Enforce mandatory session verification only for new logins #7530
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: APK Build | |
| on: | |
| workflow_dispatch: | |
| pull_request: | |
| merge_group: | |
| push: | |
| branches: [ develop ] | |
| # Enrich gradle.properties for CI/CD | |
| env: | |
| GRADLE_OPTS: -Dorg.gradle.jvmargs="-Xmx7g -Dfile.encoding=UTF-8 -XX:+HeapDumpOnOutOfMemoryError" -Dkotlin.incremental=false -XX:+UseParallelGC | |
| CI_GRADLE_ARG_PROPERTIES: --stacktrace -PpreDexEnable=false --max-workers 8 | |
| jobs: | |
| debug: | |
| name: Build APKs | |
| runs-on: ubuntu-latest | |
| # Skip for `main` | |
| if: github.ref != 'refs/heads/main' | |
| strategy: | |
| matrix: | |
| variant: [debug, release, nightly, samples] | |
| fail-fast: false | |
| # Allow all jobs on develop. Just one per PR. | |
| concurrency: | |
| group: ${{ github.ref == 'refs/heads/develop' && format('build-develop-{0}-{1}', matrix.variant, github.sha) || format('build-{0}-{1}', matrix.variant, github.ref) }} | |
| cancel-in-progress: true | |
| steps: | |
| - uses: actions/checkout@v4 | |
| with: | |
| # Ensure we are building the branch and not the branch after being merged on develop | |
| # https://github.com/actions/checkout/issues/881 | |
| ref: ${{ github.event_name == 'pull_request' && github.event.pull_request.head.sha || github.ref }} | |
| - name: Use JDK 17 | |
| uses: actions/setup-java@v4 | |
| with: | |
| distribution: 'temurin' # See 'Supported distributions' for available options | |
| java-version: '17' | |
| - name: Configure gradle | |
| uses: gradle/actions/setup-gradle@v3 | |
| with: | |
| cache-read-only: ${{ github.ref != 'refs/heads/develop' }} | |
| - name: Assemble debug Gplay APK | |
| if: ${{ matrix.variant == 'debug' }} | |
| env: | |
| ELEMENT_ANDROID_MAPTILER_API_KEY: ${{ secrets.MAPTILER_KEY }} | |
| ELEMENT_ANDROID_MAPTILER_LIGHT_MAP_ID: ${{ secrets.MAPTILER_LIGHT_MAP_ID }} | |
| ELEMENT_ANDROID_MAPTILER_DARK_MAP_ID: ${{ secrets.MAPTILER_DARK_MAP_ID }} | |
| run: ./gradlew :app:assembleGplayDebug -PallWarningsAsErrors=true $CI_GRADLE_ARG_PROPERTIES | |
| - name: Assemble debug Fdroid APK | |
| if: ${{ matrix.variant == 'debug' }} | |
| env: | |
| ELEMENT_ANDROID_MAPTILER_API_KEY: ${{ secrets.MAPTILER_KEY }} | |
| ELEMENT_ANDROID_MAPTILER_LIGHT_MAP_ID: ${{ secrets.MAPTILER_LIGHT_MAP_ID }} | |
| ELEMENT_ANDROID_MAPTILER_DARK_MAP_ID: ${{ secrets.MAPTILER_DARK_MAP_ID }} | |
| run: ./gradlew app:assembleFDroidDebug -PallWarningsAsErrors=true $CI_GRADLE_ARG_PROPERTIES | |
| - name: Upload debug APKs | |
| if: ${{ matrix.variant == 'debug' }} | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: elementx-debug | |
| path: | | |
| app/build/outputs/apk/gplay/debug/*-universal-debug.apk | |
| app/build/outputs/apk/fdroid/debug/*-universal-debug.apk | |
| - uses: rnkdsh/action-upload-diawi@v1.5.5 | |
| id: diawi | |
| # Do not fail the whole build if Diawi upload fails | |
| continue-on-error: true | |
| env: | |
| token: ${{ secrets.DIAWI_TOKEN }} | |
| if: ${{ matrix.variant == 'debug' && github.event_name == 'pull_request' && env.token != '' }} | |
| with: | |
| token: ${{ env.token }} | |
| file: app/build/outputs/apk/gplay/debug/app-gplay-arm64-v8a-debug.apk | |
| - name: Add or update PR comment with QR Code to download APK. | |
| if: ${{ matrix.variant == 'debug' && github.event_name == 'pull_request' && steps.diawi.conclusion == 'success' }} | |
| uses: NejcZdovc/comment-pr@v2 | |
| with: | |
| message: | | |
| :iphone: Scan the QR code below to install the build (arm64 only) for this PR. | |
|  | |
| If you can't scan the QR code you can install the build via this link: ${{ steps.diawi.outputs['url'] }} | |
| # Enables to identify and update existing Ad-hoc release message on new commit in the PR | |
| identifier: "GITHUB_COMMENT_QR_CODE" | |
| env: | |
| GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Compile release sources | |
| if: ${{ matrix.variant == 'release' }} | |
| run: ./gradlew compileReleaseSources -PallWarningsAsErrors=true $CI_GRADLE_ARG_PROPERTIES | |
| - name: Compile nightly sources | |
| if: ${{ matrix.variant == 'nightly' }} | |
| run: ./gradlew compileGplayNightlySources -PallWarningsAsErrors=true $CI_GRADLE_ARG_PROPERTIES | |
| - name: Compile samples minimal | |
| if: ${{ matrix.variant == 'samples' }} | |
| run: ./gradlew :samples:minimal:assemble $CI_GRADLE_ARG_PROPERTIES |