flyapps/fir_ser/api/utils/app/iossignapi.py

#!/usr/bin/env python
# -*- coding:utf-8 -*-
# project: 4月
# author: liuyu
# date: 2020/4/24

from api.utils.app.shellcmds import shell_command, use_user_pass, pshell_command
from fir_ser.settings import SUPER_SIGN_ROOT
import os
from api.utils.app.randomstrings import make_app_uuid
import logging
from api.utils.apple.appleapiv3 import AppStoreConnectApi
logger = logging.getLogger(__file__)
import base64


def exec_shell(cmd, remote=False, timeout=None):
    if remote:
        hostip = "10.66.6.66"
        port = 65534
        user = "root"
        passwd = "root"
        result = use_user_pass(hostip, port, user, passwd, cmd)
        return result
    else:
        logger.info("exec_shell cmd:%s" % (cmd))
        result = shell_command(cmd, timeout)
        logger.info("exec_shell cmd:%s  result:%s" % (cmd, result))
        if result.get("exit_code") != 0:
            err_info = result.get("err_info", None)
            if err_info:
                if "have access to this membership resource. Contact your team" in err_info:
                    result["err_info"] = "You currently don't have access to this membership resource 【您没有权限执行该操作】"
                elif "Maximum number of certificates generated" in err_info:
                    result["err_info"] = "Maximum number of certificates generated 【开发证书数量到上限】"
                else:
                    result["err_info"] = "Unknown Error"
            return False, result
        return True, result


class AppDeveloperApi(object):
    def __init__(self, username, password, certid):
        self.username = username
        self.password = password
        self.certid = certid
        script_path = os.path.join(SUPER_SIGN_ROOT, 'scripts', 'apple_api.rb')
        self.cmd = "ruby %s '%s' '%s'" % (script_path, self.username, self.password)

    def active(self, user_obj):
        self.cmd = self.cmd + " active "
        logger.info("ios developer active cmd:%s" % (self.cmd))
        result = {}
        try:
            result = pshell_command(self.cmd, user_obj, self.username)
            logger.info("ios developer active cmd:%s  result:%s" % (self.cmd, result))
            if result["exit_code"] == 0:
                return True, result
        except Exception as e:
            logger.error("ios developer active cmd:%s Failed Exception:%s" % (self.cmd, e))
        return False, result

    def file_format_path_name(self, user_obj):
        cert_dir_name = make_app_uuid(user_obj, self.username)
        cert_dir_path = os.path.join(SUPER_SIGN_ROOT, cert_dir_name)
        if not os.path.isdir(cert_dir_path):
            os.makedirs(cert_dir_path)
        return os.path.join(cert_dir_path, cert_dir_name)

    def create_cert(self, user_obj):
        self.cmd = self.cmd + " cert add  '%s'" % (self.file_format_path_name(user_obj))
        return exec_shell(self.cmd)

    def get_profile(self, bundleId, app_id, device_udid, device_name, provisionName,auth=None):
        self.cmd = self.cmd + " profile add '%s' '%s' '%s' '%s' '%s' '%s'" % (
            bundleId, app_id, device_udid, device_name, self.certid, provisionName)
        return exec_shell(self.cmd)

    def del_profile(self, bundleId, app_id):
        self.cmd = self.cmd + " profile del '%s' '%s'" % (bundleId, app_id)
        result = exec_shell(self.cmd)

    def set_device_status(self, status, device_udid):
        if status == "enable":
            self.cmd = self.cmd + " device enable '%s'" % (device_udid)
        else:
            self.cmd = self.cmd + " device disable '%s'" % (device_udid)
        result = exec_shell(self.cmd)

    def add_device(self, device_udid, device_name):
        self.cmd = self.cmd + " device add '%s' '%s'" % (device_udid, device_name)
        result = exec_shell(self.cmd)

    def get_device(self, user_obj):
        self.cmd = self.cmd + " device get '%s' " % (self.file_format_path_name(user_obj))
        return exec_shell(self.cmd)

    def add_app(self, bundleId, app_id):
        self.cmd = self.cmd + " app add '%s' '%s'" % (bundleId, app_id)
        result = exec_shell(self.cmd)

    def del_app(self, bundleId, app_id):
        self.cmd = self.cmd + " app del '%s' '%s'" % (bundleId, app_id)
        result = exec_shell(self.cmd)


class ResignApp(object):

    def __init__(self, my_local_key, app_dev_pem):
        self.my_local_key = my_local_key
        self.app_dev_pem = app_dev_pem
        # script_path=os.path.join(SUPER_SIGN_ROOT,'scripts','apple_api.rb')
        self.cmd = "isign  -c '%s'  -k '%s' " % (self.app_dev_pem, self.my_local_key)

    @staticmethod
    def sign_mobileconfig(mobilconfig_path, sign_mobilconfig_path, ssl_pem_path, ssl_key_path):
        cmd = "openssl smime -sign -in %s -out %s -signer %s " \
              "-inkey %s -certfile %s -outform der -nodetach " % (
                  mobilconfig_path, sign_mobilconfig_path, ssl_pem_path, ssl_key_path, ssl_pem_path)
        return exec_shell(cmd)

    def sign(self, new_profile, org_ipa, new_ipa):
        self.cmd = self.cmd + " -p '%s' -o '%s'  '%s'" % (new_profile, new_ipa, org_ipa)
        result = exec_shell(self.cmd)


class AppDeveloperApiV2(object):
    def __init__(self, issuer_id, private_key_id, p8key, certid):
        self.issuer_id = issuer_id
        self.private_key_id = private_key_id
        self.p8key = p8key
        self.certid = certid

    def active(self,user_obj):
        result = {}
        try:
            apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)
            certificates = apple_obj.get_all_certificates()
            logger.info("ios developer active result:%s" %certificates)
            if len(certificates) > 0:
                return True, result
        except Exception as e:
            logger.error("ios developer active Failed Exception:%s" % e)
            result['return_info'] = "%s" %e
        return False, result

    def file_format_path_name(self, user_obj):
        cert_dir_name = make_app_uuid(user_obj, self.issuer_id)
        cert_dir_path = os.path.join(SUPER_SIGN_ROOT, cert_dir_name)
        if not os.path.isdir(cert_dir_path):
            os.makedirs(cert_dir_path)
        return os.path.join(cert_dir_path, cert_dir_name)

    def create_cert(self, user_obj):
        pass

    def get_profile(self, bundleId, app_id, device_udid, device_name, provisionName,auth):
        result={}
        try:
            apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)
            bundle_obj = apple_obj.register_bundle_id_enable_capability(app_id,bundleId + app_id)
            apple_obj.register_device(device_name,device_udid)
            profile_obj = apple_obj.create_profile(bundle_obj.id,auth.get('certid'),provisionName.split("/")[-1])
            if profile_obj:
                n=base64.b64decode(profile_obj.profileContent)
                if not os.path.isdir(os.path.basename(provisionName)):
                    os.makedirs(os.path.basename(provisionName))
                with open(provisionName,'wb') as f:
                    f.write(n)
                return True, profile_obj.profileContent
        except Exception as e:
            logger.error("ios developer make profile Failed Exception:%s" % e)
            result['return_info'] = "%s" % e
            return False, result

    def del_profile(self, bundleId, app_id):
        result = {}
        try:
            apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)
            profile_obj = apple_obj.list_profile_by_profile_name(app_id)
            if profile_obj:
                if apple_obj.delete_profile_by_id(profile_obj.id):
                    return True, profile_obj
        except Exception as e:
            logger.error("ios developer delete profile Failed Exception:%s" % e)
            result['return_info'] = "%s" % e
            return False, result

    def set_device_status(self, status, device_udid):
        apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)
        result = {}
        try:
            if status == "enable":
                device_obj = apple_obj.enabled_device(device_udid)
            else:
                device_obj = apple_obj.disabled_device(device_udid)
            logger.info("device_obj %s result:%s" %(device_obj,status))
            if device_obj and device_obj.id:
                return True, result
        except Exception as e:
            logger.error("ios developer set devices status Failed Exception:%s" % e)
            result['return_info'] = "%s" %e
        return False, result


    def get_device(self, user_obj):
        result = {}
        try:
            apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)
            devices_obj_list = apple_obj.get_all_devices()
            if devices_obj_list:
                return True,devices_obj_list
        except Exception as e:
            logger.error("ios developer delete profile Failed Exception:%s" % e)
            result['return_info'] = "%s" % e
            return False, result

    def del_app(self, bundleId, app_id):
        result = {}
        try:
            apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)
            profile_obj = apple_obj.list_profile_by_profile_name(app_id)
            if profile_obj:
                if apple_obj.delete_profile_by_id(profile_obj.id):
                    pass
            if apple_obj.delete_bundle_by_identifier(bundleId+app_id):
                return True, profile_obj

        except Exception as e:
            logger.error("ios developer delete profile Failed Exception:%s" % e)
            result['return_info'] = "%s" % e
            return False, result
实现超级签名方法 5 years ago			`#!/usr/bin/env python`
			`# -- coding:utf-8 --`
			`# project: 4月`
			`# author: liuyu`
			`# date: 2020/4/24`

优化代码 5 years ago			`from api.utils.app.shellcmds import shell_command, use_user_pass, pshell_command`
实现超级签名方法 5 years ago			`from fir_ser.settings import SUPER_SIGN_ROOT`
			`import os`
			`from api.utils.app.randomstrings import make_app_uuid`
优化代码结构 5 years ago			`import logging`
增加p8key 秘钥支持签名功能 4 years ago			`from api.utils.apple.appleapiv3 import AppStoreConnectApi`
优化代码结构 5 years ago			`logger = logging.getLogger(__file__)`
增加p8key 秘钥支持签名功能 4 years ago			`import base64`
优化代码 5 years ago
增加日志逻辑 5 years ago
优化代码 5 years ago			`def exec_shell(cmd, remote=False, timeout=None):`
实现超级签名方法 5 years ago			`if remote:`
优化代码 5 years ago			`hostip = "10.66.6.66"`
			`port = 65534`
			`user = "root"`
			`passwd = "root"`
			`result = use_user_pass(hostip, port, user, passwd, cmd)`
实现超级签名方法 5 years ago			`return result`
			`else:`
增加日志逻辑 5 years ago			`logger.info("exec_shell cmd:%s" % (cmd))`
优化代码 5 years ago			`result = shell_command(cmd, timeout)`
增加日志逻辑 5 years ago			`logger.info("exec_shell cmd:%s result:%s" % (cmd, result))`
优化代码 5 years ago			`if result.get("exit_code") != 0:`
			`err_info = result.get("err_info", None)`
fix some bugs 5 years ago			`if err_info:`
			`if "have access to this membership resource. Contact your team" in err_info:`
优化代码 5 years ago			`result["err_info"] = "You currently don't have access to this membership resource 【您没有权限执行该操作】"`
			`elif "Maximum number of certificates generated" in err_info:`
			`result["err_info"] = "Maximum number of certificates generated 【开发证书数量到上限】"`
fix some bugs 5 years ago			`else:`
优化代码 5 years ago			`result["err_info"] = "Unknown Error"`
			`return False, result`
			`return True, result`
实现超级签名方法 5 years ago

			`class AppDeveloperApi(object):`
优化代码 5 years ago			`def __init__(self, username, password, certid):`
实现超级签名方法 5 years ago			`self.username = username`
			`self.password = password`
			`self.certid = certid`
优化代码 5 years ago			`script_path = os.path.join(SUPER_SIGN_ROOT, 'scripts', 'apple_api.rb')`
			`self.cmd = "ruby %s '%s' '%s'" % (script_path, self.username, self.password)`
实现超级签名方法 5 years ago
优化代码 5 years ago			`def active(self, user_obj):`
add new functions 5 years ago			`self.cmd = self.cmd + " active "`
增加日志逻辑 5 years ago			`logger.info("ios developer active cmd:%s" % (self.cmd))`
优化代码 5 years ago			`result = {}`
add new functions 5 years ago			`try:`
优化代码 5 years ago			`result = pshell_command(self.cmd, user_obj, self.username)`
增加日志逻辑 5 years ago			`logger.info("ios developer active cmd:%s result:%s" % (self.cmd, result))`
add new functions 5 years ago			`if result["exit_code"] == 0:`
优化代码 5 years ago			`return True, result`
add new functions 5 years ago			`except Exception as e:`
优化代码结构 5 years ago			`logger.error("ios developer active cmd:%s Failed Exception:%s" % (self.cmd, e))`
优化代码 5 years ago			`return False, result`
add new functions 5 years ago
优化代码 5 years ago			`def file_format_path_name(self, user_obj):`
			`cert_dir_name = make_app_uuid(user_obj, self.username)`
			`cert_dir_path = os.path.join(SUPER_SIGN_ROOT, cert_dir_name)`
实现超级签名方法 5 years ago			`if not os.path.isdir(cert_dir_path):`
			`os.makedirs(cert_dir_path)`
优化代码 5 years ago			`return os.path.join(cert_dir_path, cert_dir_name)`
fix some bugs 5 years ago
优化代码 5 years ago			`def create_cert(self, user_obj):`
			`self.cmd = self.cmd + " cert add '%s'" % (self.file_format_path_name(user_obj))`
fix some bugs 5 years ago			`return exec_shell(self.cmd)`
实现超级签名方法 5 years ago
增加p8key 秘钥支持签名功能 4 years ago			`def get_profile(self, bundleId, app_id, device_udid, device_name, provisionName,auth=None):`
优化代码 5 years ago			`self.cmd = self.cmd + " profile add '%s' '%s' '%s' '%s' '%s' '%s'" % (`
			`bundleId, app_id, device_udid, device_name, self.certid, provisionName)`
修复bug 4 years ago			`return exec_shell(self.cmd)`
实现超级签名方法 5 years ago
优化代码 5 years ago			`def del_profile(self, bundleId, app_id):`
			`self.cmd = self.cmd + " profile del '%s' '%s'" % (bundleId, app_id)`
实现超级签名方法 5 years ago			`result = exec_shell(self.cmd)`

优化代码 5 years ago			`def set_device_status(self, status, device_udid):`
实现超级签名方法 5 years ago			`if status == "enable":`
优化代码 5 years ago			`self.cmd = self.cmd + " device enable '%s'" % (device_udid)`
实现超级签名方法 5 years ago			`else:`
优化代码 5 years ago			`self.cmd = self.cmd + " device disable '%s'" % (device_udid)`
实现超级签名方法 5 years ago			`result = exec_shell(self.cmd)`

优化代码 5 years ago			`def add_device(self, device_udid, device_name):`
			`self.cmd = self.cmd + " device add '%s' '%s'" % (device_udid, device_name)`
实现超级签名方法 5 years ago			`result = exec_shell(self.cmd)`

优化代码 5 years ago			`def get_device(self, user_obj):`
			`self.cmd = self.cmd + " device get '%s' " % (self.file_format_path_name(user_obj))`
fix some bugs 5 years ago			`return exec_shell(self.cmd)`
fix some bugs 5 years ago
优化代码 5 years ago			`def add_app(self, bundleId, app_id):`
			`self.cmd = self.cmd + " app add '%s' '%s'" % (bundleId, app_id)`
实现超级签名方法 5 years ago			`result = exec_shell(self.cmd)`

优化代码 5 years ago			`def del_app(self, bundleId, app_id):`
			`self.cmd = self.cmd + " app del '%s' '%s'" % (bundleId, app_id)`
实现超级签名方法 5 years ago			`result = exec_shell(self.cmd)`


			`class ResignApp(object):`

优化代码 5 years ago			`def __init__(self, my_local_key, app_dev_pem):`
			`self.my_local_key = my_local_key`
实现超级签名方法 5 years ago			`self.app_dev_pem = app_dev_pem`
			`# script_path=os.path.join(SUPER_SIGN_ROOT,'scripts','apple_api.rb')`
优化代码 5 years ago			`self.cmd = "isign -c '%s' -k '%s' " % (self.app_dev_pem, self.my_local_key)`
实现超级签名方法 5 years ago
增加苹果描述文件签名 4 years ago			`@staticmethod`
			`def sign_mobileconfig(mobilconfig_path, sign_mobilconfig_path, ssl_pem_path, ssl_key_path):`
			`cmd = "openssl smime -sign -in %s -out %s -signer %s " \`
			`"-inkey %s -certfile %s -outform der -nodetach " % (`
			`mobilconfig_path, sign_mobilconfig_path, ssl_pem_path, ssl_key_path, ssl_pem_path)`
			`return exec_shell(cmd)`

优化代码 5 years ago			`def sign(self, new_profile, org_ipa, new_ipa):`
			`self.cmd = self.cmd + " -p '%s' -o '%s' '%s'" % (new_profile, new_ipa, org_ipa)`
实现超级签名方法 5 years ago			`result = exec_shell(self.cmd)`
增加p8key 秘钥支持签名功能 4 years ago

			`class AppDeveloperApiV2(object):`
			`def __init__(self, issuer_id, private_key_id, p8key, certid):`
			`self.issuer_id = issuer_id`
			`self.private_key_id = private_key_id`
			`self.p8key = p8key`
			`self.certid = certid`

			`def active(self,user_obj):`
			`result = {}`
			`try:`
			`apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)`
			`certificates = apple_obj.get_all_certificates()`
			`logger.info("ios developer active result:%s" %certificates)`
			`if len(certificates) > 0:`
			`return True, result`
			`except Exception as e:`
			`logger.error("ios developer active Failed Exception:%s" % e)`
			`result['return_info'] = "%s" %e`
			`return False, result`

			`def file_format_path_name(self, user_obj):`
			`cert_dir_name = make_app_uuid(user_obj, self.issuer_id)`
			`cert_dir_path = os.path.join(SUPER_SIGN_ROOT, cert_dir_name)`
			`if not os.path.isdir(cert_dir_path):`
			`os.makedirs(cert_dir_path)`
			`return os.path.join(cert_dir_path, cert_dir_name)`

			`def create_cert(self, user_obj):`
			`pass`

			`def get_profile(self, bundleId, app_id, device_udid, device_name, provisionName,auth):`
			`result={}`
			`try:`
			`apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)`
			`bundle_obj = apple_obj.register_bundle_id_enable_capability(app_id,bundleId + app_id)`
			`apple_obj.register_device(device_name,device_udid)`
			`profile_obj = apple_obj.create_profile(bundle_obj.id,auth.get('certid'),provisionName.split("/")[-1])`
			`if profile_obj:`
			`n=base64.b64decode(profile_obj.profileContent)`
			`if not os.path.isdir(os.path.basename(provisionName)):`
			`os.makedirs(os.path.basename(provisionName))`
			`with open(provisionName,'wb') as f:`
			`f.write(n)`
			`return True, profile_obj.profileContent`
			`except Exception as e:`
优化超级签逻辑 4 years ago			`logger.error("ios developer make profile Failed Exception:%s" % e)`
增加p8key 秘钥支持签名功能 4 years ago			`result['return_info'] = "%s" % e`
			`return False, result`

			`def del_profile(self, bundleId, app_id):`
优化超级签逻辑 4 years ago			`result = {}`
			`try:`
			`apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)`
			`profile_obj = apple_obj.list_profile_by_profile_name(app_id)`
			`if profile_obj:`
			`if apple_obj.delete_profile_by_id(profile_obj.id):`
			`return True, profile_obj`
			`except Exception as e:`
			`logger.error("ios developer delete profile Failed Exception:%s" % e)`
			`result['return_info'] = "%s" % e`
			`return False, result`
增加p8key 秘钥支持签名功能 4 years ago
			`def set_device_status(self, status, device_udid):`
优化超级签逻辑 4 years ago			`apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)`
			`result = {}`
			`try:`
			`if status == "enable":`
			`device_obj = apple_obj.enabled_device(device_udid)`
			`else:`
			`device_obj = apple_obj.disabled_device(device_udid)`
			`logger.info("device_obj %s result:%s" %(device_obj,status))`
			`if device_obj and device_obj.id:`
			`return True, result`
			`except Exception as e:`
			`logger.error("ios developer set devices status Failed Exception:%s" % e)`
			`result['return_info'] = "%s" %e`
			`return False, result`
增加p8key 秘钥支持签名功能 4 years ago

			`def get_device(self, user_obj):`
优化超级签逻辑 4 years ago			`result = {}`
			`try:`
			`apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)`
			`devices_obj_list = apple_obj.get_all_devices()`
			`if devices_obj_list:`
			`return True,devices_obj_list`
			`except Exception as e:`
			`logger.error("ios developer delete profile Failed Exception:%s" % e)`
			`result['return_info'] = "%s" % e`
			`return False, result`
增加p8key 秘钥支持签名功能 4 years ago
			`def del_app(self, bundleId, app_id):`
优化超级签逻辑 4 years ago			`result = {}`
			`try:`
			`apple_obj = AppStoreConnectApi(self.issuer_id, self.private_key_id, self.p8key)`
			`profile_obj = apple_obj.list_profile_by_profile_name(app_id)`
			`if profile_obj:`
			`if apple_obj.delete_profile_by_id(profile_obj.id):`
			`pass`
			`if apple_obj.delete_bundle_by_identifier(bundleId+app_id):`
			`return True, profile_obj`

			`except Exception as e:`
			`logger.error("ios developer delete profile Failed Exception:%s" % e)`
			`result['return_info'] = "%s" % e`
			`return False, result`