Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Generate Apple Pay Certificate From CSR #22053

Closed
wants to merge 1 commit into from
Closed

Generate Apple Pay Certificate From CSR #22053

wants to merge 1 commit into from

Conversation

bartpowers
Copy link

@bartpowers bartpowers commented May 29, 2024
edited
Loading

Checklist

  • I've run bundle exec rspec from the root directory to see all new and existing tests pass
  • I've followed the fastlane code style and run bundle exec rubocop -a to ensure the code style is valid
  • I see several green ci/circleci builds in the "All checks have passed" section of my PR (connect CircleCI to GitHub if not)
  • I've read the Contribution Guidelines
  • I've updated the documentation if necessary.
  • I've added or updated relevant unit tests.

Motivation and Context

When setting up Apple Pay in an iOS application, you need to generate a certificate from a provider (Usually stripe or Braintree etc.)

For developers managing large portfolios of applications, this is currently un-scriptable

This is a simple addition to allow anyone to generate an Apple Pay Certificate

In the below script the only change required in this PR is certificate = Spaceship::Portal.client.create_apple_pay_certificate!(csr, merchant_id), fastlane already did all the other steps

require 'spaceship'
require 'openssl'

csr_path = '/PATH/TO/stripe.certSigningRequest'
csr_content = File.read(csr_path)
csr = OpenSSL::X509::Request.new(csr_content)

# Login to Apple Developer account
Spaceship::Portal.login('your_apple_id', 'your_password')

# Select the team if you're part of multiple teams
team_id = 'your_team_id'  # Replace with your actual team ID
Spaceship::Portal.client.team_id = team_id

`fastlane produce merchant -o merchant.com.example.production -r "Example Merchant Production"`

`fastlane produce associate_merchant -a com.krausefx.app merchant.com.example.production`

# Verify that the merchant ID exists
merchant_id = Spaceship.merchant.find("merchant.com.example.production")
if merchant_id?
  puts "Merchant not found"
  exit
else
  puts "Merchant ID found: #{app.app_id}"
end

# Attempt to create the Apple Pay certificate
begin
  certificate = Spaceship::Portal.client.create_apple_pay_certificate!(csr, merchant_id)
  puts "Certificate created: #{certificate.id}"

rescue Spaceship::UnexpectedResponse => e
  puts "Failed to create certificate: #{e.message}"
end

cert_content = Spaceship::Portal.client.download_certificate(certificate['certificateId'], certificate['certificateTypeDisplayId'])
  cert_file_path = '/PATH/TO//Downloads/apple_pay_certificate.cer'   File.write(cert_file_path, cert_content)   
puts "Certificate saved to #{cert_file_path}"

Resolves #12466
#15925
#11809
#22054
-->

Description

  • Used proxyman to monitor Apple Developer traffic when generating the new certificate
  • Ran the above script several times on different appIds and merchant accounts
  • The change to fastlane is minimal but it allows us to move forward without being blocked

Testing Steps

Run the above script

This was referenced May 29, 2024
Closed
Closed
@bartpowers bartpowers closed this May 29, 2024
@bartpowers
Copy link
Author

You can do this manually by doing the following...

type = Spaceship::Portal::Certificate::CERTIFICATE_TYPE_IDS.key(Spaceship::Portal::Certificate::ApplePay)
certificate = Spaceship::Portal.client.create_certificate!(type, csr, merchant_id)

require 'spaceship'
require 'openssl'

csr_path = '/PATH/TO/stripe.certSigningRequest'
csr_content = File.read(csr_path)
csr = OpenSSL::X509::Request.new(csr_content)

# Login to Apple Developer account
Spaceship::Portal.login('your_apple_id', 'your_password')

# Select the team if you're part of multiple teams
team_id = 'your_team_id'  # Replace with your actual team ID
Spaceship::Portal.client.team_id = team_id

`fastlane produce merchant -o merchant.com.example.production -r "Example Merchant Production"`

`fastlane produce associate_merchant -a com.krausefx.app merchant.com.example.production`

# Verify that the merchant ID exists
merchant_id = Spaceship.merchant.find("merchant.com.example.production")
if merchant_id?
  puts "Merchant not found"
  exit
else
  puts "Merchant ID found: #{app.app_id}"
end

# Attempt to create the Apple Pay certificate
begin
  type = Spaceship::Portal::Certificate::CERTIFICATE_TYPE_IDS.key(Spaceship::Portal::Certificate::ApplePay)
  certificate = Spaceship::Portal.client.create_certificate!(type, csr, merchant_id)
  puts "Certificate created: #{certificate.id}"

rescue Spaceship::UnexpectedResponse => e
  puts "Failed to create certificate: #{e.message}"
end

cert_content = Spaceship::Portal.client.download_certificate(certificate['certificateId'], certificate['certificateTypeDisplayId'])
  cert_file_path = '/PATH/TO//Downloads/apple_pay_certificate.cer'   File.write(cert_file_path, cert_content)   
puts "Certificate saved to #{cert_file_path}"

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
tool: spaceship
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@bartpowers