2026-06-15 18:43:43 -05:00
|
|
|
# Android SDK location (replace with your actual path)
|
|
|
|
|
sdk.dir=/home/kaspa/Android/Sdk
|
feat: security hardening, CI, analytics, invite deep links, solo mode, weekly recap
Roadmap phases 0-3.1 (see plan). Verified: unit tests, functions tests,
firestore rules 119/119, live emulator smokes.
Security + CI:
- Move App Check debug token out of committed build.gradle.kts to
local.properties (secret() resolver: local.properties -> -P -> env);
admin service-account key relocated outside the repo.
- Add GitHub Actions (android unit/scan/gitleaks, backend functions +
rules emulator via emulators:exec) with a CI google-services.json stub
and a reviewed .gitleaksignore baseline.
- Fix firestore rules tests to the current deployed contract (was 108/118,
now 119/119).
Analytics + consent:
- FirebaseRetentionAnalytics behind a fail-safe composite sink, single-
sourced hashing (AnalyticsHashing), Settings -> Privacy opt-out toggle
gating Firebase + the sink, and the ~11 missing event call sites.
- NoPlaintextInAnalyticsTest guards the content-free rule at build time.
Funnel:
- Invite deep links (https App Link + closer:// fallback), JoinLink parser,
PendingJoinCodeStore, prefilled/already-paired pairing, richer share text.
- Solo pre-pairing: UnpairedLockedCard on Play, SoloAnswerMigrator + consent
dialog moving pre-pairing answers into Couple Lore.
Weekly recap:
- WeeklyRecapScreen driven by the existing generator from local answer data,
Home card rewired, content-free shareable card.
Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
2026-07-06 20:33:38 -05:00
|
|
|
|
|
|
|
|
# ── Secrets (never committed; local.properties is gitignored) ──────────────
|
|
|
|
|
# Resolution order in app/build.gradle.kts: local.properties → -P/gradle.properties → env.
|
|
|
|
|
|
|
|
|
|
# RevenueCat public SDK key (required for release builds; debug falls back to a placeholder)
|
|
|
|
|
#RC_API_KEY=goog_xxxxxxxxxxxxxxxx
|
|
|
|
|
|
|
|
|
|
# App Check debug token (Firebase Console > App Check > Apps > Manage debug tokens).
|
|
|
|
|
# Debug-only; when absent (e.g. CI) the build uses an empty value and each install
|
|
|
|
|
# mints its own unregistered token.
|
|
|
|
|
#APP_CHECK_DEBUG_TOKEN=00000000-0000-0000-0000-000000000000
|
|
|
|
|
|
|
|
|
|
# Release signing (required for assembleRelease/bundleRelease)
|
|
|
|
|
#RELEASE_STORE_FILE=keystore/closer-release.jks
|
|
|
|
|
#RELEASE_STORE_PASSWORD=...
|
|
|
|
|
#RELEASE_KEY_ALIAS=...
|
|
|
|
|
#RELEASE_KEY_PASSWORD=...
|