I was wondering what the best way of storing an api key is in android studio. I would want to exclude this file from github using gitignore. I have seen some people use the gradle.properties in the HOME directory but the api is specific to my application. I also notice there is a gradle.properties in a new android studio project but this can contain other things that I may not want to exclude. Anyone know the best way to do this ? So the file would be available locally and my project would read it at runtime but I would "maybe" gitignore this file so I wouldn't commit it so I would not expose my api key.

<blockquote> I have seen some people use the gradle.properties in the HOME directory but the api is specific to my application. </blockquote> I see no problem with API being specific to your app. We have similar situations sometimes, so we just use some unique name for <code>gradle.properties</code> entries. Something like <pre class="prettyprint"><code>(MY_APP_NAME)_(MY_API_NAME)_API_KEY </code></pre> Also we're storing passwords to our internal Maven repositories in the same way, so they're not pushed to GitHub as part of <code>build.gradle</code> file. I can say we're pretty happy with that approach. Some alternatives which I can think about: <ul> <li>Explicitly pass parameters to gradle while executing task. So, you can store those parameters in Android Studio configuration.</li> <li>You can apply another <code>.gradle</code> file to your buildscript (which will contain your variables) using <code>apply from: 'path-to-my-local-script.gradle'</code>. Just don't forget to add it to <code>.gitignore</code>.</li> </ul>

You can store api keys with help of gradle and the system path variable Add new system PATH variable THE_MOVIE_DB_API_TOKEN="XXXXX": <h3>For Windows OS:</h3> <ul> <li>Open System </li> <li>Advanced system settings</li> <li>Environment variables</li> <li>Add new variables to the user variables </li> </ul> Add the following code to the build.gradle file <pre class="prettyprint"><code>apply plugin: 'com.android.application' android { ... defaultConfig { ... } buildTypes { release { ... } buildTypes.each { it.buildConfigField 'String', 'THE_MOVIE_DB_API_TOKEN', "$System.env.THE_MOVIE_DB_API_TOKEN" } } } </code></pre> Use the API keys in Java code like this <code>BuildConfig.THE_MOVIE_DB_API_TOKEN)</code>

Android - excluding an api key from github, where to store the api key in code?

2 Answers

I have seen some people use the gradle.properties in the HOME directory but the api is specific to my application.

I see no problem with API being specific to your app. We have similar situations sometimes, so we just use some unique name for gradle.properties entries. Something like

(MY_APP_NAME)_(MY_API_NAME)_API_KEY

Also we're storing passwords to our internal Maven repositories in the same way, so they're not pushed to GitHub as part of build.gradle file. I can say we're pretty happy with that approach.

Some alternatives which I can think about:

Explicitly pass parameters to gradle while executing task. So, you can store those parameters in Android Studio configuration.
You can apply another .gradle file to your buildscript (which will contain your variables) using apply from: 'path-to-my-local-script.gradle'. Just don't forget to add it to .gitignore.

107

answered Sep 30 '22 18:09

Dmitry Zaytsev

You can store api keys with help of gradle and the system path variable Add new system PATH variable THE_MOVIE_DB_API_TOKEN="XXXXX":

For Windows OS:

Open System
Advanced system settings
Environment variables
Add new variables to the user variables

Add the following code to the build.gradle file

apply plugin: 'com.android.application'

  android {
   ...

    defaultConfig {
        ...
    }
    buildTypes {
        release {
            ...
        }
        buildTypes.each {
            it.buildConfigField 'String', 'THE_MOVIE_DB_API_TOKEN', "$System.env.THE_MOVIE_DB_API_TOKEN"
        }
    }
}

Use the API keys in Java code like this

BuildConfig.THE_MOVIE_DB_API_TOKEN)

answered Sep 30 '22 19:09

Denis

Related questions
                            
                                How to run a thread in the background after the app is killed
                            
                                Android Actionbar change menus position
                            
                                opencv face recognition returns same name from DB for unknown users
                            
                                How to work with custom dimension in Google Analytics v3 for Android app
                            
                                character mapping in edittext android
                            
                                Android round corner layout in dialogfragment
                            
                                Android ConnectivityService "Neither user 10052 nor current process has android.permission.ACCESS_NETWORK_STATE."
                            
                                How to chain multiple RxJava's groupBy() methods such as groupBy().groupBy()
                            
                                Authenticate user logged in with FB at my server using the Android Account Manager
                            
                                Emulator taking too long time to launch
                            
                                Is possible to lock a NFC tag and later unlock and write data again?
                            
                                YouTubePlayer not load Ad video with cueVideo()
                            
                                5.1 like elevation Shadow under a View using onDraw method
                            
                                Handling status bar notification before it is displayed
                            
                                how to set textview width wrap_content but limit to 1/3 of parent's width
                            
                                Prevent word from being broken in TextView
                            
                                java.util.zip.ZipException: duplicate entry :how to overcome
                            
                                Cast image (photo) to Chromecast
                            
                                Search view close icon appearing disabled rather than white
                            
                                CREATE TABLE android_metadata failed when re-opening sqlcipher DB

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With

Android - excluding an api key from github, where to store the api key in code?

Tags:

android

android-gradle-plugin

Martin

People also ask

2 Answers

Dmitry Zaytsev

For Windows OS:

Denis

Recent Activity

Donate For Us