feat: auto auth (#173)

* define is dmg running

* windows compilation cfg

* import libc

* use raw ptr

* read where from attr

* resolve disk image path

* solve dependencies

* conditional tests

* macos tests

* hooks

* tests on pre commit

* error descriptions

* mount path test

* abort commit if error

* format info

* dmg check backing file

* remove redundant code

* use direct array

* use command only on macos

* auth token storage

* format

* obtain token on startup

* setup base hooks

* custom resources for windows

* zip 2.5.0 yanked https://crates.io/crates/zip/2.5.0 updating to a closest version

* auth project setup

* expose auth token;

* update lock

* add new project to bump version script

* add new project to analyzers

* change resource directory

* before build hook

* update hook

* expose logs

* script read from installer setup

* update build command

* proper stripping

* before lsdev command

* add missing comma

* update tauri config

* prebuild auto auth

* remove NSIS message boxes, proper path args propagation, version print on start, headless mode

* replace json to txt for token files

* read token

* integration test for the token from file function

* update background for dmg

* remove redundant code

* skip update if from dmg

* auto install

* macos cfg

* macos cfg results

* cfg for return

* log auto install

* adding new commands to edit dmg (#174)

* adding new commands to edit dmg

* correct tauri path

* correct tauri path

* correct create-dmg command

* correct create-dmg command

* consolidate and simplify changes

* remove background validation

* remove commented code

* correct background path and app name

* added back .app to icon name and remove drop-link

* change to brew install

---------

Co-authored-by: Nick Khalow <[email protected]>

* apply format

* initialization order

* tests for token extraction from url

* mntfrom -> mnton

* enhance error message

* remove parent call

* enhance logging

---------

Co-authored-by: Charly <[email protected]>

Author: NickKhalow

.githooks/pre-commit

@@ -0,0 +1,21 @@
+#!/bin/sh
+set -e
+
+echo "Running checks..."
+
+for dir in core src-tauri src-auto-auth; do
+  echo "Executing $dir"
+  (
+    cd "$dir"
+    echo "Format $dir"
+    cargo fmt
+    echo "Check $dir"
+    cargo check
+    echo "Clippy $dir"
+    cargo clippy --all-targets --all-features -- -D warnings
+    echo "Test $dir"
+    cargo test
+  )
+done
+
+echo "All checks passed!"

.github/workflows/release.yml

@@ -143,7 +143,7 @@ jobs:
           VITE_SENTRY_DSN: ${{ secrets.SENTRY_DSN }}
 
       - name: Import Apple Developer certificate
-        if: ${{ matrix.os == 'macos-latest' && inputs.dry-run == false }}
+        if: ${{ matrix.os == 'macos-latest' }}
         env:
           APPLE_CERTIFICATE: ${{ secrets.MACOS_CSC_LINK }}
           APPLE_CERTIFICATE_PASSWORD: ${{ secrets.MACOS_CSC_KEY_PASSWORD }}
@@ -159,7 +159,7 @@ jobs:
           security find-identity -v -p codesigning build.keychain
 
       - name: Verify Apple certificate
-        if: ${{ matrix.os == 'macos-latest' && inputs.dry-run == false }}
+        if: ${{ matrix.os == 'macos-latest' }}
         run: |
           CERT_INFO=$(security find-identity -v -p codesigning build.keychain | grep "Developer ID Application")
           CERT_ID=$(echo "$CERT_INFO" | awk -F'"' '{print $2}')
@@ -200,10 +200,19 @@ jobs:
           SIGN_SCRIPT_PATH="${GITHUB_WORKSPACE}/src-tauri/scripts/sign.ps1"
           sed -i.bak "s|\"sign.ps1\"|\"${SIGN_SCRIPT_PATH//\\/\/}\"|g" src-tauri/tauri.conf.json
 
+      - name: Prebuild AutoAuth
+        working-directory: ${{ github.workspace }}
+        if: ${{ matrix.os == 'windows-latest' }}
+        run: powershell -ExecutionPolicy Bypass -File ./pre-build-auto-auth.ps1
+
       - name: Code Analysis Core
         working-directory: ${{ github.workspace }}/core
         run: cargo clippy --all-targets --all-features -- -D warnings
 
+      - name: Code Analysis AutoAuth
+        working-directory: ${{ github.workspace }}/src-auto-auth
+        run: cargo clippy --all-targets --all-features -- -D warnings
+
       - name: Code Analysis Tauri
         working-directory: ${{ github.workspace }}/src-tauri
         run: cargo clippy --all-targets --all-features -- -D warnings
@@ -257,6 +266,99 @@ jobs:
           args: ${{ secrets.args }}
           projectPath: ${{ env.PROJECT_PATH }}
 
+      - name: Build & replace custom DMG (macOS)
+        if: ${{ matrix.os == 'macos-latest' }}
+        env:
+          APP_NAME: Decentraland
+          DMG_BACKGROUND: ${{ github.workspace }}/src-tauri/images/background.png
+          OUTDIR: src-tauri/target/custom-dmg
+          CERT_ID: ${{ env.CERT_ID }}
+          APPLE_ID: ${{ secrets.MACOS_NOTARIZATION_APPLE_ID }}
+          APPLE_PASSWORD: ${{ secrets.MACOS_NOTARIZATION_PWD }}
+          APPLE_TEAM_ID: ${{ secrets.MACOS_NOTARIZATION_TEAM_ID }}
+        run: |
+          set -euo pipefail
+
+          # --- Resolve .app bundle path ---
+          APP_PATH=$(
+            ls -1d src-tauri/target/release/bundle/macos/${APP_NAME}.app 2>/dev/null || \
+            ls -1d src-tauri/target/universal-apple-darwin/release/bundle/macos/${APP_NAME}.app 2>/dev/null || \
+            ls -1d src-tauri/target/aarch64-apple-darwin/release/bundle/macos/${APP_NAME}.app 2>/dev/null || \
+            ls -1d src-tauri/target/x86_64-apple-darwin/release/bundle/macos/${APP_NAME}.app 2>/dev/null
+          )
+          echo "APP_PATH=$APP_PATH" | tee -a "$GITHUB_ENV"
+          [[ -d "$APP_PATH" ]] || { echo "❌ .app not found"; exit 1; }
+          [[ -f "$DMG_BACKGROUND" ]] || { echo "⚠️ Missing background: $DMG_BACKGROUND"; }
+
+          # --- Ensure shell create-dmg is available ---
+          brew update
+          brew install create-dmg
+
+          # --- Prepare unique staging folder ---
+          mkdir -p "$OUTDIR"
+          TIMESTAMP=$(date +%Y%m%d-%H%M%S)
+          STAGE="$OUTDIR/dmg-src-$TIMESTAMP"
+          mkdir -p "$STAGE"
+          echo "Using staging folder: $STAGE"
+
+          # Copy only the .app into the staging folder
+          cp -R "$APP_PATH" "$STAGE/${APP_NAME}.app"
+
+          # --- Build custom DMG ---
+          DMG_NAME="${APP_NAME}-custom.dmg"
+          create-dmg \
+            --volname "Decentraland Installer" \
+            --background "$DMG_BACKGROUND" \
+            --window-pos 200 120 \
+            --window-size 600 520 \
+            --icon-size 120 \
+            --icon "${APP_NAME}.app" 300 230 \
+            --no-internet-enable \
+            --format ULFO \
+            "$OUTDIR/$DMG_NAME" \
+            "$STAGE"
+
+          NEW_DMG_PATH="$OUTDIR/$DMG_NAME"
+          echo "NEW_DMG_PATH=$NEW_DMG_PATH" | tee -a "$GITHUB_ENV"
+          [[ -f "$NEW_DMG_PATH" ]] || { echo "❌ Custom DMG not created"; exit 1; }
+
+          # --- Codesign + verify ---
+          codesign --force --sign "$CERT_ID" --timestamp "$NEW_DMG_PATH"
+          codesign --verify --verbose "$NEW_DMG_PATH"
+
+          # --- Notarize + staple ---
+          xcrun notarytool submit "$NEW_DMG_PATH" \
+            --apple-id "$APPLE_ID" \
+            --team-id "$APPLE_TEAM_ID" \
+            --password "$APPLE_PASSWORD" \
+            --wait
+          xcrun stapler staple "$NEW_DMG_PATH"
+
+          # --- Replace Tauri DMG with same original filename ---
+          DMG_DIR=$(
+            ls -1d src-tauri/target/release/bundle/dmg 2>/dev/null || \
+            ls -1d src-tauri/target/universal-apple-darwin/release/bundle/dmg 2>/dev/null || \
+            ls -1d src-tauri/target/aarch64-apple-darwin/release/bundle/dmg 2>/dev/null || \
+            ls -1d src-tauri/target/x86_64-apple-darwin/release/bundle/dmg 2>/dev/null
+          )
+          if [[ ! -d "$DMG_DIR" ]]; then
+            echo "⚠️ Tauri DMG dir not found; leaving custom DMG at $NEW_DMG_PATH"
+            exit 1
+          fi
+
+          ORIG_DMG=$(ls -1 "$DMG_DIR"/*.dmg 2>/dev/null | head -n1 || true)
+          if [[ -z "${ORIG_DMG}" ]]; then
+            echo "❌ No existing Tauri DMG found in $DMG_DIR to infer original name"; exit 1
+          fi
+          ORIG_NAME="$(basename "$ORIG_DMG")"
+
+          rm -f "$DMG_DIR"/*.dmg
+          FINAL_DMG="$DMG_DIR/$ORIG_NAME"
+          cp "$NEW_DMG_PATH" "$FINAL_DMG"
+
+          echo "FINAL_DMG=$FINAL_DMG" | tee -a "$GITHUB_ENV"
+          echo "✅ Replaced Tauri DMG with custom DMG at $FINAL_DMG (kept original filename)"
+
       - name: Verify Windows signature
         if: ${{ matrix.os == 'windows-latest' && inputs.dry-run == false }}
         run: |