发表新帖
发表新帖

Is google-services.json confidential?

后端 未结
关注
3 1198
野性不改
野性不改 2020-12-25 11:56

Following the guide on setting up Google Analytics in an Android app (https://developers.google.com/analytics/devguides/collection/android/v4/) I am left wondering if this g

相关标签:
3条回答
  • 一生所求
    2020-12-25 12:34

    It should be considered confidential. The json file that is generated contains an api_key that you can use to send push notifications.

    If you go to Credentials page on the Google Developer Console, you'll see the key in the json file listed under API keys

    0 讨论(0)
  • 星月不相逢
    2020-12-25 12:52

    Yes. At least the api_keystuff should be kept confidential.

    One way to put google-services.json into your public repository and still keep it confidential is to use BlackBox.

    In your app level build.gradle put a copy task in for example defaultConfig like this:

    defaultConfig {
    ...
    ...
    copy {
        from "../secret/"
        into "."
        include "*.json"
    }
}

    which will copy the file from your secret/ folder to the right spot.

    Now, to build your app you'll have to run blackbox_edit_start google-services.json.gpg the first time you check out your repo, and after that you're good.

    0 讨论(0)
  • 广开言路
    2020-12-25 12:53

    From this post it seems there's no real reason to keep this file safe. It's data will be in the APK anyway.

    0 讨论(0)
 看不清?
提交回复
热议问题