How would you recommend to support release compilation into a CI/CD server?

google / secrets-gradle-plugin

A Gradle plugin for providing your secrets to your Android project.

Apache License 2.0

1.13k stars 99 forks source link

How would you recommend to support release compilation into a CI/CD server? #53

Closed gerardoepitacio closed 2 years ago

gerardoepitacio commented 2 years ago

An android application may be compiled in an external server without local.properties present, due the host only download the current state of the project, how do you recommend to keep the keys secure and at the same time support this kind of compilations?.

arriolac commented 2 years ago

It depends on what CI/CD you use. For example, GitHub has support for encrypted secrets—you can add your key there and have a step to read that secret into the server's local.properties file.

gerardoepitacio commented 2 years ago

We use Azure DevOps to compile, I'll try this approach which will write a file (local.properties) for every compilation.