eas-cli 0.49.0 → 0.50.0

package/build/credentials/ios/appstore/authenticate.d.ts

@@ -1,30 +1,21 @@
 /// <reference types="@expo/apple-utils/ts-declarations/expo__app-store" />
 import { RequestContext, Session } from '@expo/apple-utils';
+import { MinimalAscApiKey } from '../credentials';
+import { AppleTeamType, AuthCtx, AuthenticationMode, UserAuthCtx } from './authenticateTypes';
 export declare type Options = {
     appleId?: string;
     teamId?: string;
+    teamName?: string;
+    teamType?: AppleTeamType;
+    ascApiKey?: MinimalAscApiKey;
     /**
      * Can be used to restore the Apple auth state via apple-utils.
      */
     cookies?: Session.AuthState['cookies'];
+    /** Indicates how Apple network requests will be made. */
+    mode?: AuthenticationMode;
 };
-export declare type Team = {
-    id: string;
-    name: string;
-    inHouse?: boolean;
-};
-export declare type AuthCtx = {
-    appleId: string;
-    appleIdPassword?: string;
-    team: Team;
-    /**
-     * Defined when using Fastlane
-     */
-    fastlaneSession?: string;
-    /**
-     * Can be used to restore the Apple auth state via apple-utils.
-     */
-    authState?: Session.AuthState;
-};
+export declare function isUserAuthCtx(authCtx: AuthCtx | undefined): authCtx is UserAuthCtx;
+export declare function assertUserAuthCtx(authCtx: AuthCtx | undefined): UserAuthCtx;
 export declare function getRequestContext(authCtx: AuthCtx): RequestContext;
 export declare function authenticateAsync(options?: Options): Promise<AuthCtx>;

package/build/credentials/ios/appstore/authenticate.js

@@ -1,14 +1,26 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.authenticateAsync = exports.getRequestContext = void 0;
+exports.authenticateAsync = exports.getRequestContext = exports.assertUserAuthCtx = exports.isUserAuthCtx = void 0;
 const tslib_1 = require("tslib");
 const apple_utils_1 = require("@expo/apple-utils");
 const assert_1 = tslib_1.__importDefault(require("assert"));
 const chalk_1 = tslib_1.__importDefault(require("chalk"));
 const log_1 = tslib_1.__importDefault(require("../../../log"));
 const prompts_1 = require("../../../prompts");
+const authenticateTypes_1 = require("./authenticateTypes");
 const resolveCredentials_1 = require("./resolveCredentials");
 const APPLE_IN_HOUSE_TEAM_TYPE = 'in-house';
+function isUserAuthCtx(authCtx) {
+    return !!authCtx && typeof authCtx.appleId === 'string';
+}
+exports.isUserAuthCtx = isUserAuthCtx;
+function assertUserAuthCtx(authCtx) {
+    if (isUserAuthCtx(authCtx)) {
+        return authCtx;
+    }
+    throw new Error('Expected user authentication context (login/password).');
+}
+exports.assertUserAuthCtx = assertUserAuthCtx;
 function getRequestContext(authCtx) {
     var _a;
     (0, assert_1.default)((_a = authCtx.authState) === null || _a === void 0 ? void 0 : _a.context, 'Apple request context must be defined');
@@ -26,7 +38,7 @@ async function loginAsync(userCredentials = {}, options) {
         }
     }
     // Resolve the user credentials, optimizing for password-less login.
-    const { username, password } = await (0, resolveCredentials_1.resolveCredentialsAsync)(userCredentials);
+    const { username, password } = await (0, resolveCredentials_1.resolveUserCredentialsAsync)(userCredentials);
     (0, assert_1.default)(username);
     // Clear data
     apple_utils_1.Auth.resetInMemoryData();
@@ -82,6 +94,35 @@ async function loginWithUserCredentialsAsync({ username, password, teamId, provi
     return newSession;
 }
 async function authenticateAsync(options = {}) {
+    if (options.mode === authenticateTypes_1.AuthenticationMode.API_KEY) {
+        return await authenticateWithApiKeyAsync(options);
+    }
+    else {
+        return await authenticateAsUserAsync(options);
+    }
+}
+exports.authenticateAsync = authenticateAsync;
+async function authenticateWithApiKeyAsync(options = {}) {
+    // Resolve the user credentials, optimizing for password-less login.
+    const ascApiKey = await (0, resolveCredentials_1.resolveAscApiKeyAsync)(options.ascApiKey);
+    const team = await (0, resolveCredentials_1.resolveAppleTeamAsync)(options);
+    const jwtDurationSeconds = 1200; // 20 minutes
+    return {
+        team,
+        authState: {
+            context: {
+                token: new apple_utils_1.Token({
+                    key: ascApiKey.keyP8,
+                    issuerId: ascApiKey.issuerId,
+                    keyId: ascApiKey.keyId,
+                    duration: jwtDurationSeconds,
+                }),
+            },
+        },
+        ascApiKey,
+    };
+}
+async function authenticateAsUserAsync(options = {}) {
     // help keep apple login visually apart from the other operations.
     log_1.default.addNewLineIfNone();
     try {
@@ -119,7 +160,6 @@ async function authenticateAsync(options = {}) {
         throw error;
     }
 }
-exports.authenticateAsync = authenticateAsync;
 function formatTeam({ teamId, name, type }) {
     return {
         id: teamId,

package/build/credentials/ios/appstore/authenticateTypes.d.ts

@@ -0,0 +1,42 @@
+/// <reference types="@expo/apple-utils/ts-declarations/expo__app-store" />
+import { Session } from '@expo/apple-utils';
+import { MinimalAscApiKey } from '../credentials';
+export declare enum AuthenticationMode {
+    /** App Store API requests will be made using the official API via an API key, used for CI environments where 2FA cannot be performed. */
+    API_KEY = 0,
+    /** Uses cookies based authentication and the unofficial App Store web API, this provides more functionality than the official API but cannot be reliably used in CI because it requires 2FA. */
+    USER = 1
+}
+export declare enum AppleTeamType {
+    IN_HOUSE = "IN_HOUSE",
+    COMPANY_OR_ORGANIZATION = "COMPANY_OR_ORGANIZATION",
+    INDIVIDUAL = "INDIVIDUAL"
+}
+export declare type Team = {
+    id: string;
+    /** Name of the development team, this is undefined when ASC API keys are used instead of cookies for authentication. */
+    name?: string;
+    inHouse?: boolean;
+};
+export declare type UserAuthCtx = {
+    appleId: string;
+    appleIdPassword?: string;
+    team: Team;
+    /**
+     * Defined when using Fastlane
+     */
+    fastlaneSession?: string;
+    /**
+     * Can be used to restore the Apple auth state via apple-utils.
+     */
+    authState?: Session.AuthState;
+};
+export declare type ApiKeyAuthCtx = {
+    ascApiKey: MinimalAscApiKey;
+    team: Team;
+    /**
+     * Can be used to restore the Apple auth state via apple-utils.
+     */
+    authState?: Partial<Session.AuthState>;
+};
+export declare type AuthCtx = UserAuthCtx | ApiKeyAuthCtx;

package/build/credentials/ios/appstore/authenticateTypes.js

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AppleTeamType = exports.AuthenticationMode = void 0;
+var AuthenticationMode;
+(function (AuthenticationMode) {
+    /** App Store API requests will be made using the official API via an API key, used for CI environments where 2FA cannot be performed. */
+    AuthenticationMode[AuthenticationMode["API_KEY"] = 0] = "API_KEY";
+    /** Uses cookies based authentication and the unofficial App Store web API, this provides more functionality than the official API but cannot be reliably used in CI because it requires 2FA. */
+    AuthenticationMode[AuthenticationMode["USER"] = 1] = "USER";
+})(AuthenticationMode = exports.AuthenticationMode || (exports.AuthenticationMode = {}));
+var AppleTeamType;
+(function (AppleTeamType) {
+    AppleTeamType["IN_HOUSE"] = "IN_HOUSE";
+    AppleTeamType["COMPANY_OR_ORGANIZATION"] = "COMPANY_OR_ORGANIZATION";
+    AppleTeamType["INDIVIDUAL"] = "INDIVIDUAL";
+})(AppleTeamType = exports.AppleTeamType || (exports.AppleTeamType = {}));

package/build/credentials/ios/appstore/contractMessages.d.ts

@@ -2,4 +2,7 @@
 import { ITCAgreements, RequestContext } from '@expo/apple-utils';
 import type { Ora } from '../../../ora';
 export declare function formatContractMessage(message: ITCAgreements.ITCContractMessage): string;
+/**
+ * **Does not support App Store Connect API (CI).**
+ */
 export declare function assertContractMessagesAsync(context: RequestContext, spinner?: Ora): Promise<void>;

package/build/credentials/ios/appstore/contractMessages.js

@@ -6,6 +6,9 @@ const apple_utils_1 = require("@expo/apple-utils");
 const chalk_1 = tslib_1.__importDefault(require("chalk"));
 const log_1 = tslib_1.__importDefault(require("../../../log"));
 const convertHTMLToASCII_1 = require("../utils/convertHTMLToASCII");
+/**
+ * **Does not support App Store Connect API (CI).**
+ */
 async function getContractStatusAsync(context) {
     var _a;
     try {
@@ -17,6 +20,9 @@ async function getContractStatusAsync(context) {
         return null;
     }
 }
+/**
+ * **Does not support App Store Connect API (CI).**
+ */
 async function getContractMessagesAsync(context) {
     try {
         return await apple_utils_1.ITCAgreements.getContractMessagesAsync(context);
@@ -26,6 +32,9 @@ async function getContractMessagesAsync(context) {
         return null;
     }
 }
+/**
+ * **Does not support App Store Connect API (CI).**
+ */
 async function getRequiredContractMessagesAsync(context) {
     var _a, _b;
     // This emulates the check that's performed on the ASC website's "apps"
@@ -65,6 +74,9 @@ function formatContractMessage(message) {
     });
 }
 exports.formatContractMessage = formatContractMessage;
+/**
+ * **Does not support App Store Connect API (CI).**
+ */
 async function assertContractMessagesAsync(context, spinner) {
     const { messages, isFatal } = await getRequiredContractMessagesAsync(context);
     if (Array.isArray(messages) && messages.length) {

package/build/credentials/ios/appstore/distributionCertificate.d.ts

@@ -1,7 +1,7 @@
 /// <reference types="@expo/apple-utils/ts-declarations/expo__app-store" />
 import { Certificate, RequestContext } from '@expo/apple-utils';
 import { DistributionCertificate, DistributionCertificateStoreInfo } from './Credentials.types';
-import { AuthCtx } from './authenticate';
+import { AuthCtx } from './authenticateTypes';
 export declare class AppleTooManyCertsError extends Error {
 }
 export declare function getCertificateBySerialNumberAsync(context: RequestContext, serialNumber: string): Promise<Certificate>;

package/build/credentials/ios/appstore/ensureAppExists.d.ts

@@ -1,7 +1,7 @@
 /// <reference types="@expo/apple-utils/ts-declarations/expo__app-store" />
 import { App, BundleId } from '@expo/apple-utils';
 import { JSONObject } from '@expo/json-file';
-import { AuthCtx } from './authenticate';
+import { AuthCtx, UserAuthCtx } from './authenticateTypes';
 export interface IosCapabilitiesOptions {
     entitlements: JSONObject;
 }
@@ -17,7 +17,7 @@ export declare function ensureBundleIdExistsWithNameAsync(authCtx: AuthCtx, { na
 }, options?: IosCapabilitiesOptions): Promise<void>;
 export declare function syncCapabilitiesAsync(bundleId: BundleId, { entitlements }: IosCapabilitiesOptions): Promise<void>;
 export declare function syncCapabilityIdentifiersAsync(bundleId: BundleId, { entitlements }: IosCapabilitiesOptions): Promise<void>;
-export declare function ensureAppExistsAsync(authCtx: AuthCtx, { name, language, companyName, bundleIdentifier, sku, }: {
+export declare function ensureAppExistsAsync(userAuthCtx: UserAuthCtx, { name, language, companyName, bundleIdentifier, sku, }: {
     name: string;
     language?: string;
     companyName?: string;

package/build/credentials/ios/appstore/ensureAppExists.js

@@ -44,7 +44,12 @@ async function ensureBundleIdExistsWithNameAsync(authCtx, { name, bundleIdentifi
             if (err.message.match(/forbidden for security reasons/) ||
                 // Unable to process request - PLA Update available - You currently don't have access to this membership resource. To resolve this issue, agree to the latest Program License Agreement in your developer account.
                 err.message.match(/agree/)) {
-                await (0, contractMessages_1.assertContractMessagesAsync)(context);
+                if ((0, authenticate_1.isUserAuthCtx)(authCtx)) {
+                    await (0, contractMessages_1.assertContractMessagesAsync)(context);
+                }
+                else {
+                    log_1.default.warn(`You currently don't have access to this membership resource. To resolve this issue, agree to the latest Program License Agreement in your developer account.`);
+                }
             }
         }
         throw err;
@@ -95,9 +100,9 @@ async function syncCapabilityIdentifiersAsync(bundleId, { entitlements }) {
     }
 }
 exports.syncCapabilityIdentifiersAsync = syncCapabilityIdentifiersAsync;
-async function ensureAppExistsAsync(authCtx, { name, language, companyName, bundleIdentifier, sku, }) {
+async function ensureAppExistsAsync(userAuthCtx, { name, language, companyName, bundleIdentifier, sku, }) {
     var _a;
-    const context = (0, authenticate_1.getRequestContext)(authCtx);
+    const context = (0, authenticate_1.getRequestContext)(userAuthCtx);
     const spinner = (0, ora_1.ora)(`Linking to App Store Connect ${chalk_1.default.dim(bundleIdentifier)}`).start();
     let app = await apple_utils_1.App.findAsync(context, { bundleId: bundleIdentifier });
     if (!app) {
@@ -105,6 +110,9 @@ async function ensureAppExistsAsync(authCtx, { name, language, companyName, bund
         try {
             // Assert contract errors when the user needs to create an app.
             await (0, contractMessages_1.assertContractMessagesAsync)(context, spinner);
+            /**
+             * **Does not support App Store Connect API (CI).**
+             */
             app = await apple_utils_1.App.createAsync(context, {
                 bundleId: bundleIdentifier,
                 name,
@@ -115,8 +123,7 @@ async function ensureAppExistsAsync(authCtx, { name, language, companyName, bund
         }
         catch (error) {
             if (error.message.match(/An App ID with Identifier '(.*)' is not available/)) {
-                const providerName = (_a = authCtx.authState) === null || _a === void 0 ? void 0 : _a.session.provider.name;
-                throw new Error(`\nThe bundle identifier "${bundleIdentifier}" is not available to provider "${providerName}". Please change it in your app config and try again.\n`);
+                throw new Error(`\nThe bundle identifier "${bundleIdentifier}" is not available to provider "${(_a = userAuthCtx.authState) === null || _a === void 0 ? void 0 : _a.session.provider.name}. Please change it in your app config and try again.\n`);
             }
             spinner.fail(`Failed to create App Store app ${chalk_1.default.dim(name)}`);
             error.message +=

package/build/credentials/ios/appstore/provisioningProfile.d.ts

@@ -1,5 +1,5 @@
 import { DistributionCertificate, ProvisioningProfile, ProvisioningProfileStoreInfo } from './Credentials.types';
-import { AuthCtx } from './authenticate';
+import { AuthCtx } from './authenticateTypes';
 export declare enum ProfileClass {
     Adhoc = "ad_hoc",
     General = "general"

package/build/credentials/ios/appstore/provisioningProfileAdhoc.d.ts

@@ -1,3 +1,3 @@
 import { ProvisioningProfile } from './Credentials.types';
-import { AuthCtx } from './authenticate';
+import { AuthCtx } from './authenticateTypes';
 export declare function createOrReuseAdhocProvisioningProfileAsync(authCtx: AuthCtx, udids: string[], bundleIdentifier: string, distCertSerialNumber: string): Promise<ProvisioningProfile>;

package/build/credentials/ios/appstore/pushKey.d.ts

@@ -1,18 +1,18 @@
 import { PushKey, PushKeyStoreInfo } from './Credentials.types';
-import { AuthCtx } from './authenticate';
+import { UserAuthCtx } from './authenticateTypes';
 export declare const APPLE_KEYS_TOO_MANY_GENERATED_ERROR: string;
 /**
  * List all existing push keys on Apple servers.
  * **Does not support App Store Connect API (CI).**
  */
-export declare function listPushKeysAsync(authCtx: AuthCtx): Promise<PushKeyStoreInfo[]>;
+export declare function listPushKeysAsync(userAuthCtx: UserAuthCtx): Promise<PushKeyStoreInfo[]>;
 /**
  * Create a new push key on Apple servers.
  * **Does not support App Store Connect API (CI).**
  */
-export declare function createPushKeyAsync(authCtx: AuthCtx, name?: string): Promise<PushKey>;
+export declare function createPushKeyAsync(userAuthCtx: UserAuthCtx, name?: string): Promise<PushKey>;
 /**
  * Revoke an existing push key on Apple servers.
  * **Does not support App Store Connect API (CI).**
  */
-export declare function revokePushKeyAsync(authCtx: AuthCtx, ids: string[]): Promise<void>;
+export declare function revokePushKeyAsync(userAuthCtx: UserAuthCtx, ids: string[]): Promise<void>;

package/build/credentials/ios/appstore/pushKey.js

@@ -18,10 +18,10 @@ Please remember that Apple Keys are not application specific!
  * List all existing push keys on Apple servers.
  * **Does not support App Store Connect API (CI).**
  */
-async function listPushKeysAsync(authCtx) {
+async function listPushKeysAsync(userAuthCtx) {
     const spinner = (0, ora_1.ora)(`Fetching Apple push keys`).start();
     try {
-        const context = (0, authenticate_1.getRequestContext)(authCtx);
+        const context = (0, authenticate_1.getRequestContext)(userAuthCtx);
         const keys = await apple_utils_1.Keys.getKeysAsync(context);
         spinner.succeed(`Fetched Apple push keys`);
         return keys;
@@ -36,19 +36,19 @@ exports.listPushKeysAsync = listPushKeysAsync;
  * Create a new push key on Apple servers.
  * **Does not support App Store Connect API (CI).**
  */
-async function createPushKeyAsync(authCtx, name = `Expo Push Notifications Key ${(0, dateformat_1.default)('yyyymmddHHMMss')}`) {
+async function createPushKeyAsync(userAuthCtx, name = `Expo Push Notifications Key ${(0, dateformat_1.default)('yyyymmddHHMMss')}`) {
     var _a;
     const spinner = (0, ora_1.ora)(`Creating Apple push key`).start();
     try {
-        const context = (0, authenticate_1.getRequestContext)(authCtx);
+        const context = (0, authenticate_1.getRequestContext)(userAuthCtx);
         const key = await apple_utils_1.Keys.createKeyAsync(context, { name, isApns: true });
         const apnsKeyP8 = await apple_utils_1.Keys.downloadKeyAsync(context, { id: key.id });
         spinner.succeed(`Created Apple push key`);
         return {
             apnsKeyId: key.id,
             apnsKeyP8,
-            teamId: authCtx.team.id,
-            teamName: authCtx.team.name,
+            teamId: userAuthCtx.team.id,
+            teamName: userAuthCtx.team.name,
         };
     }
     catch (err) {
@@ -66,11 +66,11 @@ exports.createPushKeyAsync = createPushKeyAsync;
  * Revoke an existing push key on Apple servers.
  * **Does not support App Store Connect API (CI).**
  */
-async function revokePushKeyAsync(authCtx, ids) {
+async function revokePushKeyAsync(userAuthCtx, ids) {
     const name = `Apple push key${(ids === null || ids === void 0 ? void 0 : ids.length) === 1 ? '' : 's'}`;
     const spinner = (0, ora_1.ora)(`Revoking ${name}`).start();
     try {
-        const context = (0, authenticate_1.getRequestContext)(authCtx);
+        const context = (0, authenticate_1.getRequestContext)(userAuthCtx);
         await Promise.all(ids.map(id => apple_utils_1.Keys.revokeKeyAsync(context, { id })));
         spinner.succeed(`Revoked ${name}`);
     }

package/build/credentials/ios/appstore/resolveCredentials.d.ts

@@ -1,11 +1,20 @@
 /// <reference types="@expo/apple-utils/ts-declarations/expo__app-store" />
 import { Auth } from '@expo/apple-utils';
+import { MinimalAscApiKey } from '../credentials';
+import { AppleTeamType, Team } from './authenticateTypes';
 /**
  * Get the username and possibly the password from the environment variables or the supplied options.
  * Password is optional because it's only needed for authentication, but not for re-authentication.
  *
  * @param options
  */
-export declare function resolveCredentialsAsync(options: Partial<Auth.UserCredentials>): Promise<Partial<Auth.UserCredentials>>;
+export declare function resolveUserCredentialsAsync(options: Partial<Auth.UserCredentials>): Promise<Partial<Auth.UserCredentials>>;
+export declare function hasAscEnvVars(): boolean;
+export declare function resolveAscApiKeyAsync(ascApiKey?: MinimalAscApiKey): Promise<MinimalAscApiKey>;
+export declare function resolveAppleTeamAsync(options?: {
+    teamId?: string;
+    teamName?: string;
+    teamType?: AppleTeamType;
+}): Promise<Team>;
 export declare function promptPasswordAsync({ username, }: Pick<Auth.UserCredentials, 'username'>): Promise<string>;
 export declare function deletePasswordAsync({ username, }: Pick<Auth.UserCredentials, 'username'>): Promise<boolean>;

package/build/credentials/ios/appstore/resolveCredentials.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.deletePasswordAsync = exports.promptPasswordAsync = exports.resolveCredentialsAsync = void 0;
+exports.deletePasswordAsync = exports.promptPasswordAsync = exports.resolveAppleTeamAsync = exports.resolveAscApiKeyAsync = exports.hasAscEnvVars = exports.resolveUserCredentialsAsync = void 0;
 const tslib_1 = require("tslib");
 const apple_utils_1 = require("@expo/apple-utils");
 const chalk_1 = tslib_1.__importDefault(require("chalk"));
@@ -8,6 +8,7 @@ const fs = tslib_1.__importStar(require("fs-extra"));
 const wrap_ansi_1 = tslib_1.__importDefault(require("wrap-ansi"));
 const log_1 = tslib_1.__importStar(require("../../../log"));
 const prompts_1 = require("../../../prompts");
+const authenticateTypes_1 = require("./authenticateTypes");
 const Keychain = tslib_1.__importStar(require("./keychain"));
 /**
  * Get the username and possibly the password from the environment variables or the supplied options.
@@ -15,14 +16,135 @@ const Keychain = tslib_1.__importStar(require("./keychain"));
  *
  * @param options
  */
-async function resolveCredentialsAsync(options) {
+async function resolveUserCredentialsAsync(options) {
     const credentials = getAppleIdFromEnvironmentOrOptions(options);
     if (!credentials.username) {
         credentials.username = await promptUsernameAsync();
     }
     return credentials;
 }
-exports.resolveCredentialsAsync = resolveCredentialsAsync;
+exports.resolveUserCredentialsAsync = resolveUserCredentialsAsync;
+function hasAscEnvVars() {
+    return (!!process.env.EXPO_ASC_API_KEY_PATH ||
+        !!process.env.EXPO_ASC_KEY_ID ||
+        !!process.env.EXPO_ASC_ISSUER_ID);
+}
+exports.hasAscEnvVars = hasAscEnvVars;
+async function resolveAscApiKeyAsync(ascApiKey) {
+    const passedKeyP8 = await getAscKeyP8FromEnvironmentOrOptionsAsync(ascApiKey);
+    const passedKeyId = await getAscKeyIdFromEnvironmentOrOptionsAsync(ascApiKey);
+    const passedIssuerId = await getAscIssuerIdFromEnvironmentOrOptionsAsync(ascApiKey);
+    return {
+        keyP8: passedKeyP8,
+        keyId: passedKeyId,
+        issuerId: passedIssuerId,
+    };
+}
+exports.resolveAscApiKeyAsync = resolveAscApiKeyAsync;
+async function getAscKeyP8FromEnvironmentOrOptionsAsync(ascApiKey) {
+    if (ascApiKey === null || ascApiKey === void 0 ? void 0 : ascApiKey.keyP8) {
+        return ascApiKey === null || ascApiKey === void 0 ? void 0 : ascApiKey.keyP8;
+    }
+    else if (process.env.EXPO_ASC_API_KEY_PATH) {
+        return await fs.readFile(process.env.EXPO_ASC_API_KEY_PATH, 'utf-8');
+    }
+    const { ascApiKeyPath } = await (0, prompts_1.promptAsync)({
+        type: 'text',
+        name: 'ascApiKeyPath',
+        message: `Path to ASC Api Key Path (.p8):`,
+        validate: (val) => val !== '',
+    });
+    return await fs.readFile(ascApiKeyPath, 'utf-8');
+}
+async function getAscKeyIdFromEnvironmentOrOptionsAsync(ascApiKey) {
+    if (ascApiKey === null || ascApiKey === void 0 ? void 0 : ascApiKey.keyId) {
+        return ascApiKey === null || ascApiKey === void 0 ? void 0 : ascApiKey.keyId;
+    }
+    else if (process.env.EXPO_ASC_KEY_ID) {
+        return process.env.EXPO_ASC_KEY_ID;
+    }
+    const { ascApiKeyId } = await (0, prompts_1.promptAsync)({
+        type: 'text',
+        name: 'ascApiKeyId',
+        message: `ASC Api Key ID:`,
+        validate: (val) => val !== '',
+    });
+    return ascApiKeyId;
+}
+async function getAscIssuerIdFromEnvironmentOrOptionsAsync(ascApiKey) {
+    if (ascApiKey === null || ascApiKey === void 0 ? void 0 : ascApiKey.issuerId) {
+        return ascApiKey === null || ascApiKey === void 0 ? void 0 : ascApiKey.issuerId;
+    }
+    else if (process.env.EXPO_ASC_ISSUER_ID) {
+        return process.env.EXPO_ASC_ISSUER_ID;
+    }
+    const { ascIssuerId } = await (0, prompts_1.promptAsync)({
+        type: 'text',
+        name: 'ascIssuerId',
+        message: `ASC Issuer ID:`,
+        validate: (val) => val !== '',
+    });
+    return ascIssuerId;
+}
+function isAppleTeamType(maybeTeamType) {
+    return maybeTeamType in authenticateTypes_1.AppleTeamType;
+}
+function assertAppleTeamType(maybeTeamType) {
+    if (!isAppleTeamType(maybeTeamType)) {
+        throw new Error(`Invalid Apple Team Type: ${maybeTeamType}. Must be one of ${Object.keys(authenticateTypes_1.AppleTeamType).join(', ')}`);
+    }
+    return maybeTeamType;
+}
+function resolveAppleTeamTypeFromEnvironment() {
+    if (!process.env.EXPO_APPLE_TEAM_TYPE) {
+        return undefined;
+    }
+    return assertAppleTeamType(process.env.EXPO_APPLE_TEAM_TYPE);
+}
+async function getAppleTeamIdFromEnvironmentOrOptionsAsync(options) {
+    if (options.teamId) {
+        return options.teamId;
+    }
+    else if (process.env.EXPO_APPLE_TEAM_ID) {
+        return process.env.EXPO_APPLE_TEAM_ID;
+    }
+    const { appleTeamId } = await (0, prompts_1.promptAsync)({
+        type: 'text',
+        name: 'appleTeamId',
+        message: `Apple Team ID:`,
+        validate: (val) => val !== '',
+    });
+    return appleTeamId;
+}
+async function getAppleTeamTypeFromEnvironmentOrOptionsAsync(options) {
+    if (options.teamType) {
+        return options.teamType;
+    }
+    const appleTeamTypeFromEnvironment = resolveAppleTeamTypeFromEnvironment();
+    if (appleTeamTypeFromEnvironment) {
+        return appleTeamTypeFromEnvironment;
+    }
+    const { appleTeamType } = await (0, prompts_1.promptAsync)({
+        type: 'select',
+        message: 'Select your Apple Team Type:',
+        name: 'appleTeamType',
+        choices: [
+            { title: 'Enterprise', value: authenticateTypes_1.AppleTeamType.IN_HOUSE },
+            { title: 'Company/Organization', value: authenticateTypes_1.AppleTeamType.COMPANY_OR_ORGANIZATION },
+            { title: 'Individual', value: authenticateTypes_1.AppleTeamType.INDIVIDUAL },
+        ],
+    });
+    return appleTeamType;
+}
+async function resolveAppleTeamAsync(options = {}) {
+    const passedTeamType = await getAppleTeamTypeFromEnvironmentOrOptionsAsync(options);
+    return {
+        id: await getAppleTeamIdFromEnvironmentOrOptionsAsync(options),
+        name: options.teamName,
+        inHouse: passedTeamType === authenticateTypes_1.AppleTeamType.IN_HOUSE,
+    };
+}
+exports.resolveAppleTeamAsync = resolveAppleTeamAsync;
 function getAppleIdFromEnvironmentOrOptions({ username, password, ...userCredentials }) {
     const passedAppleId = username || process.env.EXPO_APPLE_ID;
     // Only resolve the password if the username was provided.