178 lines
5.8 KiB
YAML
178 lines
5.8 KiB
YAML
name: Build and Release to F-Droid
|
|
|
|
on:
|
|
push:
|
|
tags:
|
|
- '*'
|
|
workflow_dispatch:
|
|
|
|
jobs:
|
|
build-and-deploy:
|
|
runs-on: docker
|
|
env:
|
|
ANDROID_HOME: /opt/android-sdk
|
|
ANDROID_SDK_ROOT: /opt/android-sdk
|
|
steps:
|
|
- name: Checkout
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Setup Java
|
|
uses: actions/setup-java@v4
|
|
with:
|
|
distribution: 'zulu'
|
|
java-version: '17'
|
|
|
|
- name: Setup Android SDK
|
|
uses: android-actions/setup-android@v3
|
|
|
|
- name: Install Android SDK packages
|
|
run: |
|
|
sdkmanager --licenses >/dev/null <<'EOF'
|
|
y
|
|
y
|
|
y
|
|
y
|
|
y
|
|
y
|
|
y
|
|
y
|
|
y
|
|
y
|
|
EOF
|
|
sdkmanager "platform-tools" "platforms;android-36" "build-tools;36.0.0"
|
|
|
|
- name: Install jq
|
|
run: |
|
|
set -e
|
|
SUDO=""
|
|
if command -v sudo >/dev/null 2>&1; then
|
|
SUDO="sudo"
|
|
fi
|
|
|
|
if command -v apt-get >/dev/null 2>&1; then
|
|
$SUDO apt-get update
|
|
$SUDO apt-get install -y jq
|
|
elif command -v apk >/dev/null 2>&1; then
|
|
$SUDO apk add --no-cache jq
|
|
elif command -v dnf >/dev/null 2>&1; then
|
|
$SUDO dnf install -y jq
|
|
elif command -v yum >/dev/null 2>&1; then
|
|
$SUDO yum install -y jq
|
|
else
|
|
echo "Could not find a supported package manager to install jq"
|
|
exit 1
|
|
fi
|
|
|
|
- name: Setup Flutter
|
|
uses: subosito/flutter-action@v2
|
|
with:
|
|
channel: 'stable'
|
|
|
|
- name: Trust Flutter SDK git directory
|
|
run: |
|
|
set -e
|
|
FLUTTER_BIN_DIR="$(dirname "$(command -v flutter)")"
|
|
FLUTTER_SDK_DIR="$(cd "$FLUTTER_BIN_DIR/.." && pwd -P)"
|
|
git config --global --add safe.directory "$FLUTTER_SDK_DIR"
|
|
if [ -n "${FLUTTER_ROOT:-}" ]; then
|
|
git config --global --add safe.directory "$FLUTTER_ROOT"
|
|
fi
|
|
# Runner-specific fallback observed in failing logs
|
|
git config --global --add safe.directory /opt/hostedtoolcache/flutter/stable-3.41.4-x64 || true
|
|
|
|
- name: Verify Android + Flutter toolchain
|
|
run: flutter doctor -v
|
|
|
|
- name: Install dependencies
|
|
run: flutter pub get
|
|
|
|
# ADD THIS NEW STEP
|
|
- name: Setup Android Keystore
|
|
env:
|
|
KEYSTORE_BASE64: ${{ secrets.KEYSTORE_BASE64 }}
|
|
KEY_PASSWORD: ${{ secrets.KEY_PASSWORD }}
|
|
KEY_ALIAS: ${{ secrets.KEY_ALIAS }}
|
|
run: |
|
|
# Decode the base64 string back into the binary .jks file
|
|
echo "$KEYSTORE_BASE64" | base64 --decode > android/app/upload-keystore.jks
|
|
|
|
# Create the key.properties file that build.gradle expects
|
|
echo "storePassword=$KEY_PASSWORD" > android/key.properties
|
|
echo "keyPassword=$KEY_PASSWORD" >> android/key.properties
|
|
echo "keyAlias=$KEY_ALIAS" >> android/key.properties
|
|
echo "storeFile=upload-keystore.jks" >> android/key.properties
|
|
|
|
- name: Build APK
|
|
run: flutter build apk --release
|
|
|
|
- name: Setup F-Droid Server Tools
|
|
run: |
|
|
SUDO=""
|
|
if command -v sudo >/dev/null 2>&1; then
|
|
SUDO="sudo"
|
|
fi
|
|
$SUDO apt-get update
|
|
# sshpass from apt, fdroidserver via pip to get a newer androguard that
|
|
# can parse modern Flutter/AGP APKs (apt ships fdroidserver 2.2.1 which crashes)
|
|
$SUDO apt-get install -y sshpass python3-pip
|
|
pip3 install --break-system-packages --upgrade fdroidserver
|
|
|
|
- name: Initialize or fetch F-Droid Repository
|
|
env:
|
|
HOST: ${{ secrets.HETZNER_HOST }}
|
|
USER: ${{ secrets.HETZNER_USER }}
|
|
PASS: ${{ secrets.HETZNER_PASS }}
|
|
run: |
|
|
mkdir -p fdroid
|
|
|
|
# Ensure remote path exists (sftp mkdir, ignoring errors if already present).
|
|
sshpass -p "$PASS" sftp -o StrictHostKeyChecking=no "$USER@$HOST" <<'SFTP'
|
|
-mkdir dev
|
|
-mkdir dev/fdroid
|
|
-mkdir dev/fdroid/repo
|
|
SFTP
|
|
|
|
# Try to download the existing repo/ folder from Hetzner to keep older versions and the keystore.
|
|
# If it fails (first time), initialize a new local repo.
|
|
sshpass -p "$PASS" scp -o StrictHostKeyChecking=no -r "$USER@$HOST:dev/fdroid/repo" fdroid/ || (cd fdroid && fdroid init)
|
|
|
|
- name: Copy new APK to repo
|
|
run: |
|
|
set -e
|
|
mkdir -p fdroid/repo
|
|
|
|
# Prefer tag name for release builds; fallback to ref name for manual runs.
|
|
REF_NAME="${GITHUB_REF_NAME:-${GITHUB_REF##*/}}"
|
|
SAFE_REF_NAME="$(echo "$REF_NAME" | tr '/ ' '__' | tr -cd '[:alnum:]_.-')"
|
|
if [ -z "$SAFE_REF_NAME" ]; then
|
|
SAFE_REF_NAME="${GITHUB_SHA:-manual}"
|
|
fi
|
|
|
|
cp build/app/outputs/flutter-apk/app-release.apk "fdroid/repo/my_flutter_app_${SAFE_REF_NAME}.apk"
|
|
|
|
- name: Generate F-Droid Index
|
|
run: |
|
|
cd fdroid
|
|
fdroid update -c
|
|
|
|
- name: Upload Repo to Hetzner
|
|
env:
|
|
HOST: ${{ secrets.HETZNER_HOST }}
|
|
USER: ${{ secrets.HETZNER_USER }}
|
|
PASS: ${{ secrets.HETZNER_PASS }}
|
|
run: |
|
|
set -euo pipefail
|
|
REMOTE_REPO_DIR="dev/fdroid/repo"
|
|
SSH_OPTS="-o StrictHostKeyChecking=no -o ConnectTimeout=20"
|
|
|
|
# Create remote directory tree via SFTP batch (no exec channel needed).
|
|
# Leading '-' on each mkdir means "ignore error if already exists".
|
|
sshpass -p "$PASS" sftp $SSH_OPTS "$USER@$HOST" <<'SFTP'
|
|
-mkdir dev
|
|
-mkdir dev/fdroid
|
|
-mkdir dev/fdroid/repo
|
|
SFTP
|
|
|
|
# Upload all files from fdroid/repo into the remote directory.
|
|
sshpass -p "$PASS" scp $SSH_OPTS -r fdroid/repo/. "$USER@$HOST:$REMOTE_REPO_DIR/"
|