io.github.archangelx360.NotaryClientV2.kt Maven / Gradle / Ivy
package io.github.archangelx360
import com.amazonaws.auth.AWSStaticCredentialsProvider
import com.amazonaws.auth.BasicSessionCredentials
import com.amazonaws.services.s3.AmazonS3ClientBuilder
import com.amazonaws.services.s3.model.ObjectMetadata
import com.amazonaws.services.s3.model.PutObjectRequest
import com.amazonaws.services.s3.model.PutObjectResult
import io.github.archangelx360.auth.AppStoreConnectAPIKey
import io.github.archangelx360.auth.withAppleAuthentication
import io.github.archangelx360.models.*
import io.ktor.client.*
import io.ktor.client.call.*
import io.ktor.client.plugins.*
import io.ktor.client.plugins.contentnegotiation.*
import io.ktor.client.request.*
import io.ktor.http.*
import io.ktor.serialization.kotlinx.*
import io.ktor.serialization.kotlinx.json.*
import java.nio.file.Path
import kotlin.io.path.inputStream
class NotaryClientV2(
private val credentials: AppStoreConnectAPIKey,
private val baseUrl: String = "https://appstoreconnect.apple.com",
private val httpClient: HttpClient = HttpClient {
install(ContentNegotiation) {
json()
// Apple does not respect Accept header, so we work around to make Ktor still deserialize `application/octet-stream` as JSON
serialization(ContentType.Application.OctetStream, DefaultJson)
}
defaultRequest {
contentType(ContentType.Application.Json)
accept(ContentType.Application.Json)
}
},
) {
/**
* Start the process of uploading a new version of your software to the notary service.
*
* https://developer.apple.com/documentation/notaryapi/submit_software
*/
suspend fun submitSoftware(request: NewSubmissionRequest): NewSubmissionResponse {
val response = httpClient.post("$baseUrl/notary/v2/submissions") {
withAppleAuthentication(credentials)
setBody(request)
expectSuccess = true
}
return response.body()
}
/**
* Fetch a list of your team’s previous notarization submissions.
*
* https://developer.apple.com/documentation/notaryapi/get_previous_submissions
*/
suspend fun getPreviousSubmissions(): SubmissionListResponse {
val response = httpClient.get("$baseUrl/notary/v2/submissions") {
withAppleAuthentication(credentials)
expectSuccess = true
}
return response.body()
}
/**
* Upload file to Apple S3 storage.
*
* This is meant to be used after submitting a request using `submitSoftware`.
*/
fun uploadSoftware(
attributes: NewSubmissionResponse.Data.Attributes,
filepath: Path,
// The region is not given anywhere in the Apple documentation.
// Thanks to the folks that built https://github.com/indygreg/PyOxidizer, we got it's us-west-2...
s3Region: String = "us-west-2",
): PutObjectResult {
val request = PutObjectRequest(
attributes.bucket,
attributes.`object`,
filepath.inputStream(),
ObjectMetadata(),
)
val credentials = BasicSessionCredentials(
attributes.awsAccessKeyId,
attributes.awsSecretAccessKey,
attributes.awsSessionToken,
)
val s3Client = AmazonS3ClientBuilder
.standard()
.withCredentials(AWSStaticCredentialsProvider(credentials))
.withRegion(s3Region)
.build()
return s3Client.putObject(request)
}
/**
* Fetch the status of a software notarization submission.
*
* https://developer.apple.com/documentation/notaryapi/get_submission_status
*/
suspend fun getSubmissionStatus(submissionId: String): SubmissionResponse {
val response = httpClient.get("$baseUrl/notary/v2/submissions/$submissionId") {
withAppleAuthentication(credentials)
expectSuccess = true
}
return response.body()
}
/**
* Fetch details about a single completed notarization.
*
* https://developer.apple.com/documentation/notaryapi/get_submission_log
*/
suspend fun getSubmissionLog(submissionId: String): Logs {
val response = httpClient.get("$baseUrl/notary/v2/submissions/$submissionId/logs") {
withAppleAuthentication(credentials)
expectSuccess = true
}
val body = response.body()
val url = body.data?.attributes?.developerLogUrl
?: error("developerLogUrl is missing from response attribute")
val logReponse = httpClient.get(url) {
expectSuccess = true
}
return logReponse.body()
}
}