Module: Vanagon::Utilities::ExtraFilesSigner

Defined in:
lib/vanagon/utilities/extra_files_signer.rb

Class Method Summary collapse

Class Method Details

.commands(project, mktemp, source_dir) ⇒ Object

rubocop:disable Metrics/AbcSize



5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
 
# File 'lib/vanagon/utilities/extra_files_signer.rb', line 5

def commands(project, mktemp, source_dir) # rubocop:disable Metrics/AbcSize
  tempdir = nil
  commands = []
  # Skip signing extra files if logging into the signing_host fails
  # This enables things like CI being able to sign the additional files,
  # but locally triggered builds by developers who don't have access to
  # the signing host just print a message and skip the signing.
  Vanagon::Utilities.retry_with_timeout(3, 5) do
    tempdir = Vanagon::Utilities::remote_ssh_command("#{project.signing_username}@#{project.signing_hostname}", "#{mktemp} 2>/dev/null", return_command_output: true)
  end

  project.extra_files_to_sign.each do |file|
    file_location = File.join(tempdir, File.basename(file))
    local_source_path = File.join('$(tempdir)', source_dir, file)
    remote_host = "#{project.signing_username}@#{project.signing_hostname}"
    remote_destination_path = "#{remote_host}:#{tempdir}"
    remote_file_location = "#{remote_host}:#{file_location}"
    extra_flags = ''
    extra_flags = '--extended-attributes' if project.platform.is_macos?

    commands += [
      "rsync -e '#{Vanagon::Utilities.ssh_command}' --verbose --recursive --hard-links --links  --no-perms --no-owner --no-group #{extra_flags} #{local_source_path} #{remote_destination_path}",
      "#{Vanagon::Utilities.ssh_command} #{remote_host} #{project.signing_command} #{file_location}",
      "rsync -e '#{Vanagon::Utilities.ssh_command}' --verbose --recursive --hard-links --links  --no-perms --no-owner --no-group #{extra_flags} #{remote_file_location} #{local_source_path}"
    ]
  end

  commands
rescue RuntimeError
  require 'vanagon/logger'
  VanagonLogger.error "Unable to connect to #{project.signing_username}@#{project.signing_hostname}, skipping signing extra files: #{project.extra_files_to_sign.join(',')}"
  raise if ENV['VANAGON_FORCE_SIGNING']
  []
end