Missing certificates and keys in the keychain while using Jenkins/Hudson as Continuous Integration for iOS and Mac development

by

I have found a solution giving me access to the regular keychains for my Jenkins user.

Find this plist: /Library/LaunchDaemons/org.jenkins-ci.plist then:

  • Add the UserName element with a value of jenkins.
  • Add a SessionCreate element with a value true to the plist file. This gives access to the normal keychains for the user you specified in UserName

Example:

<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
    <key>EnvironmentVariables</key>
    <dict>
        <key>JENKINS_HOME</key>
        <string>/Users/Shared/Jenkins/Home</string>
    </dict>
    <key>GroupName</key>
    <string>wheel</string>
    <key>KeepAlive</key>
    <true/>
    <key>Label</key>
    <string>org.jenkins-ci</string>
    <key>ProgramArguments</key>
    <array>
        <string>/bin/bash</string>
        <string>/Library/Application Support/Jenkins/jenkins-runner.sh</string>
    </array>
    <key>RunAtLoad</key>
    <true/>
    <key>UserName</key>
    <string>jenkins</string>
    <key>SessionCreate</key>
    <true/>
</dict>
</plist>

Then restart the daemon and try running a job in Jenkins that calls security list-keychains. You should no longer see System.keychain as the only entry but the regular login and any custom key chains you might have added to the list of keychains for the “jenkins” user.

With the above setup I am able to use codesigning certificates from a custom keychain on my Jenkins build server. I don’t have to install any certificates or keys in my System keychain.

More Related Contents:

  1. iOS: How to store username/password within an app?
  2. This certificate has an invalid issuer Apple Push Services
  3. Delete keychain items when an app is uninstalled
  4. How to run an iOS app that causes runtime error for frameworks “code signature invalid”
  5. security / codesign in Sierra: Keychain ignores access control settings and UI-prompts for permission
  6. Enumerate all Keychain items in my iOS application
  7. Will items in iOS keychain survive app uninstall and reinstall?
  8. Jenkins – Xcode build works codesign fails
  9. iOS: Pre install SSL certificate in keychain – programmatically
  10. Save and Load from KeyChain | Swift [duplicate]
  11. This certificate has an invalid issuer : Keychain marks all certificates as “Invalid Issuer” [duplicate]
  12. How to use Keychain for saving password like GenericKeychain sample code
  13. SecItemAdd and SecItemCopyMatching returns error code -34018 (errSecMissingEntitlement)
  14. missing private key in the distribution certificate on keychain
  15. How to obtain Certificate Signing Request
  16. Storing authentication tokens on iOS – NSUserDefaults vs Keychain?
  17. +entityForName: nil is not a legal NSManagedObjectContext parameter searching for entity name ‘Account”
  18. Querying iOS Keychain using Swift
  19. Running xcodebuild from a forked terminal
  20. Is there a way to remove the authorization prompt from command-line instances of Instruments (Xcode)?
  21. Distribution certificate / private key not installed
  22. What are Unwind segues for and how do you use them?
  23. Failed to instantiate the default view controller for UIMainStoryboardFile ‘Main’ – perhaps the designated entry point is not set?
  24. How to open fb and instagram app by tapping on button in Swift
  25. iOS – UIImageView – how to handle UIImage image orientation
  26. Is it possible to opt your iPad app out of multitasking on iOS 9
  27. iPhone app under test crashes after a few days
  28. Xcode 5.1: missing required architecture arm64
  29. How can I check whether dark mode is enabled in iOS/iPadOS?
  30. How does the WhatsApp web client still work with the latest iOS update (SDK version 13.0+)?

Leave a Comment