config.py 11.9 KB
Newer Older
Daniel Martí's avatar
Daniel Martí committed
1
#!/usr/bin/env python3
2

3 4
# Copy this file to config.py, then amend the settings below according to
# your system configuration.
Ciaran Gultnieks's avatar
Ciaran Gultnieks committed
5

6
# Custom path to the Android SDK, defaults to $ANDROID_HOME
Daniel Martí's avatar
Daniel Martí committed
7
# sdk_path = "$ANDROID_HOME"
8

Boris Kraut's avatar
Boris Kraut committed
9
# Custom paths to various versions of the Android NDK, defaults to 'r12b' set
10 11
# to $ANDROID_NDK. Most users will have the latest at $ANDROID_NDK, which is
# used by default. If a version is missing or assigned to None, it is assumed
12 13
# not installed.
# ndk_paths = {
14
#     'r9b': None,
Daniel Martí's avatar
Daniel Martí committed
15
#     'r10e': None,
Boris Kraut's avatar
Boris Kraut committed
16
#     'r11c': None,
Daniel Martí's avatar
Daniel Martí committed
17
#     'r12b': "$ANDROID_NDK",
est's avatar
est committed
18
#     'r13b': None,
Boris Kraut's avatar
Boris Kraut committed
19
#     'r14': None,
20
# }
21

est's avatar
est committed
22 23 24
# Path to the Qt SDK. It is of the form "/path/to/Qt5.7.0/5.7"
# qt_sdk_path = ""

25
# java_paths = {
Daniel Martí's avatar
Daniel Martí committed
26
#     '1.8': "/usr/lib/jvm/java-8-openjdk",
27 28
# }

29
# Build tools version to be used
30
# build_tools = "25.0.2"
31

32 33 34 35
# Force all build to use the above version of build -tools, good for testing
# builds without having all of the possible build-tools installed.
# force_build_tools = True

36
# Command or path to binary for running Ant
37
# ant = "ant"
38

39
# Command or path to binary for running maven 3
40
# mvn3 = "mvn"
Daniel Martí's avatar
Daniel Martí committed
41

42
# Command or path to binary for running Gradle
43
# gradle = "gradle"
44

45 46 47 48 49
# Set the maximum age (in days) of an index that a client should accept from
# this repo. Setting it to 0 or not setting it at all disables this
# functionality. If you do set this to a non-zero value, you need to ensure
# that your index is updated much more frequently than the specified interval.
# The same policy is applied to the archive repo, if there is one.
50
# repo_maxage = 0
51

52
repo_url = "https://MyFirstFDroidRepo.org/fdroid/repo"
53
repo_name = "My First F-Droid Repo Demo"
Ciaran Gultnieks's avatar
Ciaran Gultnieks committed
54
repo_icon = "fdroid-icon.png"
55
repo_description = """
56
This is a repository of apps to be used with F-Droid. Applications in this
57 58 59 60
repository are either official binaries built by the original application
developers, or are binaries built from source by the admin of f-droid.org
using the tools on https://gitlab.com/u/fdroid.
"""
Ciaran Gultnieks's avatar
Ciaran Gultnieks committed
61

62 63 64 65 66 67
# As above, but for the archive repo.
# archive_older sets the number of versions kept in the main repo, with all
# older ones going to the archive. Set it to 0, and there will be no archive
# repository, and no need to define the other archive_ values.
archive_older = 3
archive_url = "https://f-droid.org/archive"
68
archive_name = "My First F-Droid Archive Demo"
69
archive_icon = "fdroid-icon.png"
70 71 72
archive_description = """
The repository of older versions of applications from the main demo repository.
"""
73

74 75 76 77 78 79 80 81 82
# This allows a specific kind of insecure APK to be included in the
# 'repo' section.  Since April 2017, APK signatures that use MD5 are
# no longer considered valid, jarsigner and apksigner will return an
# error when verifying.  `fdroid update` will move APKs with these
# disabled signatures to the archive.  This option stops that
# behavior, and lets those APKs stay part of 'repo'.
#
# allow_disabled_algorithms = True

83
# Normally, all apps are collected into a single app repository, like on
84 85
# https://f-droid.org. For certain situations, it is better to make a repo
# that is made up of APKs only from a single app. For example, an automated
86 87 88
# build server that publishes nightly builds.
# per_app_repos = True

89
# `fdroid update` will create a link to the current version of a given app.
90
# This provides a static path to the current APK. To disable the creation of
91 92 93 94
# this link, uncomment this:
# make_current_version_link = False

# By default, the "current version" link will be based on the "Name" of the
95
# app from the metadata. You can change it to use a different field from the
96
# metadata here:
97
# current_version_name_source = 'packageName'
98

99
# Optionally, override home directory for gpg
100
# gpghome = '/home/fdroid/somewhere/else/.gnupg'
101

102
# The ID of a GPG key for making detached signatures for apks. Optional.
Daniel Martí's avatar
Daniel Martí committed
103
# gpgkey = '1DBA2E89'
104

105
# The key (from the keystore defined below) to be used for signing the
106 107
# repository itself. This is the same name you would give to keytool or
# jarsigner using -alias. (Not needed in an unsigned repository).
Daniel Martí's avatar
Daniel Martí committed
108
# repo_keyalias = "fdroidrepo"
109

110 111 112 113 114 115 116
# Optionally, the public key for the key defined by repo_keyalias above can
# be specified here. There is no need to do this, as the public key can and
# will be retrieved from the keystore when needed. However, specifying it
# manually can allow some processing to take place without access to the
# keystore.
# repo_pubkey = "..."

117 118 119
# The keystore to use for release keys when building. This needs to be
# somewhere safe and secure, and backed up!  The best way to manage these
# sensitive keys is to use a "smartcard" (aka Hardware Security Module). To
120
# configure F-Droid to use a smartcard, set the keystore file using the keyword
121
# "NONE" (i.e. keystore = "NONE"). That makes Java find the keystore on the
122
# smartcard based on 'smartcardoptions' below.
Daniel Martí's avatar
Daniel Martí committed
123
# keystore = "~/.local/share/fdroidserver/keystore.jks"
124 125 126

# You should not need to change these at all, unless you have a very
# customized setup for using smartcards in Java with keytool/jarsigner
Daniel Martí's avatar
Daniel Martí committed
127
# smartcardoptions = "-storetype PKCS11 -providerName SunPKCS11-OpenSC \
128 129
#    -providerClass sun.security.pkcs11.SunPKCS11 \
#    -providerArg opensc-fdroid.cfg"
130

131
# The password for the keystore (at least 6 characters). If this password is
132
# different than the keypass below, it can be OK to store the password in this
133
# file for real use. But in general, sensitive passwords should not be stored
134
# in text files!
Daniel Martí's avatar
Daniel Martí committed
135
# keystorepass = "password1"
136 137

# The password for keys - the same is used for each auto-generated key as well
138
# as for the repository key. You should not normally store this password in a
139
# file since it is a sensitive password.
Daniel Martí's avatar
Daniel Martí committed
140
# keypass = "password2"
141

Daniel Martí's avatar
Daniel Martí committed
142
# The distinguished name used for all keys.
143
# keydname = "CN=Birdman, OU=Cell, O=Alcatraz, L=Alcatraz, S=California, C=US"
144

Daniel Martí's avatar
Daniel Martí committed
145 146
# Use this to override the auto-generated key aliases with specific ones
# for particular applications. Normally, just leave it empty.
147 148
# keyaliases = {}
# keyaliases['com.example.app'] = 'example'
Daniel Martí's avatar
Daniel Martí committed
149 150
# You can also force an app to use the same key alias as another one, using
# the @ prefix.
151
# keyaliases['com.example.another.plugin'] = '@com.example.another'
152

153

154
# The full path to the root of the repository. It must be specified in
155
# rsync/ssh format for a remote host/path. This is used for syncing a locally
156
# generated repo to the server that is it hosted on. It must end in the
157
# standard public repo name of "/fdroid", but can be in up to three levels of
158
# sub-directories (i.e. /var/www/packagerepos/fdroid). You can include
159 160
# multiple servers to sync to by wrapping the whole thing in {} or [], and
# including the serverwebroot strings in a comma-separated list.
161
#
Daniel Martí's avatar
Daniel Martí committed
162
# serverwebroot = '[email protected]:/var/www/fdroid'
163 164 165 166
# serverwebroot = {
#     'foo.com:/usr/share/nginx/www/fdroid',
#     'bar.info:/var/www/fdroid',
#     }
167

TheZ3ro's avatar
TheZ3ro committed
168 169 170 171 172 173 174 175 176 177 178
# The full URL to a git remote repository. You can include
# multiple servers to mirror to by wrapping the whole thing in {} or [], and
# including the servergitmirrors strings in a comma-separated list.
# Servers listed here will also be automatically inserted in the mirrors list.
#
# servergitmirrors = 'https://github.com/user/repo'
# servergitmirrors = {
#     'https://github.com/user/repo',
#     'https://gitlab.com/user/repo',
#     }

179
# Any mirrors of this repo, for example all of the servers declared in
TheZ3ro's avatar
TheZ3ro committed
180 181
# serverwebroot and all the servers declared in servergitmirrors,
# will automatically be used by the client.  If one
182 183 184 185 186 187
# mirror is not working, then the client will try another.  If the
# client has Tor enabled, then the client will prefer mirrors with
# .onion addresses. This base URL will be used for both the main repo
# and the archive, if it is enabled.  So these URLs should end in the
# 'fdroid' base of the F-Droid part of the web server like serverwebroot.
#
188
# mirrors = (
189 190
#     'https://foo.bar/fdroid',
#     'http://foobarfoobarfoobar.onion/fdroid',
191
# )
192

193
# optionally specify which identity file to use when using rsync or git over SSH
194
#
195 196
# identity_file = '~/.ssh/fdroid_id_rsa'

197 198 199

# If you are running the repo signing process on a completely offline machine,
# which provides the best security, then you can specify a folder to sync the
200 201 202
# repo to when running `fdroid server update`. This is most likely going to
# be a USB thumb drive, SD Card, or some other kind of removable media. Make
# sure it is mounted before running `fdroid server update`. Using the
203 204 205 206 207 208
# standard folder called 'fdroid' as the specified folder is recommended, like
# with serverwebroot.
#
# local_copy_dir = '/media/MyUSBThumbDrive/fdroid'


209 210
# If you are using local_copy_dir on an offline build/signing server, once the
# thumb drive has been plugged into the online machine, it will need to be
211
# synced to the copy on the online machine. To make that happen
212 213 214 215 216
# automatically, set sync_from_local_copy_dir to True:
#
# sync_from_local_copy_dir = True


217 218 219 220 221
# To upload the repo to an Amazon S3 bucket using `fdroid server update`.
# Warning, this deletes and recreates the whole fdroid/ directory each
# time. This is based on apache-libcloud, which supports basically all cloud
# storage services, so it should be easy to port the fdroid server tools to
# any of them.
222
#
Daniel Martí's avatar
Daniel Martí committed
223 224 225
# awsbucket = 'myawsfdroid'
# awsaccesskeyid = 'SEE0CHAITHEIMAUR2USA'
# awssecretkey = 'yourverysecretkeywordpassphraserighthere'
226

227

228
# If you want to force 'fdroid server' to use a non-standard serverwebroot
229
#
Daniel Martí's avatar
Daniel Martí committed
230
# nonstandardwebroot = False
231

232

233 234
# If you want to upload the release apk file to androidobservatory.org
#
235
# androidobservatory = False
236 237


TheZ3ro's avatar
TheZ3ro committed
238 239 240 241 242 243
# If you want to upload the release apk file to virustotal.com
# You have to enter your profile apikey to enable the upload.
#
# virustotal_apikey = "virustotal_apikey"


244 245 246 247 248 249
# The build logs can be posted to a mediawiki instance, like on f-droid.org.
# wiki_protocol = "http"
# wiki_server = "server"
# wiki_path = "/wiki/"
# wiki_user = "login"
# wiki_password = "1234"
Ciaran Gultnieks's avatar
Ciaran Gultnieks committed
250

251 252 253 254 255 256 257
# Keep a log of all generated index files in a git repo to provide a
# "binary transparency" log for anyone to check the history of the
# binaries that are published.  This is in the form of a "git remote",
# which this machine where `fdroid update` is run has already been
# configured to allow push access (e.g. ssh key, username/password, etc)
# binary_transparency_remote = "[email protected]:fdroid/binary-transparency-log.git"

Daniel Martí's avatar
Daniel Martí committed
258 259
# Only set this to true when running a repository where you want to generate
# stats, and only then on the master build servers, not a development
260 261
# machine. If you want to keep the "added" and "last updated" dates for each
# app and APK in your repo, then you should enable this.
262
# update_stats = True
263

264 265
# When used with stats, this is a list of IP addresses that are ignored for
# calculation purposes.
266
# stats_ignore = []
267

268
# Server stats logs are retrieved from. Required when update_stats is True.
269
# stats_server = "example.com"
270 271

# User stats logs are retrieved from. Required when update_stats is True.
272
# stats_user = "bob"
273

Daniel Martí's avatar
Daniel Martí committed
274
# Use the following to push stats to a Carbon instance:
275 276 277
# stats_to_carbon = False
# carbon_host = '0.0.0.0'
# carbon_port = 2003
278

Daniel Martí's avatar
Daniel Martí committed
279 280
# Set this to true to always use a build server. This saves specifying the
# --server option on dedicated secure build server hosts.
281
# build_server_always = True
282

283
# By default, fdroid will use YAML .yml and the custom .txt metadata formats. It
284
# is also possible to have metadata in JSON by adding 'json'.
285
# accepted_formats = ('txt', 'yml')
286

287 288
# Limit in number of characters that fields can take up
# Only the fields listed here are supported, defaults shown
289 290 291 292
# char_limits = {
#     'Summary': 80,
#     'Description': 4000,
# }
293 294

# It is possible for the server operator to specify lists of apps that
295 296 297
# must be installed or uninstalled on the client (aka "push installs).
# If the user has opted in, or the device is already setup to respond
# to these requests, then F-Droid will automatically install/uninstall
298 299 300
# the packageNames listed.  This is protected by the same signing key
# as the app index metadata.
#
301
# install_list = (
302 303 304
#     'at.bitfire.davdroid',
#     'com.fsck.k9',
#     'us.replicant',
305
# )
306
#
307
# uninstall_list = (
308 309
#     'com.facebook.orca',
#     'com.android.vending',
310
# )