eas-cli 0.34.0 → 0.36.1

package/build/credentials/ios/actions/AscApiKeyUtils.js

@@ -1,23 +1,104 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.getMinimalAscApiKeyAsync = exports.promptForIssuerIdAsync = exports.promptForAscApiKeyAsync = void 0;
+exports.formatAscApiKey = exports.sortAscApiKeysByUpdatedAtDesc = exports.selectAscApiKeysFromAccountAsync = exports.getAscApiKeysFromAccountAsync = exports.getAscApiKeyName = exports.provideOrGenerateAscApiKeyAsync = exports.getMinimalAscApiKeyAsync = exports.promptForIssuerIdAsync = exports.promptForAscApiKeyPathAsync = exports.AppStoreApiKeyPurpose = void 0;
 const tslib_1 = require("tslib");
 const chalk_1 = (0, tslib_1.__importDefault)(require("chalk"));
 const fs_extra_1 = (0, tslib_1.__importDefault)(require("fs-extra"));
+const nanoid_1 = require("nanoid");
 const path_1 = (0, tslib_1.__importDefault)(require("path"));
-const uuid = (0, tslib_1.__importStar)(require("uuid"));
 const log_1 = (0, tslib_1.__importStar)(require("../../../log"));
 const prompts_1 = require("../../../prompts");
+const date_1 = require("../../../utils/date");
 const promptForCredentials_1 = require("../../utils/promptForCredentials");
 const credentials_1 = require("../credentials");
-async function promptForAscApiKeyAsync() {
+const validateAscApiKey_1 = require("../validators/validateAscApiKey");
+const AppleTeamUtils_1 = require("./AppleTeamUtils");
+var AppStoreApiKeyPurpose;
+(function (AppStoreApiKeyPurpose) {
+    AppStoreApiKeyPurpose["SUBMISSION_SERVICE"] = "EAS Submit";
+})(AppStoreApiKeyPurpose = exports.AppStoreApiKeyPurpose || (exports.AppStoreApiKeyPurpose = {}));
+async function promptForAscApiKeyPathAsync(ctx) {
+    const { keyId, keyP8Path } = await promptForKeyP8AndIdAsync();
+    const bestEffortIssuerId = await getBestEffortIssuerIdAsync(ctx, keyId);
+    if (bestEffortIssuerId) {
+        log_1.default.log(`Detected Issuer ID: ${bestEffortIssuerId}`);
+        return { keyId, issuerId: bestEffortIssuerId, keyP8Path };
+    }
+    const issuerId = await promptForIssuerIdAsync();
+    return { keyId, issuerId, keyP8Path };
+}
+exports.promptForAscApiKeyPathAsync = promptForAscApiKeyPathAsync;
+async function promptForIssuerIdAsync() {
+    log_1.default.log(chalk_1.default.bold('An App Store Connect Issuer ID is required'));
+    log_1.default.log(`If you're not sure what this is or how to find yours, ${(0, log_1.learnMore)('https://expo.fyi/asc-issuer-id')}`);
+    // Do not perform uuid validation - Apple's issuerIds are not RFC4122 compliant
+    const { issuerId } = await (0, promptForCredentials_1.getCredentialsFromUserAsync)(credentials_1.ascApiKeyIssuerIdSchema);
+    return issuerId;
+}
+exports.promptForIssuerIdAsync = promptForIssuerIdAsync;
+async function getMinimalAscApiKeyAsync(ascApiKey) {
+    var _a;
+    return {
+        ...ascApiKey,
+        issuerId: (_a = ascApiKey.issuerId) !== null && _a !== void 0 ? _a : (await promptForIssuerIdAsync()),
+    };
+}
+exports.getMinimalAscApiKeyAsync = getMinimalAscApiKeyAsync;
+async function provideOrGenerateAscApiKeyAsync(ctx, purpose) {
+    if (ctx.nonInteractive) {
+        throw new Error(`A new App Store Connect API Key cannot be created in non-interactive mode.`);
+    }
+    const userProvided = await promptForAscApiKeyAsync(ctx);
+    if (!userProvided) {
+        return await generateAscApiKeyAsync(ctx, purpose);
+    }
+    if (!ctx.appStore.authCtx) {
+        log_1.default.warn('Unable to validate App Store Connect API Key, you are not authenticated with Apple.');
+        return userProvided;
+    }
+    const isValidAndTracked = await (0, validateAscApiKey_1.isAscApiKeyValidAndTrackedAsync)(ctx, userProvided);
+    if (isValidAndTracked) {
+        return userProvided;
+    }
+    const useUserProvided = await (0, prompts_1.confirmAsync)({
+        message: `App Store Connect API Key with ID ${userProvided.keyId} is not valid on Apple's servers. Proceed anyway?`,
+    });
+    if (useUserProvided) {
+        return userProvided;
+    }
+    return await provideOrGenerateAscApiKeyAsync(ctx, purpose);
+}
+exports.provideOrGenerateAscApiKeyAsync = provideOrGenerateAscApiKeyAsync;
+async function generateAscApiKeyAsync(ctx, purpose) {
+    //console.log('debug');
+    await ctx.appStore.ensureAuthenticatedAsync();
+    const ascApiKey = await ctx.appStore.createAscApiKeyAsync({
+        nickname: getAscApiKeyName(purpose),
+    });
+    return await getMinimalAscApiKeyAsync(ascApiKey);
+}
+function getAscApiKeyName(purpose) {
+    const nameParts = ['[Expo]', purpose, (0, nanoid_1.nanoid)(10)];
+    return nameParts.join(' ');
+}
+exports.getAscApiKeyName = getAscApiKeyName;
+async function promptForAscApiKeyAsync(ctx) {
+    const shouldAutoGenerateCredentials = await (0, promptForCredentials_1.shouldAutoGenerateCredentialsAsync)(credentials_1.ascApiKeyIdSchema);
+    if (shouldAutoGenerateCredentials) {
+        return null;
+    }
+    const ascApiKeyPath = await promptForAscApiKeyPathAsync(ctx);
+    const { keyP8Path, keyId, issuerId } = ascApiKeyPath;
+    return { keyP8: await fs_extra_1.default.readFile(keyP8Path, 'utf-8'), keyId, issuerId };
+}
+async function promptForKeyP8AndIdAsync() {
     var _a, _b;
     log_1.default.log(chalk_1.default.bold('An App Store Connect Api key is required to upload your app to the Apple App Store'));
     log_1.default.log(`If you're not sure what this is or how to create one, ${(0, log_1.learnMore)('https://expo.fyi/creating-asc-api-key')}`);
     const { keyP8Path } = await (0, prompts_1.promptAsync)({
         type: 'text',
         name: 'keyP8Path',
-        message: 'Path to App Store Connect Api Key:',
+        message: 'Path to App Store Connect API Key:',
         initial: 'AuthKey_ABCD.p8',
         // eslint-disable-next-line async-protect/async-suffix
         validate: async (filePath) => {
@@ -35,29 +116,82 @@ async function promptForAscApiKeyAsync() {
     });
     const regex = /^AuthKey_(?<keyId>\w+)\.p8$/; // Common ASC Api file name downloaded from Apple
     const bestEffortKeyId = (_b = (_a = path_1.default.basename(keyP8Path).match(regex)) === null || _a === void 0 ? void 0 : _a.groups) === null || _b === void 0 ? void 0 : _b.keyId;
-    const ascApiKeyMetadata = await (0, promptForCredentials_1.getCredentialsFromUserAsync)(credentials_1.ascApiKeyMetadataSchema, {
+    const { keyId } = await (0, promptForCredentials_1.getCredentialsFromUserAsync)(credentials_1.ascApiKeyIdSchema, {
         keyId: bestEffortKeyId,
     });
-    return { ...ascApiKeyMetadata, keyP8Path };
+    return { keyId, keyP8Path };
 }
-exports.promptForAscApiKeyAsync = promptForAscApiKeyAsync;
-async function promptForIssuerIdAsync() {
-    log_1.default.log(chalk_1.default.bold('An App Store Connect Issuer ID is required'));
-    log_1.default.log(`If you're not sure what this is or how to find yours, ${(0, log_1.learnMore)('https://expo.fyi/asc-issuer-id')}`);
-    const { issuerId } = await (0, prompts_1.promptAsync)({
-        type: 'text',
-        name: 'issuerId',
-        message: 'App Store Connect Issuer ID:',
-        validate: (input) => uuid.validate(input),
-    });
-    return issuerId;
+async function getBestEffortIssuerIdAsync(ctx, ascApiKeyId) {
+    var _a;
+    if (!ctx.appStore.authCtx) {
+        return null;
+    }
+    const ascApiKeyInfo = await ctx.appStore.getAscApiKeyAsync(ascApiKeyId);
+    return (_a = ascApiKeyInfo === null || ascApiKeyInfo === void 0 ? void 0 : ascApiKeyInfo.issuerId) !== null && _a !== void 0 ? _a : null;
 }
-exports.promptForIssuerIdAsync = promptForIssuerIdAsync;
-async function getMinimalAscApiKeyAsync(ascApiKey) {
+async function getAscApiKeysFromAccountAsync(ctx, account, { filterDifferentAppleTeam } = {}) {
+    const ascApiKeysForAccount = await ctx.ios.getAscApiKeysForAccountAsync(account);
+    if (!filterDifferentAppleTeam) {
+        return ascApiKeysForAccount;
+    }
+    else {
+        return filterKeysFromDifferentAppleTeam(ctx, ascApiKeysForAccount);
+    }
+}
+exports.getAscApiKeysFromAccountAsync = getAscApiKeysFromAccountAsync;
+async function selectAscApiKeysFromAccountAsync(ctx, account, { filterDifferentAppleTeam } = {}) {
     var _a;
-    return {
-        ...ascApiKey,
-        issuerId: (_a = ascApiKey.issuerId) !== null && _a !== void 0 ? _a : (await promptForIssuerIdAsync()),
-    };
+    const ascApiKeysForAccount = await getAscApiKeysFromAccountAsync(ctx, account, {
+        filterDifferentAppleTeam,
+    });
+    if (ascApiKeysForAccount.length === 0) {
+        if (filterDifferentAppleTeam) {
+            const maybeAppleTeamId = (_a = ctx.appStore.authCtx) === null || _a === void 0 ? void 0 : _a.team.id;
+            log_1.default.warn(`There are no App Store Connect API Keys in your EAS account${maybeAppleTeamId ? ` matching Apple Team ID: ${maybeAppleTeamId}.` : '.'}`);
+        }
+        else {
+            log_1.default.warn(`There are no App Store Connect API Keys available in your EAS account.`);
+        }
+        return null;
+    }
+    return selectAscApiKeysAsync(ascApiKeysForAccount);
 }
-exports.getMinimalAscApiKeyAsync = getMinimalAscApiKeyAsync;
+exports.selectAscApiKeysFromAccountAsync = selectAscApiKeysFromAccountAsync;
+async function selectAscApiKeysAsync(ascApiKeys) {
+    const sortedAscApiKeys = sortAscApiKeysByUpdatedAtDesc(ascApiKeys);
+    const { chosenAscApiKey } = await (0, prompts_1.promptAsync)({
+        type: 'select',
+        name: 'chosenAscApiKey',
+        message: 'Select an API Key from the list:',
+        choices: sortedAscApiKeys.map(ascApiKey => ({
+            title: formatAscApiKey(ascApiKey),
+            value: ascApiKey,
+        })),
+    });
+    return chosenAscApiKey;
+}
+function filterKeysFromDifferentAppleTeam(ctx, keys) {
+    if (!ctx.appStore.authCtx) {
+        return keys;
+    }
+    const teamId = ctx.appStore.authCtx.team.id;
+    return keys.filter(key => { var _a; return !key.appleTeam || ((_a = key.appleTeam) === null || _a === void 0 ? void 0 : _a.appleTeamIdentifier) === teamId; });
+}
+function sortAscApiKeysByUpdatedAtDesc(keys) {
+    return keys.sort((keyA, keyB) => new Date(keyB.updatedAt).getTime() - new Date(keyA.updatedAt).getTime());
+}
+exports.sortAscApiKeysByUpdatedAtDesc = sortAscApiKeysByUpdatedAtDesc;
+function formatAscApiKey(ascApiKey) {
+    const { keyIdentifier, appleTeam, name, updatedAt } = ascApiKey;
+    let line = '';
+    line += `Key ID: ${keyIdentifier}`;
+    if (name) {
+        line += chalk_1.default.gray(`\n    Name: ${name}`);
+    }
+    if (appleTeam) {
+        line += chalk_1.default.gray(`\n    ${(0, AppleTeamUtils_1.formatAppleTeam)(appleTeam)}`);
+    }
+    line += chalk_1.default.gray(`\n    Updated: ${(0, date_1.fromNow)(new Date(updatedAt))} ago`);
+    return line;
+}
+exports.formatAscApiKey = formatAscApiKey;

package/build/credentials/ios/actions/AssignAscApiKey.d.ts

@@ -0,0 +1,9 @@
+import { AppStoreConnectApiKeyFragment, CommonIosAppCredentialsFragment } from '../../../graphql/generated';
+import { CredentialsContext } from '../../context';
+import { AppLookupParams } from '../api/GraphqlClient';
+import { AppStoreApiKeyPurpose } from './AscApiKeyUtils';
+export declare class AssignAscApiKey {
+    private app;
+    constructor(app: AppLookupParams);
+    runAsync(ctx: CredentialsContext, ascApiKey: AppStoreConnectApiKeyFragment, purpose: AppStoreApiKeyPurpose): Promise<CommonIosAppCredentialsFragment>;
+}

package/build/credentials/ios/actions/AssignAscApiKey.js

@@ -0,0 +1,29 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AssignAscApiKey = void 0;
+const tslib_1 = require("tslib");
+const log_1 = (0, tslib_1.__importDefault)(require("../../../log"));
+const AppleTeamUtils_1 = require("./AppleTeamUtils");
+const AscApiKeyUtils_1 = require("./AscApiKeyUtils");
+class AssignAscApiKey {
+    constructor(app) {
+        this.app = app;
+    }
+    async runAsync(ctx, ascApiKey, purpose) {
+        var _a, _b;
+        const appleTeam = (_b = (_a = (await (0, AppleTeamUtils_1.resolveAppleTeamIfAuthenticatedAsync)(ctx, this.app))) !== null && _a !== void 0 ? _a : ascApiKey.appleTeam) !== null && _b !== void 0 ? _b : null;
+        const appCredentials = await ctx.ios.createOrGetIosAppCredentialsWithCommonFieldsAsync(this.app, { appleTeam: appleTeam !== null && appleTeam !== void 0 ? appleTeam : undefined });
+        let updatedAppCredentials;
+        if (purpose === AscApiKeyUtils_1.AppStoreApiKeyPurpose.SUBMISSION_SERVICE) {
+            updatedAppCredentials = await ctx.ios.updateIosAppCredentialsAsync(appCredentials, {
+                ascApiKeyIdForSubmissions: ascApiKey.id,
+            });
+        }
+        else {
+            throw new Error(`${purpose} is not yet supported.`);
+        }
+        log_1.default.succeed(`App Store Connect API Key assigned to ${this.app.projectName}: ${this.app.bundleIdentifier} for ${purpose}.`);
+        return updatedAppCredentials;
+    }
+}
+exports.AssignAscApiKey = AssignAscApiKey;

package/build/credentials/ios/actions/CreateAscApiKey.d.ts

@@ -0,0 +1,9 @@
+import { AppStoreConnectApiKeyFragment } from '../../../graphql/generated';
+import { Account } from '../../../user/Account';
+import { CredentialsContext } from '../../context';
+import { AppStoreApiKeyPurpose } from './AscApiKeyUtils';
+export declare class CreateAscApiKey {
+    private account;
+    constructor(account: Account);
+    runAsync(ctx: CredentialsContext, purpose: AppStoreApiKeyPurpose): Promise<AppStoreConnectApiKeyFragment>;
+}

package/build/credentials/ios/actions/CreateAscApiKey.js

@@ -0,0 +1,21 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CreateAscApiKey = void 0;
+const tslib_1 = require("tslib");
+const log_1 = (0, tslib_1.__importDefault)(require("../../../log"));
+const AscApiKeyUtils_1 = require("./AscApiKeyUtils");
+class CreateAscApiKey {
+    constructor(account) {
+        this.account = account;
+    }
+    async runAsync(ctx, purpose) {
+        if (ctx.nonInteractive) {
+            throw new Error(`A new App Store Connect API Key cannot be created in non-interactive mode.`);
+        }
+        const ascApiKey = await (0, AscApiKeyUtils_1.provideOrGenerateAscApiKeyAsync)(ctx, purpose);
+        const result = await ctx.ios.createAscApiKeyAsync(this.account, ascApiKey);
+        log_1.default.succeed('Created App Store Connect API Key');
+        return result;
+    }
+}
+exports.CreateAscApiKey = CreateAscApiKey;

package/build/credentials/ios/actions/DistributionCertificateUtils.js

@@ -104,7 +104,7 @@ async function provideOrGenerateDistributionCertificateAsync(ctx) {
         const userProvided = await promptForDistCertAsync(ctx);
         if (userProvided) {
             if (!ctx.appStore.authCtx) {
-                log_1.default.warn('Unable to validate distribution certificate due to insufficient Apple Credentials');
+                log_1.default.warn('Unable to validate distribution certificate, you are not authenticated with Apple.');
                 return userProvided;
             }
             else {

package/build/credentials/ios/actions/PushKeyUtils.js

@@ -17,7 +17,7 @@ async function provideOrGeneratePushKeyAsync(ctx) {
         const userProvided = await promptForPushKeyAsync(ctx);
         if (userProvided) {
             if (!ctx.appStore.authCtx) {
-                log_1.default.warn('Unable to validate push key due to insufficient Apple Credentials');
+                log_1.default.warn('Unable to validate push key, you are not authenticated with Apple.');
                 return userProvided;
             }
             else {

package/build/credentials/ios/actions/RemoveAscApiKey.d.ts

@@ -0,0 +1,14 @@
+import { AppStoreConnectApiKeyFragment } from '../../../graphql/generated';
+import { Account } from '../../../user/Account';
+import { CredentialsContext } from '../../context';
+export declare class SelectAndRemoveAscApiKey {
+    private account;
+    constructor(account: Account);
+    runAsync(ctx: CredentialsContext): Promise<void>;
+}
+export declare class RemoveAscApiKey {
+    private account;
+    private ascApiKey;
+    constructor(account: Account, ascApiKey: AppStoreConnectApiKeyFragment);
+    runAsync(ctx: CredentialsContext): Promise<void>;
+}

package/build/credentials/ios/actions/RemoveAscApiKey.js

@@ -0,0 +1,55 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RemoveAscApiKey = exports.SelectAndRemoveAscApiKey = void 0;
+const tslib_1 = require("tslib");
+const log_1 = (0, tslib_1.__importDefault)(require("../../../log"));
+const prompts_1 = require("../../../prompts");
+const AscApiKeyUtils_1 = require("./AscApiKeyUtils");
+class SelectAndRemoveAscApiKey {
+    constructor(account) {
+        this.account = account;
+    }
+    async runAsync(ctx) {
+        const selected = await (0, AscApiKeyUtils_1.selectAscApiKeysFromAccountAsync)(ctx, this.account);
+        if (selected) {
+            await new RemoveAscApiKey(this.account, selected).runAsync(ctx);
+            log_1.default.succeed('Removed App Store Connect API Key');
+            log_1.default.newLine();
+        }
+    }
+}
+exports.SelectAndRemoveAscApiKey = SelectAndRemoveAscApiKey;
+class RemoveAscApiKey {
+    constructor(account, ascApiKey) {
+        this.account = account;
+        this.ascApiKey = ascApiKey;
+    }
+    async runAsync(ctx) {
+        if (ctx.nonInteractive) {
+            throw new Error(`Cannot remove App Store Connect API Keys in non-interactive mode.`);
+        }
+        // TODO(quin): add an extra edge on AppStoreConnectApiKey to find the apps using it
+        const confirm = await (0, prompts_1.confirmAsync)({
+            message: `Deleting this API Key may affect your projects that rely on it. Do you want to continue?`,
+        });
+        if (!confirm) {
+            log_1.default.log('Aborting');
+            return;
+        }
+        log_1.default.log('Removing API Key');
+        await ctx.ios.deleteAscApiKeyAsync(this.ascApiKey.id);
+        let shouldRevoke = false;
+        if (!ctx.nonInteractive) {
+            shouldRevoke = await (0, prompts_1.confirmAsync)({
+                message: `Do you also want to revoke this API Key on the Apple Developer Portal?`,
+            });
+        }
+        else if (ctx.nonInteractive) {
+            log_1.default.log('Skipping API Key revocation on the Apple Developer Portal.');
+        }
+        if (shouldRevoke) {
+            await ctx.appStore.revokeAscApiKeyAsync(this.ascApiKey.keyIdentifier);
+        }
+    }
+}
+exports.RemoveAscApiKey = RemoveAscApiKey;

package/build/credentials/ios/actions/{SetupAdhocProvisioningProfile.d.ts → SetUpAdhocProvisioningProfile.d.ts}

@@ -1,7 +1,7 @@
 import { AppleDistributionCertificateFragment, IosAppBuildCredentialsFragment } from '../../../graphql/generated';
 import { CredentialsContext } from '../../context';
 import { AppLookupParams } from '../api/GraphqlClient';
-export declare class SetupAdhocProvisioningProfile {
+export declare class SetUpAdhocProvisioningProfile {
     private app;
     constructor(app: AppLookupParams);
     runAsync(ctx: CredentialsContext): Promise<IosAppBuildCredentialsFragment>;

package/build/credentials/ios/actions/{SetupAdhocProvisioningProfile.js → SetUpAdhocProvisioningProfile.js}

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.doUDIDsMatch = exports.SetupAdhocProvisioningProfile = void 0;
+exports.doUDIDsMatch = exports.SetUpAdhocProvisioningProfile = void 0;
 const tslib_1 = require("tslib");
 const assert_1 = (0, tslib_1.__importDefault)(require("assert"));
 const chalk_1 = (0, tslib_1.__importDefault)(require("chalk"));
@@ -15,19 +15,19 @@ const validateProvisioningProfile_1 = require("../validators/validateProvisionin
 const AppleTeamUtils_1 = require("./AppleTeamUtils");
 const BuildCredentialsUtils_1 = require("./BuildCredentialsUtils");
 const DeviceUtils_1 = require("./DeviceUtils");
-const SetupDistributionCertificate_1 = require("./SetupDistributionCertificate");
+const SetUpDistributionCertificate_1 = require("./SetUpDistributionCertificate");
 var ReuseAction;
 (function (ReuseAction) {
     ReuseAction[ReuseAction["Yes"] = 0] = "Yes";
     ReuseAction[ReuseAction["ShowDevices"] = 1] = "ShowDevices";
     ReuseAction[ReuseAction["No"] = 2] = "No";
 })(ReuseAction || (ReuseAction = {}));
-class SetupAdhocProvisioningProfile {
+class SetUpAdhocProvisioningProfile {
     constructor(app) {
         this.app = app;
     }
     async runAsync(ctx) {
-        const distCert = await new SetupDistributionCertificate_1.SetupDistributionCertificate(this.app, generated_1.IosDistributionType.AdHoc).runAsync(ctx);
+        const distCert = await new SetUpDistributionCertificate_1.SetUpDistributionCertificate(this.app, generated_1.IosDistributionType.AdHoc).runAsync(ctx);
         const areBuildCredentialsSetup = await this.areBuildCredentialsSetupAsync(ctx);
         if (ctx.nonInteractive) {
             if (areBuildCredentialsSetup) {
@@ -195,7 +195,7 @@ class SetupAdhocProvisioningProfile {
         }
     }
 }
-exports.SetupAdhocProvisioningProfile = SetupAdhocProvisioningProfile;
+exports.SetUpAdhocProvisioningProfile = SetUpAdhocProvisioningProfile;
 function doUDIDsMatch(udidsA, udidsB) {
     const setA = new Set(udidsA);
     const setB = new Set(udidsB);

package/build/credentials/ios/actions/SetUpAscApiKey.d.ts

@@ -0,0 +1,21 @@
+import { CommonIosAppCredentialsFragment } from '../../../graphql/generated';
+import { CredentialsContext } from '../../context';
+import { AppLookupParams } from '../api/GraphqlClient';
+import { AppStoreApiKeyPurpose } from './AscApiKeyUtils';
+export declare enum SetupAscApiKeyChoice {
+    GENERATE = "GENERATE",
+    USE_EXISTING = "USE_EXISTING"
+}
+export declare class SetUpAscApiKey {
+    private app;
+    private purpose;
+    choices: {
+        title: string;
+        value: string;
+    }[];
+    constructor(app: AppLookupParams, purpose: AppStoreApiKeyPurpose);
+    runAsync(ctx: CredentialsContext): Promise<CommonIosAppCredentialsFragment>;
+    private doBestEffortAutoselectAsync;
+    private isAscApiKeySetupAsync;
+    private processChoicesAsync;
+}

package/build/credentials/ios/actions/SetUpAscApiKey.js

@@ -0,0 +1,114 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SetUpAscApiKey = exports.SetupAscApiKeyChoice = void 0;
+const tslib_1 = require("tslib");
+const assert_1 = (0, tslib_1.__importDefault)(require("assert"));
+const nullthrows_1 = (0, tslib_1.__importDefault)(require("nullthrows"));
+const log_1 = (0, tslib_1.__importDefault)(require("../../../log"));
+const prompts_1 = require("../../../prompts");
+const errors_1 = require("../../errors");
+const validateAscApiKey_1 = require("../validators/validateAscApiKey");
+const AscApiKeyUtils_1 = require("./AscApiKeyUtils");
+const AssignAscApiKey_1 = require("./AssignAscApiKey");
+const CreateAscApiKey_1 = require("./CreateAscApiKey");
+var SetupAscApiKeyChoice;
+(function (SetupAscApiKeyChoice) {
+    SetupAscApiKeyChoice["GENERATE"] = "GENERATE";
+    SetupAscApiKeyChoice["USE_EXISTING"] = "USE_EXISTING";
+})(SetupAscApiKeyChoice = exports.SetupAscApiKeyChoice || (exports.SetupAscApiKeyChoice = {}));
+class SetUpAscApiKey {
+    constructor(app, purpose) {
+        this.app = app;
+        this.purpose = purpose;
+        this.choices = [
+            {
+                title: '[Choose an existing ASC API Key]',
+                value: SetupAscApiKeyChoice.USE_EXISTING,
+            },
+            { title: '[Add a new ASC API Key]', value: SetupAscApiKeyChoice.GENERATE },
+        ];
+    }
+    async runAsync(ctx) {
+        const isKeySetup = await this.isAscApiKeySetupAsync(ctx, this.purpose);
+        if (isKeySetup) {
+            log_1.default.succeed('App Store Connect API Key already set up.');
+            return (0, nullthrows_1.default)(await ctx.ios.getIosAppCredentialsWithCommonFieldsAsync(this.app), 'iosAppCredentials cannot be null if App Store Connect API Key is already set up');
+        }
+        if (ctx.nonInteractive) {
+            throw new errors_1.MissingCredentialsNonInteractiveError('App Store Connect API Keys cannot be set up in --non-interactive mode.');
+        }
+        const keysForAccount = await (0, AscApiKeyUtils_1.getAscApiKeysFromAccountAsync)(ctx, this.app.account, {
+            filterDifferentAppleTeam: true,
+        });
+        const maybeAutoselectedKey = await this.doBestEffortAutoselectAsync(ctx, keysForAccount);
+        if (maybeAutoselectedKey) {
+            return await new AssignAscApiKey_1.AssignAscApiKey(this.app).runAsync(ctx, maybeAutoselectedKey, this.purpose);
+        }
+        const availableChoices = keysForAccount.length === 0
+            ? this.choices.filter(choice => choice.value !== SetupAscApiKeyChoice.USE_EXISTING)
+            : this.choices;
+        const ascApiKey = await this.processChoicesAsync(ctx, this.purpose, availableChoices);
+        return await new AssignAscApiKey_1.AssignAscApiKey(this.app).runAsync(ctx, ascApiKey, this.purpose);
+    }
+    async doBestEffortAutoselectAsync(ctx, keysForAccount) {
+        if (!ctx.appStore.authCtx) {
+            return null;
+        }
+        if (keysForAccount.length === 0) {
+            return null;
+        }
+        // only provide autoselect if we can find a key that is certainly valid
+        const validKeys = await (0, validateAscApiKey_1.getValidAndTrackedAscApiKeysAsync)(ctx, keysForAccount);
+        if (validKeys.length === 0) {
+            return null;
+        }
+        const [autoselectedKey] = (0, AscApiKeyUtils_1.sortAscApiKeysByUpdatedAtDesc)(validKeys);
+        const useAutoselected = await (0, prompts_1.confirmAsync)({
+            message: `Reuse this App Store Connect API Key?\n${(0, AscApiKeyUtils_1.formatAscApiKey)(autoselectedKey)}`,
+        });
+        if (useAutoselected) {
+            log_1.default.log(`Using App Store Connect API Key with ID ${autoselectedKey.keyIdentifier}`);
+            return autoselectedKey;
+        }
+        else {
+            return null;
+        }
+    }
+    async isAscApiKeySetupAsync(ctx, purpose) {
+        const appCredentials = await ctx.ios.getIosAppCredentialsWithCommonFieldsAsync(this.app);
+        if (purpose !== AscApiKeyUtils_1.AppStoreApiKeyPurpose.SUBMISSION_SERVICE) {
+            throw new Error(`App Store Connect API Key setup is not yet supported for ${purpose}.`);
+        }
+        return !!(appCredentials === null || appCredentials === void 0 ? void 0 : appCredentials.appStoreConnectApiKeyForSubmissions);
+    }
+    async processChoicesAsync(ctx, purpose, choices) {
+        (0, assert_1.default)(choices.length > 0, 'SetupAscApiKey: There must be at least one choice');
+        let choice;
+        if (choices.length === 1) {
+            choice = choices[0].value;
+        }
+        else {
+            const result = await (0, prompts_1.promptAsync)({
+                type: 'select',
+                name: 'choice',
+                message: 'Select what to use for your project:',
+                choices,
+            });
+            choice = result.choice;
+        }
+        if (choice === SetupAscApiKeyChoice.GENERATE) {
+            return await new CreateAscApiKey_1.CreateAscApiKey(this.app.account).runAsync(ctx, purpose);
+        }
+        else if (choice === SetupAscApiKeyChoice.USE_EXISTING) {
+            const selectedAscApiKey = await (0, AscApiKeyUtils_1.selectAscApiKeysFromAccountAsync)(ctx, this.app.account, {
+                filterDifferentAppleTeam: true,
+            });
+            if (!selectedAscApiKey) {
+                return await this.processChoicesAsync(ctx, purpose, choices);
+            }
+            return selectedAscApiKey;
+        }
+        throw new errors_1.UnsupportedCredentialsChoiceError(`AscApiKey Setup does not support choice:${choice}`, choice);
+    }
+}
+exports.SetUpAscApiKey = SetUpAscApiKey;

package/build/credentials/ios/actions/{SetupBuildCredentials.d.ts → SetUpBuildCredentials.d.ts}

@@ -9,7 +9,7 @@ interface Options {
     enterpriseProvisioning?: IosEnterpriseProvisioning;
     iosCapabilitiesOptions?: IosCapabilitiesOptions;
 }
-export declare class SetupBuildCredentials {
+export declare class SetUpBuildCredentials {
     private options;
     constructor(options: Options);
     runAsync(ctx: CredentialsContext): Promise<IosCredentials>;

package/build/credentials/ios/actions/{SetupBuildCredentials.js → SetUpBuildCredentials.js}

@@ -1,13 +1,13 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.SetupBuildCredentials = void 0;
+exports.SetUpBuildCredentials = void 0;
 const tslib_1 = require("tslib");
 const chalk_1 = (0, tslib_1.__importDefault)(require("chalk"));
 const nullthrows_1 = (0, tslib_1.__importDefault)(require("nullthrows"));
 const log_1 = (0, tslib_1.__importDefault)(require("../../../log"));
 const printCredentials_1 = require("../utils/printCredentials");
-const SetupTargetBuildCredentials_1 = require("./SetupTargetBuildCredentials");
-class SetupBuildCredentials {
+const SetUpTargetBuildCredentials_1 = require("./SetUpTargetBuildCredentials");
+class SetUpBuildCredentials {
     constructor(options) {
         this.options = options;
     }
@@ -35,7 +35,7 @@ class SetupBuildCredentials {
             else {
                 log_1.default.newLine();
             }
-            const action = new SetupTargetBuildCredentials_1.SetupTargetBuildCredentials({
+            const action = new SetUpTargetBuildCredentials_1.SetUpTargetBuildCredentials({
                 ...this.options,
                 app: {
                     ...this.options.app,
@@ -53,7 +53,7 @@ class SetupBuildCredentials {
         return toIosCredentials(iosAppBuildCredentialsMap);
     }
 }
-exports.SetupBuildCredentials = SetupBuildCredentials;
+exports.SetUpBuildCredentials = SetUpBuildCredentials;
 function toIosCredentials(appBuildCredentialsMap) {
     return Object.entries(appBuildCredentialsMap).reduce((acc, [targetName, appBuildCredentials]) => {
         var _a, _b, _c;

package/build/credentials/ios/actions/{SetupBuildCredentialsFromCredentialsJson.d.ts → SetUpBuildCredentialsFromCredentialsJson.d.ts}

@@ -1,7 +1,7 @@
 import { IosDistributionType } from '../../../graphql/generated';
 import { CredentialsContext } from '../../context';
 import { App, Target } from '../types';
-export declare class SetupBuildCredentialsFromCredentialsJson {
+export declare class SetUpBuildCredentialsFromCredentialsJson {
     private app;
     private targets;
     private distributionType;

package/build/credentials/ios/actions/{SetupBuildCredentialsFromCredentialsJson.js → SetUpBuildCredentialsFromCredentialsJson.js}

@@ -1,14 +1,14 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.SetupBuildCredentialsFromCredentialsJson = void 0;
+exports.SetUpBuildCredentialsFromCredentialsJson = void 0;
 const tslib_1 = require("tslib");
 const chalk_1 = (0, tslib_1.__importDefault)(require("chalk"));
 const log_1 = (0, tslib_1.__importDefault)(require("../../../log"));
 const target_1 = require("../../../project/ios/target");
 const read_1 = require("../../credentialsJson/read");
 const utils_1 = require("../../credentialsJson/utils");
-const SetupTargetBuildCredentialsFromCredentialsJson_1 = require("./SetupTargetBuildCredentialsFromCredentialsJson");
-class SetupBuildCredentialsFromCredentialsJson {
+const SetUpTargetBuildCredentialsFromCredentialsJson_1 = require("./SetUpTargetBuildCredentialsFromCredentialsJson");
+class SetUpBuildCredentialsFromCredentialsJson {
     constructor(app, targets, distributionType) {
         this.app = app;
         this.targets = targets;
@@ -24,7 +24,7 @@ class SetupBuildCredentialsFromCredentialsJson {
                 log_1.default.log(`Setting up credentials for target ${chalk_1.default.bold(target.targetName)} (${target.bundleIdentifier})`);
                 log_1.default.newLine();
             }
-            await new SetupTargetBuildCredentialsFromCredentialsJson_1.SetupTargetBuildCredentialsFromCredentialsJson({
+            await new SetUpTargetBuildCredentialsFromCredentialsJson_1.SetUpTargetBuildCredentialsFromCredentialsJson({
                 account: this.app.account,
                 projectName: this.app.projectName,
                 bundleIdentifier: target.bundleIdentifier,
@@ -43,4 +43,4 @@ class SetupBuildCredentialsFromCredentialsJson {
         }
     }
 }
-exports.SetupBuildCredentialsFromCredentialsJson = SetupBuildCredentialsFromCredentialsJson;
+exports.SetUpBuildCredentialsFromCredentialsJson = SetUpBuildCredentialsFromCredentialsJson;