You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
821 lines
39 KiB
821 lines
39 KiB
#!/usr/bin/env python
|
|
# -*- coding:utf-8 -*-
|
|
# project: 3月
|
|
# author: liuyu
|
|
# date: 2020/3/6
|
|
|
|
import uuid, xmltodict, os, re, logging, time
|
|
|
|
import zipfile
|
|
from api.utils.response import BaseResponse
|
|
from fir_ser.settings import SUPER_SIGN_ROOT, MEDIA_ROOT, SERVER_DOMAIN, MOBILECONFIG_SIGN_SSL, MSGTEMPLATE
|
|
from api.utils.app.iossignapi import ResignApp, AppDeveloperApiV2
|
|
from api.models import APPSuperSignUsedInfo, AppUDID, AppIOSDeveloperInfo, AppReleaseInfo, Apps, APPToDeveloper, \
|
|
UDIDsyncDeveloper, DeveloperAppID, DeveloperDevicesID
|
|
from api.utils.app.randomstrings import make_app_uuid, make_from_user_uuid
|
|
from api.utils.storage.caches import del_cache_response_by_short, send_msg_over_limit, check_app_permission, \
|
|
consume_user_download_times_by_app_obj
|
|
from api.utils.utils import delete_app_to_dev_and_file, send_ios_developer_active_status, delete_local_files, \
|
|
download_files_form_oss, get_developer_udided
|
|
from api.utils.baseutils import file_format_path, delete_app_profile_file, get_profile_full_path, get_user_domain_name, \
|
|
get_user_default_domain_name, get_min_default_domain_cname_obj, format_apple_date, get_format_time
|
|
from api.utils.storage.storage import Storage
|
|
from django.core.cache import cache
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
|
|
def check_org_file(user_obj, org_file):
|
|
if not os.path.isdir(os.path.dirname(org_file)):
|
|
os.makedirs(os.path.dirname(org_file))
|
|
|
|
if os.path.isfile(org_file):
|
|
return
|
|
|
|
storage_obj = Storage(user_obj)
|
|
return download_files_form_oss(storage_obj, org_file)
|
|
|
|
|
|
def resign_by_app_id(app_obj, need_download_profile=True):
|
|
user_obj = app_obj.user_id
|
|
info_list = []
|
|
if app_obj.issupersign and user_obj.supersign_active:
|
|
for developer_app_id_obj in DeveloperAppID.objects.filter(app_id=app_obj).all():
|
|
developer_obj = developer_app_id_obj.developerid
|
|
developer_app_id = developer_app_id_obj.aid
|
|
d_time = time.time()
|
|
if need_download_profile:
|
|
with cache.lock("%s_%s_%s" % ('download_profile', app_obj.app_id, developer_obj.issuer_id), timeout=60):
|
|
IosUtils.modify_capability(developer_obj, app_obj, developer_app_id)
|
|
download_flag, result = IosUtils.exec_download_profile(app_obj, developer_obj, None, 2)
|
|
else:
|
|
download_flag = True
|
|
with cache.lock("%s_%s_%s" % ('run_sign', app_obj.app_id, developer_obj.issuer_id), timeout=60 * 10):
|
|
status, result = IosUtils.run_sign(user_obj, app_obj, developer_obj, download_flag, None, d_time, {},
|
|
True)
|
|
info_list.append({'developer_id': developer_obj.issuer_id, 'result': (status, result)})
|
|
return info_list
|
|
|
|
|
|
def check_app_sign_limit(app_obj):
|
|
used_num = APPSuperSignUsedInfo.objects.filter(app_id=app_obj).all().count()
|
|
limit_num = app_obj.supersign_limit_number
|
|
if limit_num <= 0:
|
|
flag = True
|
|
else:
|
|
flag = used_num < limit_num
|
|
return flag, used_num
|
|
|
|
|
|
def udid_bytes_to_dict(xml_stream):
|
|
new_uuid_info = {}
|
|
try:
|
|
a = xml_stream.find('<plist')
|
|
b = xml_stream.find('</plist>')
|
|
xml_dict = xmltodict.parse(xml_stream[a:b + 8]) # 解析xml字符串
|
|
for i in range(len(xml_dict['plist']['dict']['key'])):
|
|
new_uuid_info[xml_dict['plist']['dict']['key'][i].lower()] = xml_dict['plist']['dict']['string'][i]
|
|
except Exception as e:
|
|
logger.error(f"udid_xml_stream:{xml_stream} Exception:{e}")
|
|
return None
|
|
return new_uuid_info
|
|
|
|
|
|
def make_sign_udid_mobile_config(udid_url, payload_organization, app_name):
|
|
if MOBILECONFIG_SIGN_SSL.get("open"):
|
|
ssl_key_path = MOBILECONFIG_SIGN_SSL.get("ssl_key_path", None)
|
|
ssl_pem_path = MOBILECONFIG_SIGN_SSL.get("ssl_pem_path", None)
|
|
|
|
if ssl_key_path and ssl_pem_path and os.path.isfile(ssl_key_path) and os.path.isfile(ssl_pem_path):
|
|
mobile_config_tmp_dir = os.path.join(SUPER_SIGN_ROOT, 'tmp', 'mobile_config')
|
|
if not os.path.exists(mobile_config_tmp_dir):
|
|
os.makedirs(mobile_config_tmp_dir)
|
|
|
|
mobile_config_filename = payload_organization + str(uuid.uuid1())
|
|
mobile_config_path = os.path.join(mobile_config_tmp_dir, mobile_config_filename)
|
|
|
|
sign_mobile_config_path = os.path.join(mobile_config_tmp_dir, 'sign_' + mobile_config_filename)
|
|
with open(mobile_config_path, "w") as f:
|
|
f.write(make_udid_mobile_config(udid_url, payload_organization, app_name))
|
|
|
|
status, result = ResignApp.sign_mobile_config(mobile_config_path, sign_mobile_config_path, ssl_pem_path,
|
|
ssl_key_path)
|
|
if status:
|
|
mobile_config_body = open(sign_mobile_config_path, 'rb')
|
|
else:
|
|
logger.error(
|
|
f"{payload_organization} {app_name} sign_mobile_config failed ERROR:{result.get('err_info')}")
|
|
return make_udid_mobile_config(udid_url, payload_organization, app_name)
|
|
|
|
return mobile_config_body
|
|
|
|
else:
|
|
logger.error(f"sign_mobile_config {ssl_key_path} or {ssl_pem_path} is not exists")
|
|
return make_udid_mobile_config(udid_url, payload_organization, app_name)
|
|
|
|
else:
|
|
return make_udid_mobile_config(udid_url, payload_organization, app_name)
|
|
|
|
|
|
def make_udid_mobile_config(udid_url, payload_organization, app_name, payload_uuid=uuid.uuid1(),
|
|
payload_description='该文件仅用来获取设备ID,帮助用户安装授权',
|
|
display_name='设备安装授权'):
|
|
# <!--参考:https://developer.apple.com/library/ios/documentation/NetworkingInternet/Conceptual/iPhoneOTAConfiguration/ConfigurationProfileExamples/ConfigurationProfileExamples.html-->
|
|
return f'''<?xml version="1.0" encoding="UTF-8"?>
|
|
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
|
|
<plist version="1.0">
|
|
<dict>
|
|
<key>PayloadContent</key>
|
|
<dict>
|
|
<key>URL</key>
|
|
<string>{udid_url}</string>
|
|
<key>DeviceAttributes</key>
|
|
<array>
|
|
<string>SERIAL</string>
|
|
<string>UDID</string>
|
|
<string>IMEI</string>
|
|
<string>ICCID</string>
|
|
<string>VERSION</string>
|
|
<string>PRODUCT</string>
|
|
</array>
|
|
</dict>
|
|
<key>PayloadOrganization</key>
|
|
<string>{payload_organization}</string>
|
|
<key>PayloadDisplayName</key>
|
|
<string>{app_name}--{display_name}</string>
|
|
<key>PayloadVersion</key>
|
|
<integer>1</integer>
|
|
<key>PayloadUUID</key>
|
|
<string>{payload_uuid}</string>
|
|
<key>PayloadIdentifier</key>
|
|
<string>{payload_organization}.profile-service</string>
|
|
<key>PayloadDescription</key>
|
|
<string>{payload_description}</string>
|
|
<key>PayloadType</key>
|
|
<string>Profile Service</string>
|
|
</dict>
|
|
</plist>'''
|
|
|
|
|
|
def get_post_udid_url(request, short):
|
|
server_domain = get_http_server_domain(request)
|
|
path_info_lists = [server_domain, "udid", short]
|
|
udid_url = "/".join(path_info_lists)
|
|
return udid_url
|
|
|
|
|
|
def get_auth_form_developer(developer_obj):
|
|
if developer_obj.issuer_id:
|
|
auth = {
|
|
"issuer_id": developer_obj.issuer_id,
|
|
"private_key_id": developer_obj.private_key_id,
|
|
"p8key": developer_obj.p8key,
|
|
"cert_id": developer_obj.certid
|
|
}
|
|
else:
|
|
auth = {}
|
|
return auth
|
|
|
|
|
|
def get_api_obj(auth):
|
|
if auth.get("issuer_id"):
|
|
app_api_obj = AppDeveloperApiV2(**auth)
|
|
else:
|
|
app_api_obj = None
|
|
return app_api_obj
|
|
|
|
|
|
def get_apple_udid_key(auth):
|
|
m_key = ''
|
|
if auth.get("issuer_id"):
|
|
m_key = auth.get("issuer_id")
|
|
return m_key
|
|
|
|
|
|
def get_server_domain_from_request(request, server_domain):
|
|
if not server_domain or not server_domain.startswith("http"):
|
|
http_host = request.META.get('HTTP_HOST')
|
|
server_protocol = request.META.get('SERVER_PROTOCOL')
|
|
protocol = 'https'
|
|
if server_protocol == 'HTTP/1.1':
|
|
protocol = 'http'
|
|
server_domain = "%s://%s" % (protocol, http_host)
|
|
return server_domain
|
|
|
|
|
|
def get_http_server_domain(request):
|
|
server_domain = SERVER_DOMAIN.get('POST_UDID_DOMAIN', None)
|
|
return get_server_domain_from_request(request, server_domain)
|
|
|
|
|
|
def get_redirect_server_domain(request, user_obj=None, app_domain_name=None):
|
|
is_https = False
|
|
if user_obj:
|
|
if app_domain_name and len(app_domain_name) > 3:
|
|
domain_name = app_domain_name
|
|
else:
|
|
domain_name = get_user_domain_name(user_obj)
|
|
if not domain_name:
|
|
is_https, domain_name = get_user_default_domain_name(user_obj.default_domain_name)
|
|
elif app_domain_name and len(app_domain_name) > 3:
|
|
domain_name = app_domain_name
|
|
else:
|
|
is_https, domain_name = get_user_default_domain_name(get_min_default_domain_cname_obj(True))
|
|
protocol = 'http'
|
|
if is_https:
|
|
protocol = 'https'
|
|
server_domain = "%s://%s" % (protocol, domain_name)
|
|
return get_server_domain_from_request(request, server_domain)
|
|
|
|
|
|
class IosUtils(object):
|
|
def __init__(self, udid_info, user_obj, app_obj=None):
|
|
self.developer_obj = None
|
|
self.auth = None
|
|
self.udid_info = udid_info
|
|
self.app_obj = app_obj
|
|
self.user_obj = user_obj
|
|
self.get_developer_auth()
|
|
|
|
def get_developer_auth(self):
|
|
self.developer_obj = self.get_developer_user_by_app_udid()
|
|
if self.developer_obj:
|
|
self.auth = get_auth_form_developer(self.developer_obj)
|
|
else:
|
|
logger.error(f"user {self.user_obj} has no active apple developer")
|
|
if self.user_obj.email:
|
|
if send_msg_over_limit("get", self.user_obj.email):
|
|
send_msg_over_limit("set", self.user_obj.email)
|
|
send_ios_developer_active_status(self.user_obj, MSGTEMPLATE.get('NOT_EXIST_DEVELOPER', '')
|
|
% (
|
|
self.user_obj.first_name, self.app_obj.name))
|
|
else:
|
|
logger.error(f"user {self.user_obj} send msg failed. over limit")
|
|
|
|
def get_developer_user_by_app_udid(self):
|
|
use_device_obj = APPSuperSignUsedInfo.objects.filter(udid__udid=self.udid_info.get('udid'),
|
|
user_id=self.user_obj, developerid__is_actived=True,
|
|
developerid__certid__isnull=False).first()
|
|
# 只要账户下面存在udid,就可以使用该苹果开发者账户,避免多个开发者账户下面出现同一个udid
|
|
if use_device_obj:
|
|
developer_obj = use_device_obj.developerid
|
|
else:
|
|
developer_udid_obj = UDIDsyncDeveloper.objects.filter(udid=self.udid_info.get('udid'),
|
|
developerid__is_actived=True,
|
|
developerid__certid__isnull=False).first()
|
|
if developer_udid_obj:
|
|
developer_obj = developer_udid_obj.developerid
|
|
else:
|
|
for developer_obj in AppIOSDeveloperInfo.objects.filter(user_id=self.user_obj, is_actived=True,
|
|
certid__isnull=False).order_by("created_time"):
|
|
if get_developer_udided(developer_obj)[1] < developer_obj.usable_number:
|
|
return developer_obj
|
|
return None
|
|
return developer_obj
|
|
|
|
def download_profile(self, developer_app_id, device_id_list):
|
|
return get_api_obj(self.auth).get_profile(self.app_obj, self.udid_info,
|
|
self.get_profile_full_path(),
|
|
self.auth, developer_app_id, device_id_list)
|
|
|
|
# 开启超级签直接在开发者账户创建
|
|
# def create_app(self, app_obj):
|
|
# bundleId = self.app_obj.bundle_id
|
|
# app_id = self.app_obj.app_id
|
|
# s_type = self.app_obj.supersign_type
|
|
# return get_api_obj(self.auth).create_app(bundleId, app_id, s_type)
|
|
|
|
@staticmethod
|
|
def modify_capability(developer_obj, app_obj, developer_app_id):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
return get_api_obj(auth).modify_capability(app_obj, developer_app_id)
|
|
|
|
def get_profile_full_path(self):
|
|
cert_dir_name = make_app_uuid(self.user_obj, get_apple_udid_key(self.auth))
|
|
cert_dir_path = os.path.join(SUPER_SIGN_ROOT, cert_dir_name, "profile")
|
|
if not os.path.isdir(cert_dir_path):
|
|
os.makedirs(cert_dir_path)
|
|
provision_name = os.path.join(cert_dir_path, self.app_obj.app_id)
|
|
return provision_name + '.mobileprovision'
|
|
|
|
@staticmethod
|
|
def exec_download_profile(app_obj, developer_obj, udid_info, sign_try_attempts=3):
|
|
result = {}
|
|
developer_app_id = None
|
|
auth = get_auth_form_developer(developer_obj)
|
|
while sign_try_attempts > 0:
|
|
logger.info(
|
|
f"exec_download_profile app_id:{app_obj} developer:{developer_obj} sign_try_attempts:{sign_try_attempts}")
|
|
device_id_list = DeveloperDevicesID.objects.filter(app_id=app_obj,
|
|
developerid=developer_obj).values_list('did')
|
|
device_id_lists = [did[0] for did in device_id_list]
|
|
developer_app_id = None
|
|
add_did_flag = False
|
|
sync_device_obj = None
|
|
developer_app_id_obj = DeveloperAppID.objects.filter(developerid=developer_obj,
|
|
app_id=app_obj).first()
|
|
if developer_app_id_obj:
|
|
developer_app_id = developer_app_id_obj.aid
|
|
if udid_info:
|
|
sync_device_obj = UDIDsyncDeveloper.objects.filter(udid=udid_info.get('udid'),
|
|
developerid=developer_obj).first()
|
|
if sync_device_obj:
|
|
device_id_lists.append(sync_device_obj.serial)
|
|
udid_info = None
|
|
add_did_flag = True
|
|
logger.info(f"app {app_obj} device {sync_device_obj.serial} already in developer {developer_obj}")
|
|
|
|
status, result = get_api_obj(auth).get_profile(app_obj, udid_info,
|
|
get_profile_full_path(developer_obj, app_obj),
|
|
auth, developer_app_id, device_id_lists)
|
|
if add_did_flag and sync_device_obj:
|
|
result['did'] = sync_device_obj.serial
|
|
result['did_exists'] = True
|
|
if not status:
|
|
sign_try_attempts -= 1
|
|
logger.warning(f"app {app_obj} developer {developer_obj} sign failed {result} .try again ")
|
|
time.sleep(3)
|
|
else:
|
|
sign_try_attempts = -1
|
|
if sign_try_attempts != -1:
|
|
logger.error(f"app {app_obj} developer {developer_obj} sign failed {result}")
|
|
developer_obj.is_actived = False
|
|
developer_obj.save()
|
|
send_ios_developer_active_status(developer_obj.user_id,
|
|
MSGTEMPLATE.get('ERROR_DEVELOPER') % (
|
|
developer_obj.user_id.first_name, app_obj.name,
|
|
developer_obj.issuer_id))
|
|
return False, result
|
|
|
|
if not developer_app_id and result.get("aid", None):
|
|
DeveloperAppID.objects.create(aid=result["aid"], developerid=developer_obj, app_id=app_obj)
|
|
|
|
return True, result
|
|
|
|
@staticmethod
|
|
def zip_cert(user_obj, developer_obj):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
file_format_path_name = file_format_path(user_obj, auth)
|
|
os.chdir(os.path.dirname(file_format_path_name))
|
|
zip_file_path = file_format_path_name + '.zip'
|
|
zipf = zipfile.ZipFile(zip_file_path, mode='w', compression=zipfile.ZIP_DEFLATED)
|
|
for file in os.listdir(os.path.dirname(file_format_path_name)):
|
|
if os.path.isfile(file) and file.startswith(os.path.basename(file_format_path_name)) and \
|
|
file.split('.')[-1] not in ['zip', 'bak']:
|
|
zipf.write(file)
|
|
zipf.close()
|
|
return zip_file_path
|
|
|
|
@staticmethod
|
|
def get_resign_obj(user_obj, developer_obj):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
file_format_path_name = file_format_path(user_obj, auth)
|
|
my_local_key = file_format_path_name + ".key"
|
|
app_dev_pem = file_format_path_name + ".pem"
|
|
app_dev_p12 = file_format_path_name + ".p12"
|
|
return ResignApp(my_local_key, app_dev_pem, app_dev_p12)
|
|
|
|
@staticmethod
|
|
def exec_sign(user_obj, app_obj, developer_obj, random_file_name, release_obj):
|
|
resign_app_obj = IosUtils.get_resign_obj(user_obj, developer_obj)
|
|
org_file = os.path.join(MEDIA_ROOT, release_obj.release_id + ".ipa")
|
|
check_org_file(user_obj, org_file)
|
|
new_file = os.path.join(MEDIA_ROOT, random_file_name + ".ipa")
|
|
properties_info = {}
|
|
if app_obj.new_bundle_id:
|
|
properties_info = {'-b': app_obj.new_bundle_id}
|
|
if app_obj.new_bundle_name:
|
|
properties_info = {'-n': app_obj.new_bundle_name}
|
|
status, result = resign_app_obj.sign(get_profile_full_path(developer_obj, app_obj), org_file, new_file,
|
|
properties_info)
|
|
if status:
|
|
logger.info(f"{user_obj} {developer_obj} {app_obj} sign_ipa success")
|
|
return True, result
|
|
else:
|
|
logger.error(f"{user_obj} {developer_obj} {app_obj} sign_ipa failed ERROR:{result.get('err_info')}")
|
|
return False, result
|
|
|
|
@staticmethod
|
|
def update_sign_file_name(user_obj, app_obj, developer_obj, release_obj, random_file_name):
|
|
apptodev_obj = APPToDeveloper.objects.filter(developerid=developer_obj, app_id=app_obj).first()
|
|
storage_obj = Storage(user_obj)
|
|
if apptodev_obj:
|
|
delete_local_files(apptodev_obj.binary_file + ".ipa")
|
|
storage_obj.delete_file(apptodev_obj.binary_file + ".ipa")
|
|
apptodev_obj.binary_file = random_file_name
|
|
apptodev_obj.release_file = release_obj.release_id
|
|
apptodev_obj.save()
|
|
else:
|
|
APPToDeveloper.objects.create(developerid=developer_obj, app_id=app_obj,
|
|
binary_file=random_file_name, release_file=release_obj.release_id)
|
|
|
|
storage_obj.upload_file(os.path.join(MEDIA_ROOT, random_file_name + ".ipa"))
|
|
|
|
def update_developer_used_data(self):
|
|
appsupersign_obj = APPSuperSignUsedInfo.objects.filter(udid__udid=self.udid_info.get('udid'),
|
|
developerid=self.developer_obj)
|
|
if appsupersign_obj.count() == 0:
|
|
developer_obj = self.developer_obj
|
|
developer_obj.use_number = developer_obj.use_number + 1
|
|
logger.info(
|
|
f"developer {developer_obj} use_number+1 now {developer_obj.use_number} udid {self.udid_info.get('udid')} app_id {self.app_obj}")
|
|
developer_obj.save()
|
|
|
|
if not appsupersign_obj.filter(app_id=self.app_obj, user_id=self.user_obj).first():
|
|
APPSuperSignUsedInfo.objects.create(app_id=self.app_obj, user_id=self.user_obj,
|
|
developerid=self.developer_obj,
|
|
udid=AppUDID.objects.filter(app_id=self.app_obj,
|
|
udid=self.udid_info.get('udid')).first())
|
|
|
|
def update_sign_data(self, random_file_name, release_obj):
|
|
newdata = {
|
|
"is_signed": True,
|
|
"binary_file": random_file_name
|
|
}
|
|
# 更新已经完成签名状态,设备消耗记录,和开发者已消耗数量
|
|
AppUDID.objects.filter(app_id=self.app_obj, udid=self.udid_info.get('udid')).update(**newdata)
|
|
|
|
# 更新新签名的ipa包
|
|
IosUtils.update_sign_file_name(self.user_obj, self.app_obj, self.developer_obj, release_obj, random_file_name)
|
|
|
|
del_cache_response_by_short(self.app_obj.app_id, udid=self.udid_info.get('udid'))
|
|
|
|
@staticmethod
|
|
def run_sign(user_obj, app_obj, developer_obj, download_flag, obj, d_time, result, resign=False):
|
|
d_result = {'code': 0, 'msg': 'success'}
|
|
start_time = time.time()
|
|
if download_flag:
|
|
logger.info(f"app_id {app_obj} download profile success. time:{start_time - d_time}")
|
|
random_file_name = make_from_user_uuid(user_obj)
|
|
release_obj = AppReleaseInfo.objects.filter(app_id=app_obj, is_master=True).first()
|
|
status, e_result = IosUtils.exec_sign(user_obj, app_obj, developer_obj, random_file_name, release_obj)
|
|
if status:
|
|
s_time1 = time.time()
|
|
logger.info(f"app_id {app_obj} exec sign ipa success. time:{s_time1 - start_time}")
|
|
if resign:
|
|
IosUtils.update_sign_file_name(user_obj, app_obj, developer_obj, release_obj, random_file_name)
|
|
else:
|
|
obj.update_sign_data(random_file_name, release_obj)
|
|
else:
|
|
return status, e_result
|
|
else:
|
|
msg = f"app_id {app_obj} download profile failed. {result} time:{time.time() - start_time}"
|
|
d_result['code'] = 1002
|
|
d_result['msg'] = msg
|
|
logger.error(d_result)
|
|
return False, d_result
|
|
msg = f"app_id {app_obj} developer {developer_obj} sign end... time:{time.time() - start_time}"
|
|
logger.info(msg)
|
|
d_result['msg'] = msg
|
|
return True, d_result
|
|
|
|
def sign(self, sign_try_attempts=3):
|
|
"""
|
|
:param sign_try_attempts:
|
|
:return: status, result
|
|
:des: 仅用于苹果设备发送设备udid签名使用
|
|
"""
|
|
d_result = {'code': 0, 'msg': 'success'}
|
|
state, used_num = check_app_sign_limit(self.app_obj)
|
|
if not state:
|
|
d_result['code'] = 1003
|
|
d_result['msg'] = "app_id %s used over limit.now %s limit: %s" % (
|
|
self.app_obj, used_num, self.app_obj.supersign_limit_number)
|
|
logger.error(d_result)
|
|
return False, d_result
|
|
|
|
res = check_app_permission(self.app_obj, BaseResponse())
|
|
if res.code != 1000:
|
|
return False, {'code': res.code, 'msg': res.msg}
|
|
|
|
if not self.developer_obj:
|
|
msg = "udid %s app %s not exists apple developer" % (self.udid_info.get('udid'), self.app_obj)
|
|
d_result['code'] = 1005
|
|
d_result['msg'] = msg
|
|
logger.error(d_result)
|
|
return False, d_result
|
|
app_udid_obj = AppUDID.objects.filter(app_id=self.app_obj, udid=self.udid_info.get('udid')).first()
|
|
if app_udid_obj and app_udid_obj.is_signed:
|
|
release_obj = AppReleaseInfo.objects.filter(app_id=self.app_obj, is_master=True).first()
|
|
for apptodev_obj in APPToDeveloper.objects.filter(app_id=self.app_obj).all():
|
|
if release_obj.release_id == apptodev_obj.release_file:
|
|
msg = "udid %s exists app_id %s" % (self.udid_info.get('udid'), self.app_obj)
|
|
d_result['msg'] = msg
|
|
logger.info(d_result)
|
|
return True, d_result
|
|
logger.info("udid %s not exists app_id %s ,need sign" % (self.udid_info.get('udid'), self.app_obj))
|
|
|
|
if consume_user_download_times_by_app_obj(self.app_obj):
|
|
d_result['code'] = 1009
|
|
d_result['msg'] = '可用下载额度不足,请联系开发者'
|
|
logger.error(d_result)
|
|
return False, d_result
|
|
|
|
call_flag = True
|
|
download_flag = False
|
|
count = 1
|
|
result = {}
|
|
start_time = time.time()
|
|
while call_flag:
|
|
logger.info(
|
|
"call_loop download_profile appid:%s developer:%s count:%s" % (self.app_obj, self.developer_obj, count))
|
|
if self.developer_obj:
|
|
with cache.lock("%s_%s_%s" % ('download_profile', self.app_obj.app_id, self.developer_obj.issuer_id),
|
|
timeout=60):
|
|
download_flag, result = IosUtils.exec_download_profile(self.app_obj, self.developer_obj,
|
|
self.udid_info, sign_try_attempts)
|
|
if download_flag:
|
|
call_flag = False
|
|
else:
|
|
self.get_developer_auth()
|
|
else:
|
|
call_flag = False
|
|
count += 1
|
|
if download_flag:
|
|
AppUDID.objects.update_or_create(app_id=self.app_obj, udid=self.udid_info.get('udid'),
|
|
defaults=self.udid_info)
|
|
if not result.get("did_exists", None):
|
|
app_udid_obj = UDIDsyncDeveloper.objects.filter(developerid=self.developer_obj,
|
|
udid=self.udid_info.get('udid')).first()
|
|
if not app_udid_obj:
|
|
appudid_obj = AppUDID.objects.filter(app_id=self.app_obj, udid=self.udid_info.get('udid'))
|
|
device = appudid_obj.values("serial",
|
|
'product',
|
|
'udid',
|
|
'version').first()
|
|
if result.get("did", None):
|
|
device['serial'] = result["did"]
|
|
app_udid_obj = UDIDsyncDeveloper.objects.create(developerid=self.developer_obj, **device)
|
|
DeveloperDevicesID.objects.create(did=result["did"], udid=app_udid_obj,
|
|
developerid=self.developer_obj,
|
|
app_id=self.app_obj)
|
|
else:
|
|
if result.get("did", None):
|
|
DeveloperDevicesID.objects.create(did=result["did"], udid=app_udid_obj,
|
|
developerid=self.developer_obj,
|
|
app_id=self.app_obj)
|
|
|
|
self.update_developer_used_data()
|
|
|
|
if not self.developer_obj:
|
|
d_result['code'] = 1005
|
|
d_result['msg'] = '未找到可用苹果开发者'
|
|
logger.error(d_result)
|
|
return False, d_result
|
|
with cache.lock("%s_%s_%s" % ('run_sign', self.app_obj.app_id, self.developer_obj.issuer_id), timeout=60 * 10):
|
|
logger.info("start run_sign ...")
|
|
return IosUtils.run_sign(self.user_obj, self.app_obj, self.developer_obj, download_flag, self, start_time,
|
|
result)
|
|
|
|
@staticmethod
|
|
def disable_udid(udid_obj, app_id):
|
|
|
|
usedeviceobj = APPSuperSignUsedInfo.objects.filter(udid=udid_obj, app_id_id=app_id)
|
|
if usedeviceobj:
|
|
developer_obj = usedeviceobj.first().developerid
|
|
auth = get_auth_form_developer(developer_obj)
|
|
|
|
# 需要判断该设备在同一个账户下 的多个应用,若存在,则不操作
|
|
udid_lists = list(APPSuperSignUsedInfo.objects.values_list("udid__udid").filter(developerid=developer_obj))
|
|
IosUtils.do_disable_device(developer_obj, udid_lists, udid_obj, auth)
|
|
# 通过开发者id判断 app_id 是否多个,否则删除profile 文件
|
|
if APPSuperSignUsedInfo.objects.filter(developerid=developer_obj, app_id_id=app_id).count() == 0:
|
|
app_api_obj = get_api_obj(auth)
|
|
app_obj = Apps.objects.filter(pk=app_id).first()
|
|
app_api_obj.del_profile(app_obj.app_id)
|
|
app_api_obj2 = get_api_obj(auth)
|
|
app_api_obj2.del_app(app_obj.bundle_id, app_obj.app_id)
|
|
DeveloperAppID.objects.filter(developerid=developer_obj, app_id=app_obj).delete()
|
|
delete_app_to_dev_and_file(developer_obj, app_id)
|
|
delete_app_profile_file(developer_obj, app_obj)
|
|
|
|
app_udid_obj = UDIDsyncDeveloper.objects.filter(developerid=developer_obj,
|
|
udid=udid_obj.udid).first()
|
|
DeveloperDevicesID.objects.filter(udid=app_udid_obj, developerid=developer_obj, app_id_id=app_id).delete()
|
|
|
|
@staticmethod
|
|
def do_disable_device(developer_obj, udid_lists, udid_obj, auth):
|
|
if udid_lists.count((udid_obj.udid,)) == 1:
|
|
app_api_obj = get_api_obj(auth)
|
|
app_api_obj.set_device_status("disable", udid_obj.udid)
|
|
UDIDsyncDeveloper.objects.filter(udid=udid_obj.udid, developerid=developer_obj).delete()
|
|
|
|
if developer_obj.use_number > 0:
|
|
developer_obj.use_number = developer_obj.use_number - 1
|
|
developer_obj.save()
|
|
|
|
udid_obj.delete()
|
|
|
|
@staticmethod
|
|
def clean_udid_by_app_obj(app_obj, developer_obj):
|
|
|
|
auth = get_auth_form_developer(developer_obj)
|
|
|
|
# 需要判断该设备在同一个账户下 的多个应用,若存在,则不操作
|
|
udid_lists = list(APPSuperSignUsedInfo.objects.values_list("udid__udid").filter(developerid=developer_obj))
|
|
|
|
for SuperSignUsed_obj in APPSuperSignUsedInfo.objects.filter(app_id=app_obj, developerid=developer_obj):
|
|
udid_obj = SuperSignUsed_obj.udid
|
|
IosUtils.do_disable_device(developer_obj, udid_lists, udid_obj, auth)
|
|
SuperSignUsed_obj.delete()
|
|
|
|
@staticmethod
|
|
def clean_app_by_user_obj(app_obj, user_obj):
|
|
"""
|
|
该APP为超级签,删除app的时候,需要清理一下开发者账户里面的profile 和 bundleid
|
|
:param app_obj:
|
|
:param user_obj:
|
|
:return:
|
|
"""
|
|
super_sign_obj_lists = list(
|
|
set(APPSuperSignUsedInfo.objects.values_list("developerid").filter(user_id=user_obj, app_id=app_obj)))
|
|
for super_sign_obj in super_sign_obj_lists:
|
|
developer_obj = AppIOSDeveloperInfo.objects.filter(pk=super_sign_obj[0]).first()
|
|
if developer_obj:
|
|
IosUtils.clean_app_by_developer_obj(app_obj, developer_obj)
|
|
delete_app_to_dev_and_file(developer_obj, app_obj.id)
|
|
IosUtils.clean_udid_by_app_obj(app_obj, developer_obj)
|
|
delete_app_profile_file(developer_obj, app_obj)
|
|
|
|
@staticmethod
|
|
def clean_app_by_developer_obj(app_obj, developer_obj, cert_id=None):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
DeveloperAppID.objects.filter(developerid=developer_obj, app_id=app_obj).delete()
|
|
app_api_obj = get_api_obj(auth)
|
|
app_api_obj.del_profile(app_obj.app_id)
|
|
if not cert_id:
|
|
app_api_obj2 = get_api_obj(auth)
|
|
app_api_obj2.del_app(app_obj.bundle_id, app_obj.app_id)
|
|
|
|
@staticmethod
|
|
def clean_developer(developer_obj, user_obj, cert_id=None):
|
|
"""
|
|
根据消耗记录 删除该苹果账户下所有信息
|
|
:param user_obj:
|
|
:param cert_id:
|
|
:param developer_obj:
|
|
:return:
|
|
"""
|
|
for APPToDeveloper_obj in APPToDeveloper.objects.filter(developerid=developer_obj):
|
|
app_obj = APPToDeveloper_obj.app_id
|
|
IosUtils.clean_app_by_developer_obj(app_obj, developer_obj, cert_id)
|
|
delete_app_to_dev_and_file(developer_obj, app_obj.id)
|
|
if not cert_id:
|
|
IosUtils.clean_udid_by_app_obj(app_obj, developer_obj)
|
|
full_path = file_format_path(user_obj, get_auth_form_developer(developer_obj))
|
|
try:
|
|
# move dirs replace delete
|
|
new_full_path_dir = os.path.dirname(full_path)
|
|
new_full_path_name = os.path.basename(full_path)
|
|
new_full_path = os.path.join(os.path.dirname(new_full_path_dir),
|
|
'%s_%s_%s' % ('remove', new_full_path_name, get_format_time()))
|
|
os.rename(new_full_path_dir, new_full_path)
|
|
# for root, dirs, files in os.walk(full_path, topdown=False):
|
|
# for name in files:
|
|
# os.remove(os.path.join(root, name))
|
|
# for name in dirs:
|
|
# os.rmdir(os.path.join(root, name))
|
|
# os.rmdir(full_path)
|
|
except Exception as e:
|
|
logger.error("clean_developer developer_obj:%s user_obj:%s delete file failed Exception:%s" % (
|
|
developer_obj, user_obj, e))
|
|
|
|
@staticmethod
|
|
def active_developer(developer_obj):
|
|
"""
|
|
激活开发者账户
|
|
:param developer_obj:
|
|
:return:
|
|
"""
|
|
auth = get_auth_form_developer(developer_obj)
|
|
app_api_obj = get_api_obj(auth)
|
|
status, result = app_api_obj.active()
|
|
if status:
|
|
cert_is_exists = True
|
|
for cert_obj in result.get('data', []):
|
|
if cert_obj.id == developer_obj.certid:
|
|
developer_obj.cert_expire_time = format_apple_date(cert_obj.expirationDate)
|
|
cert_is_exists = False
|
|
break
|
|
if developer_obj.certid and len(developer_obj.certid) > 3 and cert_is_exists and len(
|
|
result.get('data', [])) > 0:
|
|
# 数据库证书id和苹果开发id不一致,可认为被用户删掉,需要执行清理开发者操作
|
|
IosUtils.clean_developer(developer_obj, developer_obj.user_id)
|
|
developer_obj.certid = None
|
|
developer_obj.cert_expire_time = None
|
|
developer_obj.is_actived = True
|
|
else:
|
|
developer_obj.is_actived = False
|
|
developer_obj.save()
|
|
return status, result
|
|
|
|
@staticmethod
|
|
def create_developer_space(developer_obj, user_obj):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
file_format_path_name = file_format_path(user_obj, auth)
|
|
if not os.path.isdir(os.path.dirname(file_format_path_name)):
|
|
os.makedirs(os.path.dirname(file_format_path_name))
|
|
|
|
@staticmethod
|
|
def create_developer_cert(developer_obj, user_obj):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
app_api_obj = get_api_obj(auth)
|
|
status, result = app_api_obj.create_cert(user_obj)
|
|
if status:
|
|
if auth.get("issuer_id"):
|
|
cert_id = result.id
|
|
AppIOSDeveloperInfo.objects.filter(user_id=user_obj, issuer_id=auth.get("issuer_id")).update(
|
|
is_actived=True,
|
|
certid=cert_id, cert_expire_time=format_apple_date(result.expirationDate))
|
|
resign_app_obj = IosUtils.get_resign_obj(user_obj, developer_obj)
|
|
resign_app_obj.make_p12_from_cert(cert_id)
|
|
return status, result
|
|
|
|
@staticmethod
|
|
def revoke_developer_cert(developer_obj, user_obj):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
app_api_obj = get_api_obj(auth)
|
|
status, result = app_api_obj.revoke_cert()
|
|
if not status:
|
|
logger.warning('%s revoke cert failed,but i need clean cert_id %s' % (developer_obj.issuer_id, result))
|
|
AppIOSDeveloperInfo.objects.filter(user_id=user_obj, issuer_id=auth.get("issuer_id")).update(
|
|
is_actived=True,
|
|
certid=None, cert_expire_time=None)
|
|
return status, result
|
|
|
|
@staticmethod
|
|
def check_developer_cert(developer_obj, user_obj):
|
|
# 暂时无用
|
|
auth = get_auth_form_developer(developer_obj)
|
|
app_api_obj = get_api_obj(auth)
|
|
status, result = app_api_obj.get_cert_obj_by_cid()
|
|
if not status:
|
|
AppIOSDeveloperInfo.objects.filter(user_id=user_obj, issuer_id=auth.get("issuer_id")).update(
|
|
certid=None, cert_expire_time=None)
|
|
return status, result
|
|
|
|
@staticmethod
|
|
def auto_get_cert_id_by_p12(developer_obj, user_obj):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
app_api_obj = get_api_obj(auth)
|
|
file_format_path_name = file_format_path(user_obj, auth)
|
|
app_dev_pem = file_format_path_name + ".pem.bak"
|
|
status, result = app_api_obj.auto_set_certid_by_p12(app_dev_pem)
|
|
if status:
|
|
AppIOSDeveloperInfo.objects.filter(user_id=user_obj, issuer_id=auth.get("issuer_id")).update(
|
|
is_actived=True,
|
|
certid=result.id, cert_expire_time=format_apple_date(result.expirationDate))
|
|
return status, result
|
|
|
|
@staticmethod
|
|
def get_device_from_developer(developer_obj, user_obj):
|
|
auth = get_auth_form_developer(developer_obj)
|
|
app_api_obj = get_api_obj(auth)
|
|
status, result = app_api_obj.get_device()
|
|
if status:
|
|
if auth.get("issuer_id"):
|
|
UDIDsyncDeveloper.objects.filter(developerid=developer_obj, platform=1).delete()
|
|
for device_obj in result:
|
|
device = {
|
|
"serial": device_obj.id,
|
|
"product": device_obj.name,
|
|
"udid": device_obj.udid,
|
|
"version": device_obj.model,
|
|
"platform": 1
|
|
}
|
|
app_udid_obj = UDIDsyncDeveloper.objects.filter(developerid=developer_obj, udid=device.get("udid"))
|
|
if app_udid_obj:
|
|
pass
|
|
else:
|
|
UDIDsyncDeveloper.objects.create(developerid=developer_obj, **device)
|
|
else:
|
|
|
|
file_format_path_name = file_format_path(user_obj, auth)
|
|
devices_info = ""
|
|
try:
|
|
with open(file_format_path_name + ".devices.info", "r") as f:
|
|
devices_info = f.read().replace("\n\t", "").replace("[", "").replace("]", "")
|
|
except Exception as e:
|
|
logger.error(
|
|
"get_device_from_developer developer_obj:%s user_obj:%s delete file failed Exception:%s" % (
|
|
developer_obj, user_obj, e))
|
|
|
|
UDIDsyncDeveloper.objects.filter(developerid=developer_obj, platform=1).delete()
|
|
for devicestr in devices_info.split(">"):
|
|
formatdevice = re.findall(r'.*Device id="(.*)",.*name="(.*)",.*udid="(.*?)",.*model=(.*),.*',
|
|
devicestr)
|
|
if formatdevice:
|
|
device = {
|
|
"serial": formatdevice[0][0],
|
|
"product": formatdevice[0][1],
|
|
"udid": formatdevice[0][2],
|
|
"version": formatdevice[0][3],
|
|
"platform": 1
|
|
}
|
|
app_udid_obj = UDIDsyncDeveloper.objects.filter(developerid=developer_obj,
|
|
udid=device.get("udid"))
|
|
if app_udid_obj:
|
|
pass
|
|
else:
|
|
UDIDsyncDeveloper.objects.create(developerid=developer_obj, **device)
|
|
return status, result
|
|
|