amir
b973e58d9e
Build & Release APK / build (push) Failing after 11m43s
Sync engine / providers: - LocalAccessor: replace createOutputStream with writeAtomically (temp sibling + rename/commit) for both JavaFile and SAF backends, so an interrupted download no longer truncates the destination file. - SyncEngine: use writeAtomically for DOWNLOAD and propagate downloadFile failures via getOrThrow (was silently swallowed -> false success + state). - WebDavProvider (covers Nextcloud/ownCloud): PUT to hidden temp then MOVE onto destination, so a failed upload can't leave a truncated remote file. - SftpProvider: upload to temp then rename onto destination. Build / CI: - compileSdk 34 -> 35 (was below targetSdk 35). - Release signing reads keystore from local.properties or env (CI), with a debug-key fallback so builds still succeed without secrets. - Disable R8/minify for release (never exercised by CI; keeps signed release behaving like the debug builds in use today). - CI: run unit tests on every push/PR, build assembleRelease (signed when KEYSTORE_BASE64 present), publish APK only on v* tags.
75 lines
2.3 KiB
YAML
75 lines
2.3 KiB
YAML
name: Build & Release APK
|
|
|
|
on:
|
|
push:
|
|
branches: ['**']
|
|
tags:
|
|
- 'v*'
|
|
pull_request:
|
|
|
|
jobs:
|
|
build:
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- uses: actions/checkout@v4
|
|
|
|
- uses: actions/setup-java@v4
|
|
with:
|
|
java-version: '17'
|
|
distribution: 'temurin'
|
|
cache: gradle
|
|
|
|
- uses: android-actions/setup-android@v3
|
|
|
|
- name: Run unit tests
|
|
run: |
|
|
chmod +x gradlew
|
|
./gradlew testDebugUnitTest --no-daemon
|
|
|
|
- name: Decode release keystore
|
|
env:
|
|
KEYSTORE_BASE64: ${{ secrets.KEYSTORE_BASE64 }}
|
|
run: |
|
|
if [ -n "$KEYSTORE_BASE64" ]; then
|
|
echo "$KEYSTORE_BASE64" | base64 -d > "$RUNNER_TEMP/release.keystore"
|
|
echo "KEYSTORE_PATH=$RUNNER_TEMP/release.keystore" >> "$GITHUB_ENV"
|
|
echo "Release keystore decoded — building signed release."
|
|
else
|
|
echo "::warning::KEYSTORE_BASE64 secret not set — release APK will be debug-signed."
|
|
fi
|
|
|
|
- name: Build release APK
|
|
env:
|
|
KEYSTORE_PASSWORD: ${{ secrets.KEYSTORE_PASSWORD }}
|
|
KEY_ALIAS: ${{ secrets.KEY_ALIAS }}
|
|
KEY_PASSWORD: ${{ secrets.KEY_PASSWORD }}
|
|
run: ./gradlew assembleRelease --no-daemon
|
|
|
|
- name: Get version name
|
|
id: ver
|
|
run: echo "name=$(grep VERSION_NAME version.properties | cut -d= -f2)" >> $GITHUB_OUTPUT
|
|
|
|
- name: Rename APK
|
|
run: |
|
|
mkdir dist
|
|
cp app/build/outputs/apk/release/app-release.apk \
|
|
dist/SyncFlow-v${{ steps.ver.outputs.name }}.apk
|
|
|
|
- name: Attach APK to release
|
|
if: startsWith(github.ref, 'refs/tags/v')
|
|
env:
|
|
TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
TAG: ${{ github.ref_name }}
|
|
VERSION: ${{ steps.ver.outputs.name }}
|
|
run: |
|
|
RELEASE_ID=$(curl -sf \
|
|
"https://gitea.khodak.me/api/v1/repos/amir/SyncFlow/releases/tags/$TAG" \
|
|
-H "Authorization: token $TOKEN" \
|
|
| python3 -c "import sys,json; print(json.load(sys.stdin)['id'])")
|
|
curl -sf -X POST \
|
|
"https://gitea.khodak.me/api/v1/repos/amir/SyncFlow/releases/$RELEASE_ID/assets" \
|
|
-H "Authorization: token $TOKEN" \
|
|
-F "attachment=@dist/SyncFlow-v${VERSION}.apk"
|
|
echo "APK uploaded to release $TAG"
|