{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 不美不萌又怎样 的问题《-allowProvisioningUpdates doesn't work》','https://www.manongdao.com/q-498665.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
We are using Jenkins for Continiuous Integration. Everything we need to do in order to compile our app is done via commandline (bash script), because we have several machines where the build has be done without any human access to the devices.
As you can imagine I was very happy to see the new xcodebuild feature flag -allowProvisioningUpdates in XCode9.
I understand, that I need to add the credentials of our Apple ID into the XCode settings.
The credentials are adde to the XCode account tab in Preferences, but when I try to compile using "xcodebuild ... -allowProvisioningUpdates" the following error message appears:
2017-09-19 09:47:59.692 xcodebuild[74979:3824315] DVTAssertions: Warning in /Library/Caches/com.apple.xbs/Sources/DVTFrameworks/DVTFrameworks-13231/DVTFoundation/Portal/DVTDeveloperAccountCredentialsManager.m:38
Details: Unable to find default keychain.
Object: <DVTDeveloperAccountCredentialsManager>
Method: +defaultAccountCredentialsManager
Thread: <NSThread: 0x7fe17860aa40>{number = 4, name = (null)}
Please file a bug at http:/
2017-09-19 09:47:59.792 xcodebuild[74979:3824308] [MT] IDEDistribution: Step failed: <IDEDistributionSigningAssetsStep: 0x7fe17d45cf20>: Error Domain=IDEDistributionSigningAssetStepErrorDomain Code=0 "Locating signing assets failed." UserInfo={NSLocalizedDescription=Locating signing assets failed., IDEDistributionSigningAssetStepUnderlyingErrors=(
"Error Domain=DVTServicesSessionErrorDomain Code=0 \"Unable to log in with account 'xxx@yyy.com'.\" UserInfo={NSLocalizedFailureReason=Unable to log in with account 'xxx@yyy.com'., NSLocalizedRecoverySuggestion=The login details for account 'xxx@yyy.com' were rejected., DVTDeveloperAccountErrorAccount=<DVTAppleIDBasedDeveloperAccount 0x7fe179b016c0: username: xxx@yyy.com>, NSUnderlyingError=0x7fe179e8ee60 {Error Domain=DVTDeveloperAccountErrorDomain Code=4 \"xxx@yyy.com could not sign in.\" UserInfo={NSLocalizedRecoverySuggestion=Cannot sign in to this account. Try signing into it again in the Accounts preference pane., NSLocalizedDescription=xxx@yyy.com could not sign in., DVTDeveloperAccountErrorAccount=<DVTAppleIDBasedDeveloperAccount 0x7fe179b016c0: username: xxx@yyy.com>}}}",
"Error Domain=IDEProfileLocatorErrorDomain Code=1 \"No profiles for 'com.yyy.CITestProject' were found\" UserInfo={NSLocalizedDescription=No profiles for 'com.yyy.CITestProject' were found, NSLocalizedRecoverySuggestion=Xcode couldn't find any iOS App Store provisioning profiles matching 'com.yyy.CITestProject'.}"
)}
error: exportArchive: The operation couldn’t be completed. Unable to log in with account 'xxx@yyy.com'.
Does someone know how to fix this problem?
update: We use this plugin to start ssh sessions to our Jenkins slaves in order to do the buildjob: https://wiki.jenkins.io/display/JENKINS/SSH+Slaves+plugin
This -allowProvisioningUpdates worked for me in Xcode 9 final release.
Verify You Can Build an auto-signing Xcode Project Using Xcode IDE
Close Xcode and Build project using xcodebuild with options -allowProvisioningUpdates
Now Jenkins command line builds should work.
When you're dealing with Xcode errors over SSH, it's usually best to try out the same commands using the GUI. It will often show you which keychain entries it's trying to access.
In my case, it prompted me to allow xcodebuild access to
Xcode-AlternateDSIDandXcode-Tokenin my keychain. I granted it access with "Always Allow". You could also edit those entries in Keychain Access and allow all applications to access them, if you're not too worried about security.I was already running
security unlock-keychain -p mypassword /Users/myuser/Library/Keychains/login.keychain-dbbefore running xcodebuild, so that's probably also necessary.After doing that, the export worked.
Xcode saves the credentials in the default keychain. In order for it to access it over ssh, you first need to unlock that keychain:
/usr/bin/security unlock-keychain /Users/xxx/Library/Keychains/login.keychain-dbWhen using jenkins, you need to unlock the keychain either inside your build jobs or when starting the agent. You could for example add it to
/Library/Application Support/Jenkins/jenkins-slave-runner.sh.The answer from "Ed of the Montain" only works, because xcodebuild checks the
/Library/MobileDevice/ProvisioningProfiles(and other) directories for valid profiles, if it finds one, then the-allowProvisioningUpdatesoption simply uses this profile and doesn't need the login.I have the same problem. I reported the bug to Apple, to no avail. To move forward with Xcode 9, I switched to manual signing for Jenkins only. (Developers still use automatic signing.)
I used to have the same issue after recent update from XCode 7.x to 9.3 version.
The solution for me was an parameter -allowProvisioningDeviceRegistration in addition to -allowProvisioningUpdates for xcodebuilder:
Works perfectly with Jenkins.