publish #9

Workflow file for this run

.github/workflows/publish.yml at ab858ab

	name: publish

	on:
	schedule:
	- cron: "4 3 * * *"
	workflow_dispatch:
	inputs:
	track:
	type: choice
	description: "Google play release track"
	options:
	- none
	- internal
	- alpha
	- beta
	- production
	default: none
	required: true
	release_type:
	type: choice
	description: "GitHub release type"
	options:
	- none
	- prerelease
	- nightly
	- release
	default: release
	required: true
	tag_name:
	description: "Tag name for release"
	required: false
	default: nightly
	workflow_call:
	env:
	UPLOAD_DIR_ANDROID: android_artifacts

	jobs:
	check_commits:
	name: Check for New Commits
	runs-on: ubuntu-latest
	outputs:
	has_new_commits: ${{ steps.check.outputs.new_commits }}

	steps:
	- name: Checkout Repository
	uses: actions/checkout@v3
	with:
	fetch-depth: 0 # This fetches all history so we can check commits

	- name: Check for new commits
	id: check
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	run: \|
	# This script checks for commits newer than 23 hours ago
	NEW_COMMITS=$(git rev-list --count --after="$(date -Iseconds -d '23 hours ago')" ${{ github.sha }})
	echo "new_commits=$NEW_COMMITS" >> $GITHUB_OUTPUT

	build:
	if: ${{ inputs.release_type != 'none' }}
	uses: ./.github/workflows/build.yml
	secrets: inherit
	with:
	build_type: ${{ inputs.release_type == '' && 'nightly' \|\| inputs.release_type }}

	publish:
	needs:
	- check_commits
	- build
	if: ${{ needs.check_commits.outputs.has_new_commits > 0 && inputs.release_type != 'none' }}
	name: publish-github
	runs-on: ubuntu-latest
	env:
	GH_USER: ${{ secrets.GH_USER }}
	# GH needed for gh cli
	GH_TOKEN: ${{ secrets.GH_TOKEN }}
	GH_REPO: ${{ github.repository }}

	steps:
	- uses: actions/checkout@v4
	- name: Install system dependencies
	run: \|
	sudo apt update && sudo apt install -y gh apksigner

	# update latest tag
	- name: Set latest tag
	uses: rickstaa/action-create-tag@v1
	id: tag_creation
	with:
	tag: "latest" # or any tag name you wish to use
	message: "Automated tag for HEAD commit"
	force_push_tag: true
	tag_exists_error: false

	- name: Get latest release
	id: latest_release
	uses: kaliber5/action-get-release@v1
	with:
	token: ${{ secrets.GITHUB_TOKEN }}
	latest: true

	- name: Generate Changelog
	id: changelog
	uses: requarks/changelog-action@v1
	with:
	token: ${{ secrets.GITHUB_TOKEN }}
	toTag: ${{ github.event_name == 'schedule' && 'nightly' \|\| steps.latest_release.outputs.tag_name }}
	fromTag: "latest"
	writeToFile: false # we won't write to file, just output

	- name: Get version code
	if: ${{ inputs.release_type == 'release' }}
	run: \|
	version_code=$(grep "VERSION_CODE" buildSrc/src/main/kotlin/Constants.kt \| awk '{print $5}' \| tr -d '\n')
	echo "VERSION_CODE=$version_code" >> $GITHUB_ENV

	- name: Push changes
	if: ${{ inputs.release_type == '' \|\| inputs.release_type == 'nightly' \|\| inputs.release_type == 'prerelease' }}
	uses: ad-m/github-push-action@master
	with:
	github_token: ${{ secrets.GITHUB_TOKEN }}
	branch: ${{ github.ref }}

	- name: Make download dir
	run: mkdir ${{ github.workspace }}/temp

	- name: Download artifacts
	uses: actions/download-artifact@v4
	with:
	name: ${{ env.UPLOAD_DIR_ANDROID }}
	path: ${{ github.workspace }}/temp

	# Setup TAG_NAME, which is used as a general "name"
	- if: github.event_name == 'workflow_dispatch'
	run: echo "TAG_NAME=${{ github.event.inputs.tag_name }}" >> $GITHUB_ENV
	- if: github.event_name == 'schedule'
	run: echo "TAG_NAME=nightly" >> $GITHUB_ENV

	- name: Set version release notes
	if: ${{ inputs.release_type == 'release' }}
	run: \|
	RELEASE_NOTES="$(cat ${{ github.workspace }}/fastlane/metadata/android/en-US/changelogs/${{ env.VERSION_CODE }}.txt)"
	echo "RELEASE_NOTES<<EOF" >> $GITHUB_ENV
	echo "$RELEASE_NOTES" >> $GITHUB_ENV
	echo "EOF" >> $GITHUB_ENV

	- name: On nightly release notes
	if: ${{ contains(env.TAG_NAME, 'nightly') }}
	run: \|
	echo "RELEASE_NOTES=Nightly build for the latest development version of the app." >> $GITHUB_ENV
	gh release delete nightly --yes \|\| true
	git push origin :nightly \|\| true

	- name: On prerelease release notes
	if: ${{ inputs.release_type == 'prerelease' }}
	run: \|
	echo "RELEASE_NOTES=Testing version of app for specific feature." >> $GITHUB_ENV
	gh release delete ${{ github.event.inputs.tag_name }} --yes \|\| true

	- name: Get checksum
	id: checksum
	run: \|
	file_path=$(find ${{ github.workspace }}/temp -type f -iname "*.apk" \| tail -n1)
	echo "checksum=$(apksigner verify -print-certs $file_path \| grep -Po "(?<=SHA-256 digest:) .*" \| tr -d "[:blank:]")" >> $GITHUB_OUTPUT


	- name: Create Release with Fastlane changelog notes
	id: create_release
	uses: softprops/action-gh-release@v2
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	with:
	body: \|
	${{ env.RELEASE_NOTES }}

	SHA256 fingerprint:
	```${{ steps.checksum.outputs.checksum }}```

	### Changelog
	${{ steps.changelog.outputs.changes }}
	tag_name: ${{ env.TAG_NAME }}
	name: ${{ env.TAG_NAME }}
	draft: false
	prerelease: ${{ inputs.release_type == 'prerelease' \|\| inputs.release_type == '' \|\| inputs.release_type == 'nightly' }}
	make_latest: ${{ inputs.release_type == 'release' }}
	files: \|
	${{ github.workspace }}/temp/*

	publish-fdroid:
	runs-on: ubuntu-latest
	needs:
	- build
	if: inputs.release_type == 'release'
	steps:
	- name: Dispatch update for fdroid repo
	uses: peter-evans/repository-dispatch@v3
	with:
	token: ${{ secrets.ANDROID_PAT }}
	repository: zaneschepke/fdroid
	event-type: fdroid-update

	publish-play:
	if: ${{ inputs.track != 'none' && inputs.track != '' }}
	name: Publish to Google Play
	runs-on: ubuntu-latest

	env:
	SIGNING_KEY_ALIAS: ${{ secrets.SIGNING_KEY_ALIAS }}
	SIGNING_KEY_PASSWORD: ${{ secrets.SIGNING_KEY_PASSWORD }}
	SIGNING_STORE_PASSWORD: ${{ secrets.SIGNING_STORE_PASSWORD }}
	KEY_STORE_FILE: 'android_keystore.jks'
	KEY_STORE_LOCATION: ${{ github.workspace }}/app/keystore/
	GH_USER: ${{ secrets.GH_USER }}
	GH_TOKEN: ${{ secrets.GH_TOKEN }}

	steps:
	- uses: actions/checkout@v4
	- name: Set up JDK 17
	uses: actions/setup-java@v4
	with:
	distribution: 'temurin'
	java-version: '17'
	cache: gradle

	- name: Grant execute permission for gradlew
	run: chmod +x gradlew

	# Here we need to decode keystore.jks from base64 string and place it
	# in the folder specified in the release signing configuration
	- name: Decode Keystore
	id: decode_keystore
	uses: timheuer/[email protected]
	with:
	fileName: ${{ env.KEY_STORE_FILE }}
	fileDir: ${{ env.KEY_STORE_LOCATION }}
	encodedString: ${{ secrets.KEYSTORE }}

	# create keystore path for gradle to read
	- name: Create keystore path env var
	run: \|
	store_path=${{ env.KEY_STORE_LOCATION }}${{ env.KEY_STORE_FILE }}
	echo "KEY_STORE_PATH=$store_path" >> $GITHUB_ENV

	- name: Create service_account.json
	id: createServiceAccount
	run: echo '${{ secrets.SERVICE_ACCOUNT_JSON }}' > service_account.json

	- name: Deploy with fastlane
	uses: ruby/setup-ruby@v1
	with:
	ruby-version: '3.2' # Not needed with a .ruby-version file
	bundler-cache: true

	- name: Distribute app to Prod track 🚀
	run: (cd ${{ github.workspace }} && bundle install && bundle exec fastlane ${{ inputs.track }})

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

publish #9

Workflow file

publish #9

Jobs

Run details

Workflow file for this run