From eae19e1d70556ab2b25b2a5387f961d1353c0176 Mon Sep 17 00:00:00 2001 From: freetlab Date: Wed, 27 May 2026 14:01:53 +0200 Subject: [PATCH] feat(ci): automate play upload from PRO --- .gitea/workflows/build.yml | 82 +++++++++++++---- docs/pluriwave-play-store-publicacion.md | 110 +++++++++++++++++++++++ fastlane/Appfile | 1 + fastlane/Fastfile | 25 ++++++ 4 files changed, 199 insertions(+), 19 deletions(-) create mode 100644 docs/pluriwave-play-store-publicacion.md create mode 100644 fastlane/Appfile create mode 100644 fastlane/Fastfile diff --git a/.gitea/workflows/build.yml b/.gitea/workflows/build.yml index 92ba07d..330a5a3 100644 --- a/.gitea/workflows/build.yml +++ b/.gitea/workflows/build.yml @@ -1,24 +1,28 @@ -name: Build & Deploy Pluriwave +name: Build & Deploy PluriWave on: push: - branches: [main] + branches: [main, PRO] env: PATH: /opt/homebrew/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin ANDROID_HOME: /Users/freetlab/Library/Android/sdk KEYSTORE_PATH: /Users/freetlab/.openclaw/workspace/.secure/pluriwave/pluriwave-upload.jks KEYSTORE_ALIAS: pluriwave-upload + PLAY_PACKAGE_NAME: es.freetimelab.pluriwave + CURRENT_REF: ${{ gitea.ref }} jobs: analizar: name: Análisis de código runs-on: [self-hosted, macos, arm64, flutter] steps: - - name: Clonar repo + - name: Clonar rama actual run: | + BRANCH="${CURRENT_REF#refs/heads/}" git clone https://ShanaiaBot:${{ secrets.GITEA_TOKEN }}@git.freetimelab.es/FreeTLab/pluriwave.git . - git fetch origin main + git fetch origin "$BRANCH" + git checkout "$BRANCH" - name: Obtener dependencias run: flutter pub get @@ -30,12 +34,13 @@ jobs: name: Build APK + AAB release runs-on: [self-hosted, macos, arm64, flutter] needs: analizar - if: ${{ gitea.ref == 'refs/heads/main' }} steps: - - name: Clonar repo + - name: Clonar rama actual run: | + BRANCH="${CURRENT_REF#refs/heads/}" git clone https://ShanaiaBot:${{ secrets.GITEA_TOKEN }}@git.freetimelab.es/FreeTLab/pluriwave.git . - git fetch origin main + git fetch origin "$BRANCH" + git checkout "$BRANCH" - name: Configurar keystore de firma env: @@ -53,29 +58,32 @@ jobs: - name: Bump versión patch + commit run: | + BRANCH="${CURRENT_REF#refs/heads/}" git config user.name "ShanaiaBot" git config user.email "shanaia@freetimelab.es" CURRENT=$(grep '^version:' pubspec.yaml | awk '{print $2}') - SEMVER=$(echo $CURRENT | cut -d'+' -f1) - BUILD=$(echo $CURRENT | cut -d'+' -f2) - MAJOR=$(echo $SEMVER | cut -d. -f1) - MINOR=$(echo $SEMVER | cut -d. -f2) - PATCH=$(echo $SEMVER | cut -d. -f3) + SEMVER=$(echo "$CURRENT" | cut -d'+' -f1) + BUILD=$(echo "$CURRENT" | cut -d'+' -f2) + MAJOR=$(echo "$SEMVER" | cut -d. -f1) + MINOR=$(echo "$SEMVER" | cut -d. -f2) + PATCH=$(echo "$SEMVER" | cut -d. -f3) NEW_PATCH=$((PATCH + 1)) NEW_BUILD=$((BUILD + 1)) NEW_VERSION="${MAJOR}.${MINOR}.${NEW_PATCH}+${NEW_BUILD}" sed -i '' "s/^version: .*/version: ${NEW_VERSION}/" pubspec.yaml git add pubspec.yaml git commit -m "chore: bump version to ${NEW_VERSION} [ci skip]" - git push origin main + git push origin "HEAD:${BRANCH}" - name: Extraer versión id: version run: | VERSION=$(grep '^version:' pubspec.yaml | awk '{print $2}' | cut -d'+' -f1) + BUILD_NUMBER=$(grep '^version:' pubspec.yaml | awk '{print $2}' | cut -d'+' -f2) COMMIT=$(git rev-parse --short HEAD) - echo "version=$VERSION" >> $GITHUB_OUTPUT - echo "commit=$COMMIT" >> $GITHUB_OUTPUT + echo "version=$VERSION" >> "$GITHUB_OUTPUT" + echo "build_number=$BUILD_NUMBER" >> "$GITHUB_OUTPUT" + echo "commit=$COMMIT" >> "$GITHUB_OUTPUT" - name: Obtener dependencias run: flutter pub get @@ -91,10 +99,14 @@ jobs: KEYSTORE_PASSWORD: ${{ secrets.PLURIWAVE_KEYSTORE_PASSWORD }} run: | echo "=== Huellas del keystore ===" - keytool -list -v -keystore "$KEYSTORE_PATH" -alias $KEYSTORE_ALIAS -storepass "$KEYSTORE_PASSWORD" 2>/dev/null | grep "SHA1:\|SHA256:" + KEYSTORE_INFO=$(keytool -list -v -keystore "$KEYSTORE_PATH" -alias "$KEYSTORE_ALIAS" -storepass "$KEYSTORE_PASSWORD" 2>/dev/null) || { + echo "ERROR: no se pudo leer el keystore de firma" + exit 1 + } + echo "$KEYSTORE_INFO" | grep -E "SHA1:|SHA256:" || true echo "" echo "=== Huellas del AAB (desde ZIP) ===" - unzip -p build/app/outputs/bundle/release/app-release.aab META-INF/CERT.RSA | keytool -printcert 2>/dev/null | grep "SHA1:\|SHA256:" || echo "(verificado tras build)" + unzip -p build/app/outputs/bundle/release/app-release.aab META-INF/CERT.RSA | keytool -printcert 2>/dev/null | grep -E "SHA1:|SHA256:" || echo "(huellas no extraídas, build generado)" - name: Publicar en ftl-builds (Zimaboard) run: | @@ -114,17 +126,49 @@ jobs: echo "✅ APK: builds.freetimelab.es → pluriwave → v${VERSION}" echo "✅ AAB: builds.freetimelab.es → pluriwave → v${VERSION}" + - name: Preparar credenciales de Google Play + if: ${{ gitea.ref == 'refs/heads/PRO' }} + env: + GOOGLE_PLAY_SERVICE_ACCOUNT_JSON: ${{ secrets.GOOGLE_PLAY_SERVICE_ACCOUNT_JSON }} + run: | + if [ -z "$GOOGLE_PLAY_SERVICE_ACCOUNT_JSON" ]; then + echo "ERROR: falta el secreto GOOGLE_PLAY_SERVICE_ACCOUNT_JSON" + exit 1 + fi + mkdir -p fastlane/credentials + printf '%s' "$GOOGLE_PLAY_SERVICE_ACCOUNT_JSON" > fastlane/credentials/google-play-service-account.json + + - name: Instalar Fastlane + if: ${{ gitea.ref == 'refs/heads/PRO' }} + run: | + gem list -i fastlane >/dev/null 2>&1 || gem install fastlane --no-document + + - name: Publicar AAB en Google Play Internal Testing + if: ${{ gitea.ref == 'refs/heads/PRO' }} + env: + PLAY_JSON_KEY_PATH: fastlane/credentials/google-play-service-account.json + PLAY_AAB_PATH: build/app/outputs/bundle/release/app-release.aab + PLAY_TRACK: internal + PLAY_RELEASE_STATUS: completed + run: fastlane android upload_internal + - name: Notificar Telegram if: always() run: | VERSION="${{ steps.version.outputs.version }}" COMMIT="${{ steps.version.outputs.commit }}" + BRANCH="${CURRENT_REF#refs/heads/}" BOT_TOKEN=$(plutil -extract 'EnvironmentVariables:TELEGRAM_BOT_TOKEN' raw /Users/freetlab/Library/LaunchAgents/ai.openclaw.gateway.plist 2>/dev/null || echo "") if [ -z "$BOT_TOKEN" ]; then exit 0; fi if [ "${{ job.status }}" = "success" ]; then - MSG="✅ *Pluriwave* v${VERSION} build OK (firma release) · ${COMMIT}%0AAPK + AAB en builds.freetimelab.es" + MSG="✅ *PluriWave* v${VERSION} · rama ${BRANCH} · ${COMMIT}%0AAPK + AAB generados" + if [ "$BRANCH" = "PRO" ]; then + MSG="${MSG}%0APublicado en Google Play · Internal Testing" + else + MSG="${MSG}%0APublicado en builds.freetimelab.es" + fi else - MSG="❌ *Pluriwave* v${VERSION} build FAILED · ${COMMIT}" + MSG="❌ *PluriWave* build FAILED · rama ${BRANCH} · ${COMMIT}" fi curl -s -X POST "https://api.telegram.org/bot${BOT_TOKEN}/sendMessage" \ -d "chat_id=221721467" -d "parse_mode=Markdown" -d "text=${MSG}" || true diff --git a/docs/pluriwave-play-store-publicacion.md b/docs/pluriwave-play-store-publicacion.md new file mode 100644 index 0000000..8275a69 --- /dev/null +++ b/docs/pluriwave-play-store-publicacion.md @@ -0,0 +1,110 @@ +# PluriWave · Guía de publicación automática en Google Play + +> Estado: en preparación +> Última revisión: 2026-05-27 + +## Objetivo + +Dejar **PluriWave** con un flujo de publicación lo más automático posible: + +- `main` → desarrollo diario, pruebas y artefactos internos +- `PRO` → publicación automática a **Google Play Internal Testing** + +## Estrategia acordada + +### Ramas + +- **`main`** + - desarrollo diario + - análisis, tests y builds internos + - NO publica en Google Play +- **`PRO`** + - rama de release permanente + - al subir cambios aquí, se genera el **AAB release firmado** + - publica automáticamente en **Google Play · Prueba interna** + +### Publicación + +1. Bootstrap manual inicial en Play Console +2. Configuración correcta del keystore de subida +3. Integración con Google Play Developer API +4. Automatización desde Gitea Actions + +## Estado actual del proyecto + +### Verificado en el repositorio + +- Existe workflow en `.gitea/workflows/build.yml` +- Actualmente compila y firma correctamente en CI +- Genera: + - APK release + - AAB release +- Publica artefactos internos en `ftl-builds` +- Ya existe soporte para keystore release desde `android/key.properties` + +### Verificado en Play Console + +- La app ya está creada +- Nombre: `PluriWave` +- Package: `es.freetimelab.pluriwave` +- Ya se ha subido manualmente un **AAB** al canal de **prueba interna** +- Producción sigue bloqueada por el requisito de: + - prueba cerrada + - 12 testers + - 14 días + +## Automatización prevista en CI + +### `main` + +- `flutter pub get` +- `flutter analyze` +- build release +- publicación de APK/AAB en infraestructura interna + +### `PRO` + +- `flutter pub get` +- `flutter analyze` +- build release firmado +- publicación de APK/AAB en infraestructura interna +- subida automática del `.aab` a Google Play **track internal** + +## Secretos necesarios en Gitea + +### Ya usados por firma + +- `PLURIWAVE_KEYSTORE_PASSWORD` +- `GITEA_TOKEN` + +### Necesarios para Play Store + +- `GOOGLE_PLAY_SERVICE_ACCOUNT_JSON` + +> Debe contener el JSON completo de una **Service Account** con acceso concedido en Play Console a esta aplicación. + +## Ficheros implicados + +- `.gitea/workflows/build.yml` +- `fastlane/Fastfile` +- `fastlane/Appfile` +- `android/app/build.gradle.kts` + +## Siguiente validación manual + +Cuando la automatización quede desplegada: + +1. crear la rama `PRO` en remoto +2. configurar `GOOGLE_PLAY_SERVICE_ACCOUNT_JSON` +3. hacer push a `PRO` +4. comprobar que: + - compila + - firma + - genera AAB + - sube a Google Play Internal Testing + +## Notas importantes + +- El canal automatizado inicial será **internal testing**, no producción +- La primera publicación manual en Play Console ya quedó hecha +- La automatización NO elimina el requisito posterior de closed testing antes de producción diff --git a/fastlane/Appfile b/fastlane/Appfile new file mode 100644 index 0000000..4cd38bf --- /dev/null +++ b/fastlane/Appfile @@ -0,0 +1 @@ +package_name(ENV["PLAY_PACKAGE_NAME"] || "es.freetimelab.pluriwave") diff --git a/fastlane/Fastfile b/fastlane/Fastfile new file mode 100644 index 0000000..377c4ed --- /dev/null +++ b/fastlane/Fastfile @@ -0,0 +1,25 @@ +default_platform(:android) + +platform :android do + desc "Sube el AAB actual al track internal de Google Play" + lane :upload_internal do + json_key_path = ENV["PLAY_JSON_KEY_PATH"] + aab_path = ENV["PLAY_AAB_PATH"] || "build/app/outputs/bundle/release/app-release.aab" + package_name = ENV["PLAY_PACKAGE_NAME"] || "es.freetimelab.pluriwave" + + UI.user_error!("Falta PLAY_JSON_KEY_PATH") if json_key_path.to_s.empty? + UI.user_error!("No existe el AAB en #{aab_path}") unless File.exist?(aab_path) + + upload_to_play_store( + json_key: json_key_path, + package_name: package_name, + aab: aab_path, + track: ENV["PLAY_TRACK"] || "internal", + release_status: ENV["PLAY_RELEASE_STATUS"] || "completed", + skip_upload_metadata: true, + skip_upload_images: true, + skip_upload_screenshots: true, + skip_upload_changelogs: true + ) + end +end