🖥️ Build Windows EXE #228
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: 🖥️ Build Windows EXE | |
| on: | |
| workflow_dispatch: | |
| push: | |
| branches: | |
| - main | |
| paths: | |
| - '**/Connect-A-PIC.csproj' | |
| jobs: | |
| build_windows_exe: | |
| name: Build Windows EXE | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: 🧾 Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| lfs: true | |
| submodules: 'recursive' | |
| - name: 💽 Setup .NET SDK | |
| uses: actions/setup-dotnet@v3 | |
| with: | |
| # Use the .NET SDK from global.json in the root of the repository. | |
| global-json-file: global.json | |
| - name: 📦 Restore Dependencies | |
| run: dotnet restore | |
| - name: Setup display server | |
| run: | | |
| sudo apt-get update | |
| sudo apt-get install -y xvfb | |
| Xvfb :99 -screen 0 1024x768x24 & | |
| export DISPLAY=:99 | |
| - name: 🤖 Setup Godot | |
| uses: chickensoft-games/setup-godot@v1 | |
| with: | |
| # In this case, we are using the version from global.json. | |
| # | |
| # This allows checks on renovatebot PR's to succeed whenever | |
| # renovatebot updates the Godot SDK version. | |
| version: global.json | |
| # Use .NET-enabled version of Godot (the default is also true). | |
| use-dotnet: true | |
| # Include the Godot Export Templtes (the default is false). | |
| include-templates: true | |
| - name: Create Build Directory | |
| run: mkdir -p ${{ github.workspace }}/Release | |
| - name: Extract Version from Project File and store it for publishing | |
| id: project_version | |
| run: | | |
| version=$(grep '<Version>' Connect-A-PIC.csproj | sed -e 's/<[^>]*>//g' | xargs) | |
| echo $version > ${{ github.workspace }}/Release/version.txt | |
| - name: 🧑🔬 Generate .NET Bindings | |
| run: godot --build-solutions --quit || exit 0 | |
| - name: Build Windows EXE | |
| run: | | |
| godot --export-release "win64" | |
| if [ $? -ne 0 ]; then | |
| echo "Build failed with exit code $?" | |
| exit 1 | |
| fi | |
| # list files in release folder | |
| - name: List files in Release directory | |
| run: ls -la ${{ github.workspace }}/Release | |
| #/Release | |
| - name: Upload EXE as artifact | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-EXE | |
| path: ${{ github.workspace }}/Release/Connect-A-PIC.exe | |
| # also upload all the files BUT the exe for the zipping later on. | |
| - name: Upload Release directory as artifact | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-RELEASE-FOLDER | |
| path: ${{ github.workspace }}/Release/ | |
| sign_windows_exe: | |
| name: Sign Windows Exe | |
| needs: build_windows_exe | |
| runs-on: windows-latest | |
| steps: | |
| - name: Download EXE from artifact | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-EXE | |
| path: ./Release | |
| - name: Setup Certificate | |
| run: | | |
| echo ${{ secrets.SM_CLIENT_CERT_FILE_B64 }} | base64 --decode > /d/Certificate_pkcs12.p12 | |
| shell: bash | |
| # Set environment variables and paths for the code signing process | |
| - name: Set variables for Code Signing | |
| run: | | |
| echo "SM_HOST=${{ secrets.SM_HOST }}" >> $GITHUB_ENV | |
| echo "SM_API_KEY=${{ secrets.SM_API_KEY }}" >> $GITHUB_ENV | |
| echo "SM_CLIENT_CERT_FILE=D:\\Certificate_pkcs12.p12" >> "$GITHUB_ENV" | |
| echo "SM_CLIENT_CERT_PASSWORD=${{ secrets.SM_CLIENT_CERT_PASSWORD }}" >> $GITHUB_ENV | |
| echo "C:\Program Files (x86)\Windows Kits\10\App Certification Kit" >> $GITHUB_PATH | |
| echo "C:\Program Files (x86)\Microsoft SDKs\Windows\v10.0A\bin\NETFX 4.8 Tools" >> $GITHUB_PATH | |
| echo "C:\Program Files\DigiCert\DigiCert One Signing Manager Tools" >> $GITHUB_PATH | |
| shell: bash | |
| - name: Setup SSM KSP on windows latest | |
| run: | | |
| curl -X GET https://one.digicert.com/signingmanager/api-ui/v1/releases/smtools-windows-x64.msi/download -H "x-api-key:%SM_API_KEY%" -o smtools-windows-x64.msi | |
| msiexec /i smtools-windows-x64.msi /quiet /qn | |
| smksp_registrar.exe list | |
| smctl.exe keypair ls | |
| C:\Windows\System32\certutil.exe -csp "DigiCert Signing Manager KSP" -key -user | |
| smksp_cert_sync.exe | |
| shell: cmd | |
| - name: Signing using Signtool | |
| run: | | |
| signtool.exe sign /sha1 ${{ secrets.SM_CODE_SIGNING_CERT_SHA1_HASH }} /tr http://timestamp.digicert.com /td SHA256 /fd SHA256 ".\Release\Connect-A-PIC.exe" | |
| signtool.exe verify /v /pa ".\Release\Connect-A-PIC.exe" | |
| shell: cmd | |
| - name: Upload signed EXE as artifact | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-EXE-SIGNED | |
| path: ./Release/Connect-A-PIC.exe | |
| create_installer: | |
| name: Create Installer | |
| needs: sign_windows_exe | |
| runs-on: windows-latest | |
| steps: | |
| - name: 🧾 Checkout | |
| uses: actions/checkout@v4 | |
| with: | |
| lfs: true | |
| submodules: 'recursive' | |
| - name: Download release folder from artifact | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-RELEASE-FOLDER | |
| path: ${{ github.workspace }}\Release | |
| - name: Download signed EXE from artifact | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-EXE-SIGNED | |
| path: ${{ github.workspace }}\Release | |
| - name: Read version from file | |
| id: read_version | |
| run: | | |
| $version = Get-Content -Path "${{ github.workspace }}/Release/Version.txt" | |
| Write-Output "::set-output name=version::$version" | |
| - name: Build AIP | |
| uses: caphyon/advinst-github-action@main | |
| with: | |
| advinst-version: '21.6' | |
| advinst-enable-automation: 'true' | |
| aip-path: ${{ github.workspace }}\Connect-A-PIC.aip | |
| aip-build-name: DefaultBuild | |
| aip-package-name: Connect_A_PIC_Setup.msi | |
| aip-output-dir: ${{ github.workspace }}\Release | |
| aip-commands: | | |
| SetVersion ${{ steps.read_version.outputs.version }} | |
| AddFile APPDIR ${{ github.workspace }}\Release\Connect-A-PIC.exe | |
| AddFolder APPDIR ${{ github.workspace }}\Release\data_Connect-A-PIC_windows_x86_64 | |
| AddFile APPDIR ${{ github.workspace }}\icon.ico | |
| NewShortcut -name Connect-A-PIC -dir DesktopFolder -target APPDIR\Connect-A-PIC.exe -icon ${{ github.workspace }}\icon.ico | |
| NewShortcut -name Connect-A-PIC -dir StartMenuFolder -target APPDIR\Connect-A-PIC.exe -icon ${{ github.workspace }}\icon.ico | |
| # signing part | |
| - name: Setup Certificate | |
| run: | | |
| echo ${{ secrets.SM_CLIENT_CERT_FILE_B64 }} | base64 --decode > /d/Certificate_pkcs12.p12 | |
| shell: bash | |
| # Set environment variables and paths for the code signing process | |
| - name: Set variables for Code Signing | |
| run: | | |
| echo "SM_HOST=${{ secrets.SM_HOST }}" >> $GITHUB_ENV | |
| echo "SM_API_KEY=${{ secrets.SM_API_KEY }}" >> $GITHUB_ENV | |
| echo "SM_CLIENT_CERT_FILE=D:\\Certificate_pkcs12.p12" >> "$GITHUB_ENV" | |
| echo "SM_CLIENT_CERT_PASSWORD=${{ secrets.SM_CLIENT_CERT_PASSWORD }}" >> $GITHUB_ENV | |
| echo "C:\Program Files (x86)\Windows Kits\10\App Certification Kit" >> $GITHUB_PATH | |
| echo "C:\Program Files (x86)\Microsoft SDKs\Windows\v10.0A\bin\NETFX 4.8 Tools" >> $GITHUB_PATH | |
| echo "C:\Program Files\DigiCert\DigiCert One Signing Manager Tools" >> $GITHUB_PATH | |
| shell: bash | |
| - name: Setup SSM KSP on windows latest | |
| run: | | |
| curl -X GET https://one.digicert.com/signingmanager/api-ui/v1/releases/smtools-windows-x64.msi/download -H "x-api-key:%SM_API_KEY%" -o smtools-windows-x64.msi | |
| msiexec /i smtools-windows-x64.msi /quiet /qn | |
| smksp_registrar.exe list | |
| smctl.exe keypair ls | |
| C:\Windows\System32\certutil.exe -csp "DigiCert Signing Manager KSP" -key -user | |
| smksp_cert_sync.exe | |
| shell: cmd | |
| - name: Signing using Signtool | |
| run: | | |
| signtool.exe sign /sha1 ${{ secrets.SM_CODE_SIGNING_CERT_SHA1_HASH }} /tr http://timestamp.digicert.com /td SHA256 /fd SHA256 "${{ github.workspace }}/Release/Connect_A_PIC_Setup.msi" | |
| signtool.exe verify /v /pa "${{ github.workspace }}\Release/Connect_A_PIC_Setup.msi" | |
| shell: cmd | |
| - name: Publish setup artifact | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-Setup-SIGNED | |
| path: ${{ github.workspace }}\Release/Connect_A_PIC_Setup.msi | |
| publish_installer: | |
| name: Publish installer | |
| needs: create_installer | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Download setup file from artifact | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-Setup-SIGNED | |
| path: ./Release | |
| - name: Download release folder from artifact | |
| uses: actions/download-artifact@v4 | |
| with: | |
| name: Connect-A-PIC-RELEASE-FOLDER | |
| path: ./Release | |
| - name: List files in Release Directory | |
| run: | | |
| releaseDir="${{ github.workspace }}/Release" | |
| echo "Checking files in folder $releaseDir" | |
| if [ -z "$(ls -A $releaseDir)" ]; then | |
| echo "Error: No files found in the Release directory." | |
| exit 1 | |
| fi | |
| ls -l $releaseDir | |
| - name: Set project version from version.txt | |
| run: | | |
| version=$(cat ./Release/version.txt) | |
| echo "PROJECTVERSION=$version" >> $GITHUB_ENV | |
| rm ./Release/version.txt | |
| - name: Print extracted Project version | |
| run: echo "The extracted Godot version is $PROJECTVERSION" | |
| - name: Create GitHub Release | |
| id: create_release | |
| uses: actions/create-release@v1 | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| with: | |
| tag_name: v${{ env.PROJECTVERSION }} | |
| release_name: Release v${{ env.PROJECTVERSION }} | |
| draft: false | |
| prerelease: false | |
| body: "Automatically generated release" | |
| - name: Upload Release Asset | |
| uses: actions/upload-release-asset@v1 | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| with: | |
| upload_url: ${{ steps.create_release.outputs.upload_url }} | |
| asset_path: ./Release/Connect_A_PIC_Setup.msi | |
| asset_name: Connect-A-PIC_${{ env.PROJECTVERSION }}.msi | |
| asset_content_type: application/octet-stream |