You might have API keys and other secrets that your app needs to consume — either at run time or during a build. However, you might not want to check these secrets into your source code to make them available to your app.
In order to securely propagate your credentials to your build and app, buddybuild provides three sets of variables that you can define:
-
Environment Variables (made available to your build time scripts)
-
Device Variables (available your App at run time via the buddybuild SDK)
-
Secure Files (files made available to your build time scripts)
Let’s get started with Secure Files!
Launch the buddybuild dashboard and select App Settings.
In the left navigation, select Build settings, then Secure files.
Select the file you would like to upload and select Upload file
Your file is now ready to be consumed by your app.
Your secure files are automatically consumed by tools that are expecting them.
If you would like to access them in your custom build scripts, use the bash variable expansion syntax.
./Example.framework/run ${BUDDYBUILD_SECURE_FILES}/file.txtIf you are building an Android app with Gradle (Android Studio),
you can also access them 2 ways inside your build.gradle file.
You can access them via System.getenv(), like this:
signing.keyId=1234567
signing.password=secret
signing.secretKeyRingFile= new File(System.getenv("BUDDYBUILD_SECURE_FILES") + "/secring.gpg")That’s it! For more details, refer to our SDK API guide.