4.7 KiB
Overview
We aim for the main branch of the repository to always be in a releasable state.
Two types of artifacts can be published:
- Snapshot — An unstable release of the SDK for testing
- Release — A stable release of the SDK
Control of these modes of release is managed with a Gradle property IS_SNAPSHOT
.
For both snapshot and release publishing, there are two ways to initiate deployment:
- Automatically
- Manually
This document will focus initially on the automated process, with a section at the end on manual process. (The automated process more or less implements the manual process via GitHub Actions.)
Automated Publishing
Snapshots
All merges to the main branch trigger an automated snapshot deployment.
Note that snapshots do not have a stable API, so clients should not depend on a snapshot. The primary reason this is documented is for testing, e.g. before deploying a new production version of the SDK we may test against the snapshot first.
Snapshots can be consumed by:
- Adding the snapshot repository settings.gradle.kts:
dependencyResolutionManagement {
repositories {
maven("https://oss.sonatype.org/content/repositories/snapshots") {
// Optional; ensures only explicitly declared dependencies come from this repository
content {
includeGroup("cash.z.ecc.android")
}
}
}
}
-
Changing the dependency version to end with
-SNAPSHOT
-
Rebuilding
./gradlew assemble --refresh-dependencies
Because Gradle caches dependencies and because multiple snapshots can be deployed under the same version number, using --refresh-dependencies
is important to ensure the latest snapshot is pulled. (#533 will make it easier to identify version of the snapshot in the future).
Releases
Production releases can be consumed using the instructions in the README.MD. Note that production releases can include alpha or beta designations.
Automated production releases still require a manual trigger. To do a production release:
- Update the CHANGELOG and MIGRATIONS.md for any new changes since the last production release.
- Run the release deployment.
- Due to #535, release deployments are not fully automated. See the workaround steps in that issue and complete those steps.
- Confirm deployment succeeded by modifying the ECC Wallet to consume the new SDK version.
- Create a new Git tag for the new release in this repository.
- Create a new pull request bumping the version to the next version (this ensures that the next merge to the main branch creates a snapshot under the next version number).
Manual Publishing
See ci.md, which describes the continuous integration workflow for deployment and describes the secrets that would need to be configured in a repository fork.
One time only
- Set up environment to compile the SDK
- Copy the GPG key to a directory with proper permissions (chmod 600). Note: If you'd like to quickly publish locally without subsequently publishing to Maven Central, configure a Gradle property
RELEASE_SIGNING_ENABLED=false
- Create file
~/.gradle/gradle.properties
per the instructions in this guide- add your sonotype credentials with these properties
mavenCentralUsername
mavenCentralPassword
- point it to the GPG key with these properties
signing.keyId
signing.password
signing.secretKeyRingFile
- add your sonotype credentials with these properties
Every time
- Update the build number and the CHANGELOG. For release builds, suffix the Gradle invocations below with
-PIS_SNAPSHOT=false
. - Build locally
- This will install the files in your local maven repo at
~/.m2/repository/cash/z/ecc/android/
- This will install the files in your local maven repo at
./gradlew publishToMavenLocal
- Publish via the following command:
# This uploads the file to sonotype’s staging area
./gradlew publish --no-daemon --no-parallel
- Deploy to maven central:
# This closes the staging repository and releases it to the world
./gradlew closeAndReleaseRepository
Note: Our existing artifacts can be found here and here: https://search.maven.org/artifact/cash.z.ecc.android/zcash-android-sdk https://repo1.maven.org/maven2/cash/z/ecc/android/