justcoding121
diff --git a/‎.github/workflows/build.yml‎
Lines changed: 13 additions & 0 deletions b/‎.github/workflows/build.yml‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎.github/workflows/deploy-android.yml‎
Lines changed: 127 additions & 0 deletions b/‎.github/workflows/deploy-android.yml‎
Lines changed: 127 additions & 0 deletions
diff --git a/‎.github/workflows/deploy-ios.yml‎
Lines changed: 172 additions & 0 deletions b/‎.github/workflows/deploy-ios.yml‎
Lines changed: 172 additions & 0 deletions
@@ -26,3 +26,16 @@ jobs:
 
     - name: Build solution
       run: dotnet build src/Bible.Alarm.sln --configuration Release --no-restore
+      
+    - name: Run tests
+      run: dotnet test src/Bible.Alarm.sln --configuration Release --no-build --verbosity normal --logger "trx;LogFileName=test-results.trx" --collect:"XPlat Code Coverage"
+      
+    - name: Upload test results
+      uses: actions/upload-artifact@v4
+      if: always()
+      with:
+        name: test-results
+        path: |
+          **/test-results.trx
+          **/coverage.cobertura.xml
+        retention-days: 30
@@ -0,0 +1,127 @@
+name: Deploy Android to Google Play
+
+on:
+  push:
+    branches:
+      - stable
+
+jobs:
+  deploy-android:
+    runs-on: ubuntu-latest
+    
+    env:
+      SYNCFUSION_LICENSE_KEY: ${{ secrets.SYNCFUSION_LICENSE_KEY }}
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      with:
+        ref: stable
+        token: ${{ secrets.GITHUB_TOKEN }}
+        
+    - name: Setup .NET
+      uses: actions/setup-dotnet@v4
+      with:
+        dotnet-version: '10.0.x'
+        
+    - name: Setup Android SDK
+      uses: android-actions/setup-android@v3
+      
+    - name: Setup Java
+      uses: actions/setup-java@v4
+      with:
+        distribution: 'temurin'
+        java-version: '17'
+
+    # Decode and setup the keystore for signing
+    - name: Decode Keystore
+      run: |
+        # Use temp directory to ensure keystore is never committed
+        KEYSTORE_PATH="${{ runner.temp }}/android-keystore.jks"
+        echo "${{ secrets.ANDROID_KEYSTORE_BASE64 }}" | base64 --decode > "$KEYSTORE_PATH"
+        echo "KEYSTORE_PATH=$KEYSTORE_PATH" >> $GITHUB_ENV
+      
+    - name: Restore dependencies
+      run: dotnet restore src/Bible.Alarm.sln
+      
+    # Patch version using the version patcher tool
+    - name: Patch Android Version
+      run: |
+        # Run version patcher for Android
+        dotnet run --project .tools/Bible.Alarm.VersionPatcher/Bible.Alarm.VersionPatcher.csproj --configuration Release
+        
+        # Also increment ApplicationVersion in csproj for MAUI
+        CSPROJ_FILE="src/Bible.Alarm/Bible.Alarm.csproj"
+        CURRENT_VERSION=$(grep -oP '(?<=<ApplicationVersion>)\d+(?=</ApplicationVersion>)' "$CSPROJ_FILE")
+        NEW_VERSION=$((CURRENT_VERSION + 1))
+        sed -i "s/<ApplicationVersion>$CURRENT_VERSION<\/ApplicationVersion>/<ApplicationVersion>$NEW_VERSION<\/ApplicationVersion>/" "$CSPROJ_FILE"
+        
+        # Increment ApplicationDisplayVersion (minor version)
+        CURRENT_DISPLAY=$(grep -oP '(?<=<ApplicationDisplayVersion>)[^<]+(?=</ApplicationDisplayVersion>)' "$CSPROJ_FILE")
+        MAJOR=$(echo $CURRENT_DISPLAY | cut -d. -f1)
+        MINOR=$(echo $CURRENT_DISPLAY | cut -d. -f2)
+        NEW_MINOR=$((MINOR + 1))
+        if [ $NEW_MINOR -gt 99 ]; then
+          NEW_MINOR=0
+          MAJOR=$((MAJOR + 1))
+        fi
+        NEW_DISPLAY="$MAJOR.$NEW_MINOR"
+        sed -i "s/<ApplicationDisplayVersion>$CURRENT_DISPLAY<\/ApplicationDisplayVersion>/<ApplicationDisplayVersion>$NEW_DISPLAY<\/ApplicationDisplayVersion>/" "$CSPROJ_FILE"
+        
+        echo "Updated ApplicationVersion: $CURRENT_VERSION -> $NEW_VERSION"
+        echo "Updated ApplicationDisplayVersion: $CURRENT_DISPLAY -> $NEW_DISPLAY"
+
+    # Build Android release
+    - name: Build Android Release
+      run: |
+        dotnet publish src/Bible.Alarm/Bible.Alarm.csproj \
+          --configuration Release \
+          --framework net10.0-android \
+          -p:AndroidKeyStore=true \
+          -p:AndroidSigningKeyStore=${{ runner.temp }}/android-keystore.jks \
+          -p:AndroidSigningKeyAlias=${{ secrets.ANDROID_KEY_ALIAS }} \
+          -p:AndroidSigningKeyPass=${{ secrets.ANDROID_KEY_PASSWORD }} \
+          -p:AndroidSigningStorePass=${{ secrets.ANDROID_KEYSTORE_PASSWORD }} \
+          -p:AndroidPackageFormat=aab \
+          --output ./artifacts/android
+
+    # Upload to Google Play Store
+    - name: Upload to Google Play
+      uses: r0adkll/upload-google-play@v1
+      with:
+        serviceAccountJsonPlainText: ${{ secrets.GOOGLE_PLAY_SERVICE_ACCOUNT_JSON }}
+        packageName: com.jthomas.info.Bible.Alarm
+        releaseFiles: ./artifacts/android/*.aab
+        track: production
+        status: completed
+        
+    # Clean up keystore
+    - name: Clean up keystore
+      if: always()
+      run: rm -f "${{ runner.temp }}/android-keystore.jks"
+
+    # Verify no secrets are staged before committing
+    - name: Verify no secrets in working directory
+      run: |
+        # Check for common secret file patterns
+        if find . -name "*.jks" -o -name "*.keystore" -o -name "*.pfx" -o -name "*.p12" -o -name "*.p8" -o -name "*.mobileprovision" | grep -v ".git"; then
+          echo "ERROR: Secret files found in working directory!"
+          find . -name "*.jks" -o -name "*.keystore" -o -name "*.pfx" -o -name "*.p12" -o -name "*.p8" -o -name "*.mobileprovision" | grep -v ".git"
+          exit 1
+        fi
+        echo "✓ No secret files found in working directory"
+
+    # Commit version changes (only specific version files)
+    - name: Commit version changes
+      uses: EndBug/add-and-commit@v9
+      with:
+        author_name: github-actions[bot]
+        author_email: github-actions[bot]@users.noreply.github.com
+        message: '[Android] Update app version for Play Store release'
+        add: |
+          src/Bible.Alarm/Bible.Alarm.csproj
+          src/Bible.Alarm/Platforms/Android/AndroidManifest.xml
+        # Explicitly ignore all other files to prevent accidental commits
+        default_author: github_actions
+        skip_dirty_check: false
+        push: true
@@ -0,0 +1,172 @@
+name: Deploy iOS to App Store
+
+on:
+  push:
+    branches:
+      - stable
+
+jobs:
+  deploy-ios:
+    runs-on: macos-latest
+    
+    env:
+      SYNCFUSION_LICENSE_KEY: ${{ secrets.SYNCFUSION_LICENSE_KEY }}
+    
+    steps:
+    - name: Checkout code
+      uses: actions/checkout@v4
+      with:
+        ref: stable
+        token: ${{ secrets.GITHUB_TOKEN }}
+        
+    - name: Setup .NET
+      uses: actions/setup-dotnet@v4
+      with:
+        dotnet-version: '10.0.x'
+        
+    - name: Select Xcode version
+      run: sudo xcode-select -s /Applications/Xcode.app/Contents/Developer
+
+    # Decode and install Apple certificates and provisioning profiles
+    - name: Install Apple Certificate
+      env:
+        APPLE_CERTIFICATE_BASE64: ${{ secrets.APPLE_CERTIFICATE_BASE64 }}
+        APPLE_CERTIFICATE_PASSWORD: ${{ secrets.APPLE_CERTIFICATE_PASSWORD }}
+        KEYCHAIN_PASSWORD: ${{ secrets.KEYCHAIN_PASSWORD }}
+      run: |
+        # Create variables
+        CERTIFICATE_PATH=$RUNNER_TEMP/build_certificate.p12
+        KEYCHAIN_PATH=$RUNNER_TEMP/app-signing.keychain-db
+
+        # Decode certificate
+        echo -n "$APPLE_CERTIFICATE_BASE64" | base64 --decode -o $CERTIFICATE_PATH
+
+        # Create temporary keychain
+        security create-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
+        security set-keychain-settings -lut 21600 $KEYCHAIN_PATH
+        security unlock-keychain -p "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
+
+        # Import certificate to keychain
+        security import $CERTIFICATE_PATH -P "$APPLE_CERTIFICATE_PASSWORD" -A -t cert -f pkcs12 -k $KEYCHAIN_PATH
+        security set-key-partition-list -S apple-tool:,apple: -s -k "$KEYCHAIN_PASSWORD" $KEYCHAIN_PATH
+        security list-keychain -d user -s $KEYCHAIN_PATH
+
+    - name: Install Provisioning Profile
+      env:
+        PROVISIONING_PROFILE_BASE64: ${{ secrets.IOS_PROVISIONING_PROFILE_BASE64 }}
+      run: |
+        # Create Provisioning Profiles directory
+        mkdir -p ~/Library/MobileDevice/Provisioning\ Profiles
+        
+        # Decode and install provisioning profile
+        echo -n "$PROVISIONING_PROFILE_BASE64" | base64 --decode -o ~/Library/MobileDevice/Provisioning\ Profiles/profile.mobileprovision
+        
+    - name: Restore dependencies
+      run: dotnet restore src/Bible.Alarm.sln
+      
+    # Patch version
+    - name: Patch iOS Version
+      run: |
+        # Run version patcher
+        dotnet run --project .tools/Bible.Alarm.VersionPatcher/Bible.Alarm.VersionPatcher.csproj --configuration Release
+        
+        # Also increment ApplicationVersion in csproj for MAUI
+        CSPROJ_FILE="src/Bible.Alarm/Bible.Alarm.csproj"
+        CURRENT_VERSION=$(grep -oE '<ApplicationVersion>[0-9]+</ApplicationVersion>' "$CSPROJ_FILE" | grep -oE '[0-9]+')
+        NEW_VERSION=$((CURRENT_VERSION + 1))
+        sed -i '' "s/<ApplicationVersion>$CURRENT_VERSION<\/ApplicationVersion>/<ApplicationVersion>$NEW_VERSION<\/ApplicationVersion>/" "$CSPROJ_FILE"
+        
+        # Increment CFBundleVersion in Info.plist
+        PLIST_FILE="src/Bible.Alarm/Platforms/iOS/Info.plist"
+        CURRENT_BUNDLE_VERSION=$(/usr/libexec/PlistBuddy -c "Print :CFBundleVersion" "$PLIST_FILE")
+        MAJOR=$(echo $CURRENT_BUNDLE_VERSION | cut -d. -f1)
+        MINOR=$(echo $CURRENT_BUNDLE_VERSION | cut -d. -f2)
+        NEW_MINOR=$((MINOR + 1))
+        if [ $NEW_MINOR -gt 99 ]; then
+          NEW_MINOR=0
+          MAJOR=$((MAJOR + 1))
+        fi
+        NEW_BUNDLE_VERSION="$MAJOR.$NEW_MINOR"
+        /usr/libexec/PlistBuddy -c "Set :CFBundleVersion $NEW_BUNDLE_VERSION" "$PLIST_FILE"
+        
+        echo "Updated ApplicationVersion: $CURRENT_VERSION -> $NEW_VERSION"
+        echo "Updated CFBundleVersion: $CURRENT_BUNDLE_VERSION -> $NEW_BUNDLE_VERSION"
+
+    # Build iOS release
+    - name: Build iOS Release
+      run: |
+        dotnet publish src/Bible.Alarm/Bible.Alarm.csproj \
+          --configuration Release \
+          --framework net10.0-ios \
+          -p:ArchiveOnBuild=true \
+          -p:CodesignKey="${{ secrets.APPLE_CODESIGN_IDENTITY }}" \
+          -p:CodesignProvision="${{ secrets.IOS_PROVISIONING_PROFILE_NAME }}" \
+          --output ./artifacts/ios
+
+    # Upload to App Store Connect using Transporter
+    - name: Upload to App Store Connect
+      env:
+        APP_STORE_CONNECT_API_KEY_ID: ${{ secrets.APP_STORE_CONNECT_API_KEY_ID }}
+        APP_STORE_CONNECT_API_ISSUER_ID: ${{ secrets.APP_STORE_CONNECT_API_ISSUER_ID }}
+        APP_STORE_CONNECT_API_KEY_BASE64: ${{ secrets.APP_STORE_CONNECT_API_KEY_BASE64 }}
+      run: |
+        # Decode API key
+        mkdir -p ~/private_keys
+        echo -n "$APP_STORE_CONNECT_API_KEY_BASE64" | base64 --decode -o ~/private_keys/AuthKey_$APP_STORE_CONNECT_API_KEY_ID.p8
+        
+        # Find the .ipa file
+        IPA_PATH=$(find ./artifacts/ios -name "*.ipa" | head -1)
+        
+        if [ -z "$IPA_PATH" ]; then
+          echo "No .ipa file found, looking for .app bundle..."
+          # If no IPA, try to create one from the app bundle
+          APP_PATH=$(find ./artifacts/ios -name "*.app" -type d | head -1)
+          if [ -n "$APP_PATH" ]; then
+            mkdir -p Payload
+            cp -R "$APP_PATH" Payload/
+            zip -r ./artifacts/ios/Bible.Alarm.ipa Payload
+            IPA_PATH="./artifacts/ios/Bible.Alarm.ipa"
+            rm -rf Payload
+          fi
+        fi
+        
+        # Upload using xcrun altool
+        xcrun altool --upload-app \
+          --type ios \
+          --file "$IPA_PATH" \
+          --apiKey "$APP_STORE_CONNECT_API_KEY_ID" \
+          --apiIssuer "$APP_STORE_CONNECT_API_ISSUER_ID"
+
+    # Clean up keychain and provisioning profile
+    - name: Cleanup
+      if: always()
+      run: |
+        security delete-keychain $RUNNER_TEMP/app-signing.keychain-db || true
+        rm -rf ~/Library/MobileDevice/Provisioning\ Profiles/profile.mobileprovision || true
+        rm -rf ~/private_keys || true
+
+    # Verify no secrets are staged before committing
+    - name: Verify no secrets in working directory
+      run: |
+        # Check for common secret file patterns
+        if find . -name "*.jks" -o -name "*.keystore" -o -name "*.pfx" -o -name "*.p12" -o -name "*.p8" -o -name "*.mobileprovision" | grep -v ".git"; then
+          echo "ERROR: Secret files found in working directory!"
+          find . -name "*.jks" -o -name "*.keystore" -o -name "*.pfx" -o -name "*.p12" -o -name "*.p8" -o -name "*.mobileprovision" | grep -v ".git"
+          exit 1
+        fi
+        echo "✓ No secret files found in working directory"
+
+    # Commit version changes (only specific version files)
+    - name: Commit version changes
+      uses: EndBug/add-and-commit@v9
+      with:
+        author_name: github-actions[bot]
+        author_email: github-actions[bot]@users.noreply.github.com
+        message: '[iOS] Update app version for App Store release'
+        add: |
+          src/Bible.Alarm/Bible.Alarm.csproj
+          src/Bible.Alarm/Platforms/iOS/Info.plist
+        # Explicitly ignore all other files to prevent accidental commits
+        default_author: github_actions
+        skip_dirty_check: false
+        push: true