ Boolean

Is the current session from an Enterprise In House account?

Returns:

• (Boolean)

# File 'lib/spaceship/portal/portal_client.rb', line 94

def in_house?
  return @in_house unless @in_house.nil?
  @in_house = (team_information['type'] == 'In-House')
end

#provisioning_profiles(mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 342

def provisioning_profiles(mac: false)
  req = request(:post) do |r|
    r.url "https://developerservices2.apple.com/services/#{PROTOCOL_VERSION}/#{platform_slug(mac)}/listProvisioningProfiles.action"
    r.params = {
      teamId: team_id,
      includeInactiveProfiles: true,
      onlyCountLists: true
    }
  end

  parse_response(req, 'provisioningProfiles')
end

#repair_provisioning_profile!(profile_id, name, distribution_method, app_id, certificate_ids, device_ids, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 403

def repair_provisioning_profile!(profile_id, name, distribution_method, app_id, certificate_ids, device_ids, mac: false)
  # Calling provisioning_profiles uses a different api end point than creating or deleting them so we
  # use a different entity to gather the csrf token
  ensure_csrf(Spaceship::App)

  r = request(:post, "account/#{platform_slug(mac)}/profile/regenProvisioningProfile.action", {
    teamId: team_id,
    provisioningProfileId: profile_id,
    provisioningProfileName: name,
    appIdId: app_id,
    distributionType: distribution_method,
    certificateIds: certificate_ids.join(','),
    deviceIds: device_ids
  })

  parse_response(r, 'provisioningProfile')
end

#revoke_certificate!(certificate_id, type, mac: false) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 327

def revoke_certificate!(certificate_id, type, mac: false)
  ensure_csrf(Spaceship::Certificate)

  r = request(:post, "account/#{platform_slug(mac)}/certificate/revokeCertificate.action", {
    teamId: team_id,
    certificateId: certificate_id,
    type: type
  })
  parse_response(r, 'certRequests')
end

#select_team ⇒ Object

Shows a team selection for the user in the terminal. This should not be called on CI systems

# File 'lib/spaceship/portal/portal_client.rb', line 77

def select_team
  @current_team_id = self.UI.select_team
end

#send_login_request(user, password) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 35

def send_login_request(user, password)
  response = send_shared_login_request(user, password)
  return response if self.cookie.include?("myacinfo")

  # When the user has 2 step enabled, we might have to call this method again
  # This only occurs when the user doesn't have a team on iTunes Connect
  # For 2 step verification we use the iTunes Connect back-end
  # which is enough to get the DES... cookie, however we don't get a valid
  # myacinfo cookie at that point. That means, after getting the DES... cookie
  # we have to send the login request again. This will then get us a valid myacinfo
  # cookie, additionally to the DES... cookie
  return send_shared_login_request(user, password)
end

#team_id ⇒ String

Returns The currently selected Team ID.

Returns:

• (String) —

  The currently selected Team ID

# File 'lib/spaceship/portal/portal_client.rb', line 62

def team_id
  return @current_team_id if @current_team_id

  if teams.count > 1
    puts "The current user is in #{teams.count} teams. Pass a team ID or call `select_team` to choose a team. Using the first one for now."
  end

  if teams.count == 0
    raise "User '#{user}' does not have access to any teams with an active membership"
  end
  @current_team_id ||= teams[0]['teamId']
end

#team_id=(team_id) ⇒ Object

Set a new team ID which will be used from now on

# File 'lib/spaceship/portal/portal_client.rb', line 82

def team_id=(team_id)
  @current_team_id = team_id
end

#team_information ⇒ Hash

Returns Fetches all information of the currently used team.

Returns:

• (Hash) —

  Fetches all information of the currently used team

# File 'lib/spaceship/portal/portal_client.rb', line 87

def team_information
  teams.find do |t|
    t['teamId'] == team_id
  end
end

#teams ⇒ Array

Returns A list of all available teams.

Returns:

• (Array) —

  A list of all available teams

# File 'lib/spaceship/portal/portal_client.rb', line 50

def teams
  return @teams if @teams
  req = request(:post, "https://developerservices2.apple.com/services/QH65B2/listTeams.action")
  @teams = parse_response(req, 'teams').sort_by do |team|
    [
      team['name'],
      team['teamId']
    ]
  end
end

#update_service_for_app(app, service) ⇒ Object

# File 'lib/spaceship/portal/portal_client.rb', line 132

def update_service_for_app(app, service)
  ensure_csrf(Spaceship::App)

  request(:post, service.service_uri, {
    teamId: team_id,
    displayId: app.app_id,
    featureType: service.service_id,
    featureValue: service.value
  })

  details_for_app(app)
end