Adopting Fastlane for automating our daily iOS developements tasks

Posted by on May 4, 2016

fastlane_logo

 

For those who don’t know:  Fastlane is the Holy Grail (the one that Indiana Jones was really looking for, if only he had been an iOS programmer)

Fastlane helps you automate every aspect of your release to the App Store.

It allows coders to deploy app updates from any computer, set up and submit apps more easily, and automate the use of the standard commands required for app revision and testing.

We can even add components on top of Fastlane itself — the tools support customized, user-built actions to extend their functionality.

But what exactly are the usual steps around iOS development and releases to the App Store ?

Current steps (of course can vary):

  • Pull changes from remote repository
  • Run tests (including UI testing) (if got lucky there is nothing to fix)
  • Increment build number (and version number if required)
  • Check provisioning profiles and certificates for code signing (Freddy Krueger was the creator of all this process for sure!)
  • Build new binary version
  • Generate release notes for every supported localisation
  • Take screenshots for every device and every supported localisation
  • Prepare new version on iTunes Connect (and TestFlight)
  • Upload binary to iTunes Connect
  • Share with testers
  • Upload binary to Crashlytics Beta
  • Share with testers
  • Push changes to remote repository

😩

That is a lot to handle in one day!

Because just taking into account the binary build time plus iTunes related stuff time…. got and get your bag to sleep at the office.

Of course, the duration can be different depending on some miracles (cof cof #iosprocessingtime).

So publishing a new version to iTunes App Store is very awkward and time consuming.

But, no more!

Now with a single command:

I do all these steps:

  • Increment project build number
  • Download up-to date provisioning profiles for code signing
  • Build/Archive the app using the correct scheme (QuitNow or QuitNow Pro)
  • Notify to channels (cli, slack, mac os x notification center)
  • Upload a perfectly signed binary to TestFlight/Crashlytics for Beta testers to try

And i just need to use my time in another task while Fastlane save me 30 minutes.

Screen Shot 2016-04-27 at 14.57.21

The last step: “notification” , puts a message at the console and also at the notification center…. a reminder like:

Screen Shot 2016-04-28 at 10.27.45 Fastlane pilot_free task looks like this:

You can improve the process to fit your needs, including running test, syncing changes from remote repositories and much more.

You can even make it to work only on specific git branches and only if they are not dirty. And you can commit changes at the end, like committing the new build number bump and push it to the remote repository.

Lets see our lane for releasing a new version to iTunes:

Another automation example: Generate APNS Certificates containers for your server (PUSH notifications related)

Btw, this post is approved by Felipe

felipe-quitnow

Authentication Challenge with multiple in-house certificate authorities in iOS with Swift

Posted by on March 28, 2016

In one of my recent projects there was a requirement for a certificate and public key pinning. The API performs its operation from servers with certificates signed by an in-house certificate authority (self-signed too of course).

But there are mulitple CA, and clients servers can have different CA, so a hard-coding approach was not the best. So the idea is to validate the certificate to ensure that is was signed by any of the provided trusted CA.

In this example we are going to implement the protocol NSURLSessionDelegate specifically the function which handles server certificate validation

So lets see the code


public func URLSession(session: NSURLSession, didReceiveChallenge challenge: NSURLAuthenticationChallenge, completionHandler: (NSURLSessionAuthChallengeDisposition, NSURLCredential?) -> Void) {
        
        if challenge.protectionSpace.authenticationMethod == NSURLAuthenticationMethodServerTrust {

            let trust = challenge.protectionSpace.serverTrust
                        
            let rootCaCerts = self.rootCACertificatesData.map() {
                (data) -> CFData? in
                return CFDataCreate(kCFAllocatorDefault, UnsafePointer(data.bytes), data.length)
                }.filter({$0 != nil}).map() { ref -> CFTypeRef in
                    return SecCertificateCreateWithData(kCFAllocatorDefault, ref!)!
            }
            
            let certArrayRef : CFArrayRef = CFBridgingRetain(rootCaCerts as NSArray) as! CFArrayRef
            
            SecTrustSetAnchorCertificates(trust!, certArrayRef)
            SecTrustSetAnchorCertificatesOnly(trust!, true) // if "true" then also allows certificates signed with one of the system available root certificates.
            
            var trustResult: SecTrustResultType = 0
            SecTrustEvaluate(trust!, &trustResult)
             
            if (Int(trustResult) == kSecTrustResultUnspecified ||
                Int(trustResult) == kSecTrustResultProceed) {
                    //Trust the server certificate cause its signed with one of the allowed in-house CA
                    let credential = NSURLCredential(forTrust: challenge.protectionSpace.serverTrust!)
                    challenge.sender!.useCredential(credential, forAuthenticationChallenge: challenge)
                    completionHandler(NSURLSessionAuthChallengeDisposition.UseCredential, credential)
            } else {
                print("Invalid server certificate.") //this also happens with expired certificates
                challenge.sender!.cancelAuthenticationChallenge(challenge)
                completionHandler(NSURLSessionAuthChallengeDisposition.CancelAuthenticationChallenge, nil)
            }

        } else {
            print("Unexpected authentication method");
            challenge.sender!.cancelAuthenticationChallenge(challenge)
            completionHandler(NSURLSessionAuthChallengeDisposition.CancelAuthenticationChallenge, nil)
        }

    }

So, trust or die xD

rootCACertificatesData its an NSData array with the CA certificates file content …. DER encoded certificates added to the project.

So insted of a list with files names, lets find all the “DER” files and load them into an array:


	let enumerator = NSFileManager.defaultManager().enumeratorAtPath(NSBundle.mainBundle().bundlePath)
    while let filePath = enumerator?.nextObject() as? String {
    	if NSURL(fileURLWithPath: filePath).pathExtension == "der" {
        	if let data = NSData(contentsOfURL:(NSBundle.mainBundle().bundleURL.URLByAppendingPathComponent(filePath))) {
            	self.rootCaFiles.append(data)
            }
        }
    }

New Job and a time for a career reinvention

Posted by on August 30, 2015

Hello everyone,

I know this is not usual post but i want to let you know something very exiting (for me):

I got a new job!

With more than 8 years working in the Hospitality Industry and in the same company as a Software Engineer i thought it was the time for a career change.

Time for new projects and new challenges.

I have been involved in numerous large-scale software releases providing me with a good hands-on experience creating and implementing software achitectures, also the ability to troubleshoot and solve problems in a timely and accurate manner.

As a software engineer, and more recently,

I have:

  • Build enterprise backend services/architecture for high load, high traffic, high availability processes for the Hospitality-Tourism industry, to help Individual and Chains of Properties(Hotels,Restaurants,SPAs,etc) to sell their inventory almost in “real time”, including their rates, enhancements,services, packages, promotions and deals through existing channels.

  • Build a distributed client-server architecture for an Auto-Trade, a Trading system on top of the Award Winning Platform Ninja Trader.

  • Build mobile software for the majors platforms: Android, IOs, Window Phone and HTML5 webapps.

I think that i’m well-seasoned about services/architecture for high load, high traffic, high availability processes (that’s my main area of interest).

So, i have a lot of confidence about my skills on this industry(Hospitality),

But after that long time, and with the job change desicion in mind, some “fears” appeared.

You might not call it fear. But let’s face it. That’s what stops us from making the move out of a “miserable” job, or starting over in a new field no matter how right the time is to do just that.

It’s paralyzing

Some of those fears are:

  • Fear of the unknown
  • Fear of failure
  • Fear of not complying with other people’s expectations
  • Fear of making a bad career change choice
  • Fear of economic stability (having a family to maintain puts more preasure ¬¬)

To be honest.

Right now, i’m a full time Java Enterprise Application Developer.

My job, almost all consist in developing backend services, and

I’m switching to a Mobile career.

Yes, i will continue as a Software Engineer, but on the Mobile side mainly, developing apps and mobile services for Android, iOS, Windows Phone and others.

Rigth time

I don’t know about the future, but i think is and they got me in the rigth time.

Yes, i’m switching, i’m giving my career and oportunity.

I’m really excited about this new job i think is a great opportunity.

I am going into a new adventure with the guys at http://fewlaps.com/.

They convinced me with : “Come with us and you will be happy”.

The guys at Fewlaps are Master Craftsmen in the development of mobile applications.

I am very happy to become a part of the company and i will work for a great development with my complete knowledge and skills.

Some shit for your javascript: The Module Pattern

Posted by on July 18, 2015

The Module Pattern was originally defined as a way to have software modules in a programming language with incomplete direct support for the concept.

This pattern in JavaScript is used to mimic the classes concept and focuses on public and private encapsulation in such a way that we’re able to include both public/private methods and variables inside a single object.

The Module Pattern is, the most commonly used design pattern and widely accepted, you can find it in a number of large projects such as jQuery, Dojo, ExtJS, AngularJS and YUI.

To implement this pattern we will use another one know as the Immediately-invoked function expression

What? Well, this one:

(function () {
  // the code here is executed once in its own scope
})();

It declares a function, which then calls itself immediately.

So, lets watch a sample of the Module pattern:

var MyFancyModule = (function () {

  var privateMethodOne 		= function () {};
  var privateMethodTwo 		= function () {};
  var privateMethodThree 	= function () {};
  
  return {
    publicMethodOne: function () {
      // You can call `privateMethodX()` you know...
    },
    publicMethodtwo: function () {

    },
    publicMethodThree: function () {

    }
  };

})();

Now you can get an idea on how to organize your shitty code.

The Python Tutorial 2.7 - unofficial book now available

Posted by on July 7, 2015

Python is a programming language that lets you work more quickly and integrate your systems more effectively. You can learn to use Python and see almost immediate gains in productivity and lower maintenance costs.

The Python Tutorial 2.7 - unofficial is based on a work available at https://docs.python.org/2/tutorial/index.html

This book is just a compilation and the purpose is to provide the Python documentation in multiple formats, because the web is not the only place for reading xD

This release includes three convenient formats:

  • PDF (for Mac or PC)
  • EPUB (for iPad, iPhone, and other ebook readers)
  • MOBI (for Kindle)

Now go and get your copy for free at https://leanpub.com/python-tutorial-27