Release Workflow #49
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
name: Release Workflow | |
on: | |
workflow_dispatch: | |
inputs: | |
version_type: | |
description: "Type of version bump (major, minor, patch, premajor, preminor, prepatch, prerelease)" | |
required: true | |
default: "patch" | |
type: choice | |
options: | |
- major | |
- minor | |
- patch | |
- premajor | |
- preminor | |
- prepatch | |
- prerelease | |
jobs: | |
# Job 1: Version Bumping and Android Build | |
build_android: | |
runs-on: ubuntu-latest | |
permissions: | |
contents: 'write' # Allows workflow to checkout repository code | |
id-token: 'write' # Required for Google Cloud Workload Identity Federation authentication (OIDC token generation) | |
steps: | |
# Step 1: Checkout the code | |
- name: Checkout code | |
uses: actions/checkout@v4 | |
# Step 2: Set up JDK 17 | |
- name: Set up JDK 17 | |
uses: actions/setup-java@v3 | |
with: | |
distribution: 'temurin' | |
java-version: '17' | |
# Step 3: Set up Node.js | |
- name: Set up Node.js | |
uses: actions/setup-node@v3 | |
with: | |
node-version: '20.18.0' # Use the specified Node.js version | |
cache: 'yarn' | |
# Step 4: Install dependencies using Yarn | |
- name: Install dependencies | |
run: yarn install | |
# Step 5: Set up Ruby and Bundler | |
- name: Set up Ruby | |
uses: ruby/setup-ruby@v1 | |
with: | |
ruby-version: '3.2.3' # Specify a Ruby version | |
bundler-cache: true | |
# Step 6: Combined version bump | |
- name: Bump versions | |
working-directory: ${{ github.workspace }} | |
run: bundle exec fastlane bump_version version_type:${{ github.event_name == 'workflow_dispatch' && github.event.inputs.version_type || 'patch' }} | |
# Step 7: Commit and push version changes | |
- name: Commit and push version changes | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
run: | | |
git config user.name "GitHub Actions" | |
git config user.email "[email protected]" | |
git add .version package.json android/app/build.gradle ios/PocketPal.xcodeproj/project.pbxproj | |
git commit -m "chore(release): bump version to $(cat .version)" | |
git push | |
git tag "v$(cat .version)" | |
git push origin "v$(cat .version)" | |
# Step 8: Set up Android Keystore | |
- name: Set up Android Keystore | |
working-directory: android | |
run: | | |
echo "${{ secrets.ANDROID_KEYSTORE_BASE64 }}" | base64 --decode > keystore.jks | |
# Step 9: Authenticate to Google Cloud | |
- name: Authenticate to Google Cloud | |
id: auth | |
uses: google-github-actions/auth@v2 | |
with: | |
service_account: ${{ secrets.GCP_SERVICE_ACCOUNT }} | |
workload_identity_provider: ${{ secrets.WORKLOAD_IDENTITY_PROVIDER }} | |
create_credentials_file: true | |
# Step 10: Build Release APK | |
- name: Build Release APK | |
working-directory: android | |
env: | |
KEYSTORE_PASSWORD: ${{ secrets.ANDROID_KEYSTORE_PASSWORD }} | |
KEY_ALIAS: ${{ secrets.ANDROID_KEY_ALIAS }} | |
KEY_PASSWORD: ${{ secrets.ANDROID_KEY_PASSWORD }} | |
run: | | |
./gradlew assembleRelease | |
# Step 11: Create GitHub Release with APK | |
- name: Create GitHub Release | |
uses: softprops/action-gh-release@v1 | |
with: | |
files: android/app/build/outputs/apk/release/app-release.apk | |
tag_name: "v$(cat .version)" | |
name: "Release v$(cat .version)" | |
draft: false | |
prerelease: false | |
generate_release_notes: true | |
env: | |
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
# Step 12: Build and upload Android app to Alpha track | |
- name: Build and upload Android app | |
working-directory: android | |
env: | |
KEYSTORE_PASSWORD: ${{ secrets.ANDROID_KEYSTORE_PASSWORD }} | |
KEY_ALIAS: ${{ secrets.ANDROID_KEY_ALIAS }} | |
KEY_PASSWORD: ${{ secrets.ANDROID_KEY_PASSWORD }} | |
GRADLE_USER_HOME: ${{ runner.temp }}/.gradle | |
# GOOGLE_APPLICATION_CREDENTIALS: ${{ steps.auth.outputs.credentials_file_path }} # This is not supported by fastlane, we need to replace it with PLAY_STORE_JSON_KEY in the future. | |
PLAY_STORE_JSON_KEY: ${{ secrets.PLAY_STORE_SERVICE_ACCOUNT_JSON }} | |
run: | | |
echo "$PLAY_STORE_JSON_KEY" > play-store-key.json | |
bundle exec fastlane release_android_alpha | |
# Job 2: iOS Build and Upload (runs on macOS) | |
build_ios: | |
runs-on: macos-latest | |
needs: build_android | |
steps: | |
- name: Checkout code # Replace the Download code step | |
uses: actions/checkout@v3 | |
with: | |
ref: ${{ github.ref }} # This ensures we get the latest changes including the version bump | |
# Step 2: Set up Node.js | |
- name: Set up Node.js | |
uses: actions/setup-node@v3 | |
with: | |
node-version: '20.18.0' | |
cache: 'yarn' | |
# Step 3: Install dependencies using Yarn | |
- name: Install dependencies | |
run: yarn install | |
# Step 4: Set up Ruby and Bundler | |
- name: Set up Ruby | |
uses: ruby/setup-ruby@v1 | |
with: | |
ruby-version: '3.2.3' # Specify a Ruby version | |
bundler-cache: true | |
# Step 5: Install CocoaPods dependencies | |
- name: Install CocoaPods dependencies | |
working-directory: ios | |
run: pod install | |
# Step 6: Build and upload iOS app to TestFlight | |
- name: Build and upload iOS app | |
working-directory: ios | |
env: | |
MATCH_PASSWORD: ${{ secrets.MATCH_PASSWORD }} | |
MATCH_GIT_URL: ${{ secrets.MATCH_GIT_URL }} | |
MATCH_GITHUB_TOKEN: ${{ secrets.MATCH_GITHUB_TOKEN }} | |
APP_STORE_CONNECT_API_KEY_ID: ${{ secrets.APP_STORE_CONNECT_API_KEY_ID }} | |
APP_STORE_CONNECT_API_ISSUER_ID: ${{ secrets.APP_STORE_CONNECT_API_ISSUER_ID }} | |
APP_STORE_CONNECT_API_KEY_CONTENT: ${{ secrets.APP_STORE_CONNECT_API_KEY_CONTENT }} | |
APP_STORE_CONNECT_USER_ID: ${{ secrets.APP_STORE_CONNECT_USER_ID }} | |
run: bundle exec fastlane release_ios |