From 22523456288cedf8f83e1367330a17e489010104 Mon Sep 17 00:00:00 2001
From: RoiArthurB <contact@arthurbrugiere.fr>
Date: Tue, 5 Oct 2021 09:23:05 +0700
Subject: [PATCH] [GHA] Split macos certificats steps - debug purpose

---
 .github/workflows/github-travis.yml | 39 +++++++++++++++++++++++++++--
 1 file changed, 37 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/github-travis.yml b/.github/workflows/github-travis.yml
index f1ea3204c9..95c10b569d 100644
--- a/.github/workflows/github-travis.yml
+++ b/.github/workflows/github-travis.yml
@@ -88,17 +88,52 @@ jobs:
           name: gama-zip-builds
           path: ./artifacts/
 
-      - name: Import certificates
+      - name: Create Keychain
         env: 
           MACOS_CERTIFICATE: ${{ secrets.MACOS_APP-CERTIFICATE }}
           MACOS_CERTIFICATE_PWD: ${{ secrets.MACOS_APP-CERTIFICATE_PWD }}
           MACOS_KEYCHAIN_PWD: ${{ secrets.MACOS_KEYCHAIN_PWD }}
         run: |
-          echo $MACOS_CERTIFICATE | base64 --decode > certificate.p12
           security create-keychain -p "$MACOS_KEYCHAIN_PWD" build.keychain
+
+      - name: Set keychain as default
+        env: 
+          MACOS_CERTIFICATE: ${{ secrets.MACOS_APP-CERTIFICATE }}
+          MACOS_CERTIFICATE_PWD: ${{ secrets.MACOS_APP-CERTIFICATE_PWD }}
+          MACOS_KEYCHAIN_PWD: ${{ secrets.MACOS_KEYCHAIN_PWD }}
+        run: |
           security default-keychain -s build.keychain
+
+      - name: Unlock the keychain
+        env: 
+          MACOS_CERTIFICATE: ${{ secrets.MACOS_APP-CERTIFICATE }}
+          MACOS_CERTIFICATE_PWD: ${{ secrets.MACOS_APP-CERTIFICATE_PWD }}
+          MACOS_KEYCHAIN_PWD: ${{ secrets.MACOS_KEYCHAIN_PWD }}
+        run: |
           security unlock-keychain -p "$MACOS_KEYCHAIN_PWD" build.keychain
+
+      - name: Import certificate file
+        env: 
+          MACOS_CERTIFICATE: ${{ secrets.MACOS_APP-CERTIFICATE }}
+          MACOS_CERTIFICATE_PWD: ${{ secrets.MACOS_APP-CERTIFICATE_PWD }}
+          MACOS_KEYCHAIN_PWD: ${{ secrets.MACOS_KEYCHAIN_PWD }}
+        run: |
+          echo $MACOS_CERTIFICATE | base64 --decode > certificate.p12
+
+      - name: Import certificate in the keychain
+        env: 
+          MACOS_CERTIFICATE: ${{ secrets.MACOS_APP-CERTIFICATE }}
+          MACOS_CERTIFICATE_PWD: ${{ secrets.MACOS_APP-CERTIFICATE_PWD }}
+          MACOS_KEYCHAIN_PWD: ${{ secrets.MACOS_KEYCHAIN_PWD }}
+        run: |
           security import certificate.p12 -k build.keychain -P $MACOS_CERTIFICATE_PWD -T /usr/bin/codesign
+
+      - name: Set key partition
+        env: 
+          MACOS_CERTIFICATE: ${{ secrets.MACOS_APP-CERTIFICATE }}
+          MACOS_CERTIFICATE_PWD: ${{ secrets.MACOS_APP-CERTIFICATE_PWD }}
+          MACOS_KEYCHAIN_PWD: ${{ secrets.MACOS_KEYCHAIN_PWD }}
+        run: |
           security set-key-partition-list -S apple-tool:,apple:,codesign: -s -k "$MACOS_KEYCHAIN_PWD" build.keychain
 
       - name: Sign Application w/o JDK