Skip to main content

max / balanced_breakfast

build: rotate Tauri updater signing key + document signing pattern Old key password was unrecoverable; regenerated since no BB binaries have shipped yet. New pubkey wired into tauri.conf.json. Build commands now reference shared signing env vars from ~/.tauri/passwords.env. See _meta/docs/deploy.md \xc2\xa7 Tauri Updater Signing.
Author: Max J. <87768334+MaxJMath@users.noreply.github.com> · 2026-05-16 20:36 UTC
Commit: d1aef9a767cacbb28a7eb377137409aef38e24d2
Parent: bc26d93
2 files changed, +11 insertions, -5 deletions
M docs/deploy.md +10 -4
@@ -14,22 +14,28 @@ See `_meta/docs/deploy.md` for shared infrastructure (machines, git remotes, col
14 14 ## Build Commands
15 15
16 16 ```bash
17 + # Signing env (see _meta/docs/deploy.md § Tauri Updater Signing for setup).
18 +
17 19 # macOS (local):
18 - cd ~/Code/Apps/balanced_breakfast && cargo tauri build
20 + cd ~/Code/Apps/balanced_breakfast && \
21 + . ~/.tauri/passwords.env && \
22 + TAURI_SIGNING_PRIVATE_KEY=$HOME/.tauri/balanced-breakfast.key \
23 + TAURI_SIGNING_PRIVATE_KEY_PASSWORD=$BB_TAURI_PASSWORD \
24 + cargo tauri build
19 25 cp target/release/bundle/dmg/*.dmg ~/Dist/balanced_breakfast/macos/
20 26
21 27 # Linux aarch64 (astra):
22 - ssh astra "source ~/.cargo/env && cd ~/Code/Apps/balanced_breakfast && git pull && cargo tauri build"
28 + ssh astra 'source ~/.cargo/env && cd ~/Code/Apps/balanced_breakfast && git pull && . ~/.tauri/passwords.env && TAURI_SIGNING_PRIVATE_KEY=$HOME/.tauri/balanced-breakfast.key TAURI_SIGNING_PRIVATE_KEY_PASSWORD=$BB_TAURI_PASSWORD cargo tauri build'
23 29 scp astra:~/Code/Apps/balanced_breakfast/target/release/bundle/appimage/*.AppImage ~/Dist/balanced_breakfast/linux-aarch64/
24 30 scp astra:~/Code/Apps/balanced_breakfast/target/release/bundle/deb/*.deb ~/Dist/balanced_breakfast/linux-aarch64/
25 31
26 32 # Linux x86_64 (pop-os):
27 - ssh pop-os "source ~/.cargo/env && cd ~/Code/Apps/balanced_breakfast && git pull && cargo tauri build"
33 + ssh pop-os 'source ~/.cargo/env && cd ~/Code/Apps/balanced_breakfast && git pull && . ~/.tauri/passwords.env && TAURI_SIGNING_PRIVATE_KEY=$HOME/.tauri/balanced-breakfast.key TAURI_SIGNING_PRIVATE_KEY_PASSWORD=$BB_TAURI_PASSWORD cargo tauri build'
28 34 scp pop-os:~/Code/Apps/balanced_breakfast/target/release/bundle/appimage/*.AppImage ~/Dist/balanced_breakfast/linux-x86_64/
29 35 scp pop-os:~/Code/Apps/balanced_breakfast/target/release/bundle/deb/*.deb ~/Dist/balanced_breakfast/linux-x86_64/
30 36
31 37 # Windows (windows-x86):
32 - ssh me@windows-x86 "cd C:\Users\me\Code\Apps\balanced_breakfast; git pull; cargo tauri build"
38 + ssh me@windows-x86 'powershell -Command ". C:\Users\me\.tauri\passwords.ps1; $env:TAURI_SIGNING_PRIVATE_KEY=\"C:\Users\me\.tauri\balanced-breakfast.key\"; $env:TAURI_SIGNING_PRIVATE_KEY_PASSWORD=$env:BB_TAURI_PASSWORD; cd C:\Users\me\Code\Apps\balanced_breakfast; git pull; cargo tauri build"'
33 39 scp me@windows-x86:"C:/Users/me/Code/Apps/balanced_breakfast/target/release/bundle/msi/*.msi" ~/Dist/balanced_breakfast/windows/
34 40 scp me@windows-x86:"C:/Users/me/Code/Apps/balanced_breakfast/target/release/bundle/nsis/*-setup.exe" ~/Dist/balanced_breakfast/windows/
35 41 ```
M src-tauri/tauri.conf.json +1 -1
@@ -43,7 +43,7 @@
43 43 },
44 44 "plugins": {
45 45 "updater": {
46 - "pubkey": "dW50cnVzdGVkIGNvbW1lbnQ6IG1pbmlzaWduIHB1YmxpYyBrZXk6IEJBOTU1QzIxQzdFRDI1MUMKUldRY0plM0hJVnlWdWhmekNSOThnb0FxejRNZ3NsS1BBWlE0aWNZbW92dXltOEExbVhnRmI2LzAK",
46 + "pubkey": "dW50cnVzdGVkIGNvbW1lbnQ6IG1pbmlzaWduIHB1YmxpYyBrZXk6IDFERkY1NDNFNTc4MDg2RkYKUldUL2hvQlhQbFQvSFM5N29oRFJpR2kzNFp2enJqZzhSamdOME5IUEhOV3JsOW1TWmZubE1ZRUcK",
47 47 "endpoints": [
48 48 "https://makenot.work/api/v1/sync/ota/balanced-breakfast/{{target}}/{{arch}}/{{current_version}}"
49 49 ]