To access the App Store Connect API, you need to provide those credentials. Apple does all that through Xcode because they don’t need to use the API.
What APT without the API creds is it looks at the certs and profiles that you have locally and gives you some basic information expiration information.
Once you add the API credentials, it can pull more information from your account (assuming you have access to that). The profiles section will tell you about profiles that exist locally but not in your account, or exist in your account but not locally or have expired. I have more features coming down the pike with new features as well.
Perhaps this is something Xojo needs, but I have no cert information stored locally (other than the short period of time when I create a new one)… Why would I? But it seems this dialog requires you to manually re-enter 90% of the data used to make the cert in the first place.
I “assume” the API Key file is the one the Apple Connect created when a new or updated cert was created in the first place… With Xcode there is no need to keep those around after they have been “installed”. So I am still failing to see where there is any new information this provides, that isn’t already part of Xcode/AppleConnect… That all being said… I won’t waste anymore of your time, nor of mine
To be fair, Xojo could get 90% of the way there by making their error messages more accurate. When I did the original work just after leaving Xojo, I found that there was at least one message that said the error was in a provisioning profile when the real problem was that the user was missing the key side of one of their certs.
Typically each developer creates a developer certificate and keep that in their keychain until it expires (or it gets revoked by the account owner) and whoever is doing app distribution also creates and installs a distribution certificate, also placed in the keychain, but typically only on machines that are allowed to do final builds. You don’t typically delete them every time because doing so also invalidates any profiles (dev and dist) that they are attached to.
Ja App Wrapper worked like a charm back in my Xojo times… absolutly worth the money!
And yes apt is known from Debian based Linuxes… the gold standard for deployments w/o a gatekeeper inbetween… was wondering too… what you all are talking about
