mirror of
https://github.com/f-droid/fdroidserver.git
synced 2025-09-15 07:22:29 +03:00
gpg-sign all valid files in the repo, including source tarballs
This makes sure there is a GPG signature on any file that is included in the repo, including APKs, OBB, source tarballs, media files, OTA update ZIPs, etc. Having a GPG signature is more important on non-APK files since they mostly do not have any signature mechanism of their own. This also adds basic tests of adding non-APK/OBB files to a repo with `fdroid update`. closes #232
This commit is contained in:
Hans-Christoph Steiner
parent
84e09cd2a2
commit
56d51fcd6b
11 changed files with 35 additions and 11 deletions
|
|
@ -2084,3 +2084,14 @@ def get_per_app_repos():
|
|||
repos.append(d)
|
||||
break
|
||||
return repos
|
||||
|
||||
|
||||
def is_repo_file(filename):
|
||||
'''Whether the file in a repo is a build product to be delivered to users'''
|
||||
return os.path.isfile(filename) \
|
||||
and os.path.basename(filename) not in [
|
||||
'index.jar',
|
||||
'index.xml',
|
||||
'index.html',
|
||||
'categories.txt',
|
||||
]
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue