269 строки
8.3 KiB
YAML
269 строки
8.3 KiB
YAML
variables:
|
|
- name: DefaultBuildPlatform
|
|
value: 'any cpu'
|
|
- name: ApkName
|
|
value: AndroidControlGallery.AndroidControlGallery.apk
|
|
- name: SolutionFile
|
|
value: Xamarin.Forms.sln
|
|
- name: BuildVersion
|
|
value: $[counter('nuget-counter', 126)]
|
|
- name: NUGET_VERSION
|
|
value: 5.6.0
|
|
- name: DOTNET_SKIP_FIRST_TIME_EXPERIENCE
|
|
value: true
|
|
- name: DOTNET_VERSION
|
|
value: 3.1.301
|
|
|
|
resources:
|
|
repositories:
|
|
- repository: xamarin-templates
|
|
type: github
|
|
name: xamarin/yaml-templates
|
|
endpoint: xamarin
|
|
ref: refs/heads/main # still defaults to master even though main is the main branch
|
|
|
|
trigger:
|
|
branches:
|
|
include:
|
|
- main
|
|
- 3.*
|
|
- 4.*
|
|
- 5.*
|
|
tags:
|
|
include:
|
|
- '*'
|
|
paths:
|
|
exclude:
|
|
- README.md
|
|
|
|
pr:
|
|
autoCancel: false
|
|
branches:
|
|
include:
|
|
- main
|
|
- 3.*
|
|
- 4.*
|
|
- 5.*
|
|
|
|
schedules:
|
|
- cron: "0 0 * * *"
|
|
displayName: Daily midnight build
|
|
branches:
|
|
include:
|
|
- main
|
|
|
|
stages:
|
|
- stage: windows
|
|
displayName: Build Windows
|
|
jobs:
|
|
- job: win_hosted
|
|
condition: eq(variables['vs2019VmPool'], 'Azure Pipelines')
|
|
workspace:
|
|
clean: all
|
|
displayName: Build Windows Phase
|
|
timeoutInMinutes: 60
|
|
pool:
|
|
name: $(vs2019VmPool)
|
|
vmImage: $(vs2019VmImage)
|
|
demands:
|
|
msbuild
|
|
strategy:
|
|
matrix:
|
|
debug:
|
|
BuildConfiguration: 'Debug'
|
|
release:
|
|
BuildConfiguration: 'Release'
|
|
steps:
|
|
- template: build/steps/build-windows.yml
|
|
parameters:
|
|
provisionatorPath : 'build/provisioning/provisioning.csx'
|
|
|
|
- job: nuget_pack_hosted
|
|
workspace:
|
|
clean: all
|
|
displayName: Nuget Phase
|
|
dependsOn:
|
|
- win_hosted
|
|
condition: succeeded()
|
|
pool:
|
|
name: $(vs2019VmPool)
|
|
vmImage: $(vs2019VmImage)
|
|
demands:
|
|
msbuild
|
|
variables:
|
|
FormsIdAppend: ''
|
|
buildConfiguration: $(DefaultBuildConfiguration)
|
|
nugetPackageVersion : $[ dependencies.win_hosted.outputs['debug.winbuild.xamarinformspackageversion'] ]
|
|
steps:
|
|
- template: build/steps/build-nuget.yml
|
|
- job: win_bots
|
|
condition: ne(variables['vs2019VmPool'], 'Azure Pipelines')
|
|
workspace:
|
|
clean: all
|
|
displayName: Build Windows Phase Bots
|
|
timeoutInMinutes: 60
|
|
pool:
|
|
name: $(vs2019VmPool)
|
|
vmImage: $(vs2019VmImage)
|
|
demands:
|
|
- Agent.OS -equals Windows_NT
|
|
- msbuild
|
|
strategy:
|
|
matrix:
|
|
debug:
|
|
BuildConfiguration: 'Debug'
|
|
release:
|
|
BuildConfiguration: 'Release'
|
|
steps:
|
|
- template: build/steps/build-windows.yml
|
|
parameters:
|
|
provisionatorPath : 'build/provisioning/provisioning.csx'
|
|
- job: nuget_pack_bots
|
|
workspace:
|
|
clean: all
|
|
displayName: Nuget Phase
|
|
dependsOn:
|
|
- win_bots
|
|
condition: succeeded()
|
|
pool:
|
|
name: $(vs2019VmPool)
|
|
vmImage: $(vs2019VmImage)
|
|
demands:
|
|
- Agent.OS -equals Windows_NT
|
|
- msbuild
|
|
variables:
|
|
FormsIdAppend: ''
|
|
buildConfiguration: $(DefaultBuildConfiguration)
|
|
nugetPackageVersion : $[ dependencies.win_bots.outputs['debug.winbuild.xamarinformspackageversion'] ]
|
|
steps:
|
|
- template: build/steps/build-nuget.yml
|
|
|
|
- stage: android
|
|
displayName: Build Android
|
|
${{ if eq(variables['System.TeamProject'], 'devdiv') }}:
|
|
dependsOn: windows
|
|
${{ if eq(variables['System.TeamProject'], 'public') }}:
|
|
dependsOn: []
|
|
jobs:
|
|
- template: build/steps/build-android.yml
|
|
parameters:
|
|
vmPool: $[coalesce(variables.macAndroid2019VmPool, 'Azure Pipelines')]
|
|
vmImage: $[coalesce(variables.macAndroid2019VmImage, 'macOS-10.15')]
|
|
provisionatorPath : 'build/provisioning/provisioning.csx'
|
|
buildConfiguration: $(DefaultBuildConfiguration)
|
|
${{ if ne(variables['MSBuildArguments_cg_android'], '') }}:
|
|
MSBuildArguments_cg_android: $(MSBuildArguments_cg_android)
|
|
|
|
- stage: build_osx
|
|
displayName: Build OSX
|
|
${{ if eq(variables['System.TeamProject'], 'devdiv') }}:
|
|
dependsOn: windows
|
|
${{ if eq(variables['System.TeamProject'], 'public') }}:
|
|
dependsOn: []
|
|
jobs:
|
|
- job: osx
|
|
workspace:
|
|
clean: all
|
|
displayName: OSX Phase
|
|
timeoutInMinutes: 120
|
|
pool:
|
|
name: $(osx2019VmPool)
|
|
vmImage: $(macOSXVmImage)
|
|
demands:
|
|
- sh
|
|
- Xamarin.iOS
|
|
variables:
|
|
provisionator.osxPath : 'build/provisioning/provisioning.csx'
|
|
buildConfiguration: $(DefaultBuildConfiguration)
|
|
iOSCertSecureFileName: 'Xamarin Forms iOS Certificate.p12'
|
|
iOSProvisioningSecureFileName: 'Xamarin Forms iOS Provisioning.mobileprovision'
|
|
steps:
|
|
- template: build/steps/build-osx.yml
|
|
|
|
- stage: PoliCheck
|
|
displayName: 'Code Analysis'
|
|
dependsOn: windows
|
|
jobs:
|
|
- job: run_poli_check
|
|
displayName: 'Policheck And Credentials Compliance'
|
|
pool:
|
|
name: $(vs2019VmPool)
|
|
vmImage: $(vs2019VmImage)
|
|
timeoutInMinutes: 60
|
|
cancelTimeoutInMinutes: 5
|
|
steps:
|
|
- checkout: self
|
|
|
|
- template: security/policheck/v1.yml@xamarin-templates
|
|
|
|
- template: security/credscan/v2.yml@xamarin-templates
|
|
parameters:
|
|
suppressionsFile: $(System.DefaultWorkingDirectory)\build\automation\CredScanSuppressions.json
|
|
|
|
- task: securedevelopmentteam.vss-secure-development-tools.build-task-antimalware.AntiMalware@3
|
|
displayName: Run AntiMalware (Defender) Scan
|
|
inputs:
|
|
FileDirPath: $(System.DefaultWorkingDirectory)
|
|
EnableServices: true
|
|
condition: succeededOrFailed()
|
|
|
|
- task: securedevelopmentteam.vss-secure-development-tools.build-task-report.SdtReport@1
|
|
displayName: Create Security Analysis Report
|
|
inputs:
|
|
CredScan: true
|
|
PoliCheck: true
|
|
condition: succeededOrFailed()
|
|
|
|
- task: securedevelopmentteam.vss-secure-development-tools.build-task-publishsecurityanalysislogs.PublishSecurityAnalysisLogs@2
|
|
displayName: Publish Security Analysis Logs
|
|
inputs:
|
|
ArtifactName: CodeAnalysisLogs
|
|
condition: succeededOrFailed()
|
|
|
|
- task: securedevelopmentteam.vss-secure-development-tools.build-task-postanalysis.PostAnalysis@1
|
|
displayName: Fail Job if Security Issues are Detected
|
|
inputs:
|
|
CredScan: true
|
|
PoliCheck: true
|
|
condition: succeededOrFailed()
|
|
|
|
# - job: api_scan
|
|
# displayName: APIScan Compliance
|
|
# pool:
|
|
# name: $(corpVmImage)
|
|
# steps:
|
|
# - checkout: none
|
|
# clean: true
|
|
|
|
# - task: DownloadBuildArtifacts@0
|
|
# displayName: 'Download build artifact win_build'
|
|
# inputs:
|
|
# artifactName: win_build
|
|
# downloadPath: $(Build.StagingDirectory)
|
|
|
|
# - task: securedevelopmentteam.vss-secure-development-tools.build-task-apiscan.APIScan@2
|
|
# displayName: 'Run APIScan'
|
|
# inputs:
|
|
# softwareFolder: '$(Build.StagingDirectory)\win_build'
|
|
# softwareName: Xamarin.Forms
|
|
# softwareVersionNum: $(Build.BuildNumber)
|
|
# isLargeApp: false
|
|
|
|
# only sign using the private server and not sigining Maui for now
|
|
- ${{ if and(eq(variables['System.TeamProject'], 'devdiv'), ne(variables['System.DefinitionId'], '13330')) }}:
|
|
- stage: nuget_signing
|
|
dependsOn: windows
|
|
displayName: Sign Nuget
|
|
jobs:
|
|
- job: nuget_sign
|
|
displayName: Sign Phase
|
|
pool:
|
|
name: $(signVmImage)
|
|
demands:
|
|
msbuild
|
|
steps:
|
|
- template: build/steps/build-sign.yml
|
|
condition: and(succeeded(), ne(variables['signVmImage'], ''), or(eq(variables['Sign'], 'true'), or(eq(variables['Build.SourceBranch'], 'refs/heads/main'), startsWith(variables['Build.SourceBranch'],'refs/tags/'))))
|
|
|
|
|