Update signing keys and version scripts

Author: ashesbloom

.github/workflows/release.yml

@@ -82,6 +82,30 @@ jobs:
           cd frontend
           npm run tauri build
 
+      # Debug: List all files in bundle directory to see if .sig files were created
+      - name: Debug - List bundle files
+        run: |
+          Write-Output "=== Checking if signing key is set ==="
+          if ($env:TAURI_SIGNING_PRIVATE_KEY) {
+            Write-Output "TAURI_SIGNING_PRIVATE_KEY is SET (length: $($env:TAURI_SIGNING_PRIVATE_KEY.Length))"
+          } else {
+            Write-Output "WARNING: TAURI_SIGNING_PRIVATE_KEY is NOT SET - signatures will be empty!"
+          }
+          
+          Write-Output "`n=== Files in msi folder ==="
+          Get-ChildItem -Path "frontend\src-tauri\target\release\bundle\msi" -Recurse | ForEach-Object { Write-Output $_.FullName }
+          
+          Write-Output "`n=== Files in nsis folder (if exists) ==="
+          if (Test-Path "frontend\src-tauri\target\release\bundle\nsis") {
+            Get-ChildItem -Path "frontend\src-tauri\target\release\bundle\nsis" -Recurse | ForEach-Object { Write-Output $_.FullName }
+          }
+          
+          Write-Output "`n=== Looking for .sig files ==="
+          Get-ChildItem -Path "frontend\src-tauri\target\release\bundle" -Recurse -Filter "*.sig" | ForEach-Object { 
+            Write-Output "Found signature: $($_.FullName)"
+            Write-Output "Content: $(Get-Content $_.FullName -Raw)"
+          }
+
       # Generate checksums for verification
       - name: Generate checksums
         run: |
@@ -189,10 +213,23 @@ jobs:
         run: |
           $version = "${{ steps.get_version.outputs.version }}"
           $tag = "${{ github.ref_name }}"
-          $msiSignature = "${{ steps.find_files.outputs.msi_signature }}"
           $repo = "${{ github.repository }}"
           $pubDate = Get-Date -Format "yyyy-MM-ddTHH:mm:ssZ"
           
+          # Try to read signature directly from file (more reliable than output variable)
+          $sigPath = "frontend\src-tauri\target\release\bundle\msi\*.sig"
+          $sigFiles = Get-ChildItem -Path $sigPath -ErrorAction SilentlyContinue
+          
+          $msiSignature = ""
+          if ($sigFiles) {
+            $msiSignature = (Get-Content $sigFiles[0].FullName -Raw).Trim()
+            Write-Output "Found signature in file: $($sigFiles[0].FullName)"
+            Write-Output "Signature (first 50 chars): $($msiSignature.Substring(0, [Math]::Min(50, $msiSignature.Length)))..."
+          } else {
+            Write-Output "WARNING: No .sig file found! Auto-update will NOT work."
+            Write-Output "Make sure TAURI_SIGNING_PRIVATE_KEY secret is set in GitHub repository settings."
+          }
+          
           # Get release notes (unescape the GitHub Actions encoding)
           $releaseNotes = "${{ steps.release_notes.outputs.notes }}"
           $releaseNotes = $releaseNotes -replace '%0A', "`n"

CHANGELOG.md

@@ -5,6 +5,12 @@ All notable changes to Local Lens will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [2.0.2] - 2025-12-03
+
+### Fixed
+
+- Fixed code signing configuration for auto-updates (regenerated keys)
+
 ## [2.0.1] - 2025-12-03
 
 ### Fixed

frontend/.gitignore

@@ -29,4 +29,8 @@ dist-ssr
 .env.production.local
 
 # Test coverage reports
-coverage
+coverage
+
+# Tauri secret files
+tauri-*.key
+tauri-*.key.pub

frontend/package.json

@@ -1,7 +1,7 @@
 {
   "name": "local-lens",
   "private": true,
-  "version": "2.0.1",
+  "version": "2.0.2",
   "type": "module",
   "scripts": {
     "dev:pre": "node -e \"const fs = require('fs'); const path = 'src-tauri/backend_server-x86_64-pc-windows-msvc.exe'; if (!fs.existsSync(path)) { fs.writeFileSync(path, ''); }\"",
@@ -29,4 +29,4 @@
     "@vitejs/plugin-react": "^4.3.4",
     "vite": "^6.0.3"
   }
-}
+}

frontend/src-tauri/Cargo.lock

@@ -1,6 +1,6 @@
 [package]
 name = "LocalLens"
-version = "2.0.1"
+version = "2.0.2"
 description = "Application to organize photos using AI with face recognition and object detection."
 authors = ["you"]
 edition = "2021"

frontend/src-tauri/Cargo.toml

@@ -1,7 +1,7 @@
 {
   "$schema": "https://schema.tauri.app/config/2",
   "productName": "Local Lens",
-  "version": "2.0.1",
+  "version": "2.0.2",
   "identifier": "ashes.locallens",
   "build": {
     "beforeDevCommand": "npm run dev:pre && npm run dev",
@@ -40,7 +40,7 @@
       "endpoints": [
         "https://github.com/ashesbloom/LocalLens/releases/latest/download/latest.json"
       ],
-      "pubkey": "dW50cnVzdGVkIGNvbW1lbnQ6IG1pbmlzaWduIHB1YmxpYyBrZXk6IDExQUNGMkVEQTBCMUNGN0EKUldSNno3R2c3ZktzRWE3V2JYcHVpTkZaS3poR3RDeHA3bGRGTWlmQWNhY1JFUUZxTVdhL0x0QngK"
+      "pubkey": "dW50cnVzdGVkIGNvbW1lbnQ6IG1pbmlzaWduIHB1YmxpYyBrZXk6IEE1QjI3RkRGOUUwRjI4NTgKUldSWUtBK2UzMyt5cFlEZERPNEhIaVlQd21wa2VZSlZ4R1VXbnBxNzVTRG9xZ25IdFVMaXJWRS8K"
     }
   }
-}
+}

frontend/src-tauri/tauri.conf.json

@@ -22,6 +22,7 @@ import FindGroupResultModal from './components/FindGroupResultModal';
 import MoveCompleteModal from './components/MoveCompleteModal'; // <-- ADD THIS
 import ConfirmationModal from './components/ConfirmationModal'; 
 import UpdateChecker from './components/UpdateChecker'; // <-- ADD: Auto-update notification
+import { version } from '../package.json';
 
 import './App.css';
 
@@ -1039,7 +1040,7 @@ function App() {
                 />
 
                 {/* Update Checker - Top Left Notification */}
-                <UpdateChecker currentVersion="2.0.1" />
+                <UpdateChecker currentVersion={version} />
 
                 {/* Exit Button */}
                 <button onClick={handleExit} className="btn-exit" aria-label="Kill Backend" title="Kill Backend">

frontend/src/App.jsx

@@ -347,6 +347,21 @@
     border-radius: 0.5rem;
     color: #fecaca;
     font-size: 0.8rem;
+    display: flex;
+    flex-direction: column;
+    gap: 0.5rem;
+}
+
+.update-manual-link {
+    color: var(--color-primary);
+    text-decoration: none;
+    font-weight: 500;
+    transition: color 0.2s ease;
+}
+
+.update-manual-link:hover {
+    color: var(--color-primary-hover, #60a5fa);
+    text-decoration: underline;
 }
 
 /* ========================================
@@ -474,3 +489,32 @@
     color: rgba(255, 255, 255, 0.5);
     margin: 0;
 }
+
+/* Check for Updates Button */
+.btn-check-updates {
+    margin-top: 1rem;
+    padding: 0.5rem 1rem;
+    border: 1px solid rgba(255, 255, 255, 0.2);
+    background: rgba(255, 255, 255, 0.05);
+    color: rgba(255, 255, 255, 0.8);
+    border-radius: 0.5rem;
+    font-weight: 500;
+    font-size: 0.8rem;
+    cursor: pointer;
+    transition: all 0.2s ease;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    gap: 0.5rem;
+}
+
+.btn-check-updates:hover:not(:disabled) {
+    background: rgba(var(--color-primary-rgb), 0.2);
+    border-color: rgba(var(--color-primary-rgb), 0.4);
+    color: white;
+}
+
+.btn-check-updates:disabled {
+    opacity: 0.7;
+    cursor: not-allowed;
+}