iOS App Store Connect API Signing
Use the App Store Connect API to let Oore CI automatically manage certificates and provisioning profiles.
What you need
- Role: admin or owner
- An Apple Developer Program membership
- An App Store Connect API key with appropriate permissions
- A pipeline configured for iOS builds
1. Create an API key
- Go to App Store Connect — Users and Access — Keys
- Click Generate API Key
- Set a name (e.g., "Oore CI signing")
- Select the Developer or Admin role
- Click Generate
- Download the
.p8key file (you can only download it once) - Note the Key ID and Issuer ID shown on the page
For detailed instructions, see Creating API Keys for App Store Connect API.
2. Configure in Oore CI
- Open your project in the web UI
- Go to Pipelines and select the pipeline
- Open the Signing tab
- Under iOS Signing, select API mode
- Enter:
- Issuer ID — from App Store Connect
- Key ID — from App Store Connect
- API key file — upload the
.p8file
- Click Save
3. Sync certificates and profiles
After configuring the API key:
- Click Sync in the signing configuration
- Oore CI connects to App Store Connect and fetches available certificates and profiles
- Select the certificate and profile to use for this pipeline
This calls POST /v1/pipelines/{pipeline_id}/ios-signing/sync.
4. Verify
Trigger a build. The runner uses the synced certificate and profile for signing.
When to use API signing
API signing is appropriate when:
- You want Oore CI to manage certificates and profiles automatically
- You have many pipelines or frequently rotate signing assets
- You want to register test devices through Oore CI
API endpoints
| Method | Path | Description |
|---|---|---|
PUT | /v1/pipelines/{pipeline_id}/ios-signing | Configure API signing |
POST | /v1/pipelines/{pipeline_id}/ios-signing/sync | Sync from App Store Connect |
GET | /v1/pipelines/{pipeline_id}/ios-signing | Get current config |