Amadis

Amadis One - JFrog repository

Owned by Alexandre Munsch (Unlicensed)
Last updated: Jun 11, 2024 by Alexandre PERRIER
3 min read

Table of contents

 

The Amadis One components are delivered through an intermediate repository called JFrog Artifactory. This repository allows up to upload and hold artifacts (AAR or Docker) that customers can access whenever they need, provided they have the proper credentials.

Credentials will be provided upon demand or account setup

AAR and Android project integration

Android project structure

page1image3353689872
page1image3353690160

The Android application must declare a JFrog Artifactory account to access the SDK dependencies.

Gradle files configuration

gradle.properties

The gradle.properties file must declare the Artifactory server URL as well as the repos name.

artifactory_url=https://amadis.jfrog.io/artifactory agnos_repository_name_virtual=aone-<customer>-virtual

<customer> needs to be changed to an appropriate value

local.properties

The local.properties file should contain the login and password needed to access the repos.

artifactory_user=user@gmail.com artifactory_password=Aqzefj6&

No quote on the password

build.gradle (root)

The root build.gradle file should read the credentials from the local.properties files.

Properties properties = new Properties() properties.load(project.rootProject.file('local.properties').newDataInputStream()) def artifactory_user = properties.getProperty('artifactory_user') def artifactory_password = properties.getProperty('artifactory_password')

Then declare the repositories on which to look for dependencies.

build.gradle (app or module)

The app/module build.gradle file should simply declare its dependencies in the form of implementations.

With:

  • <customer>: the name of your company (e.g. ‘amadis')

  • <mode>: either ‘sred’ or ‘nosred’

    • 'sred' means the PCI SRED protection is active, all sensitive card data are store securely, encrypted

    • ‘nosred’ means the PCI SRED protection is not active

  • <build_type>: either ‘debug’, ‘release’ or ‘protect’

    • ‘debug’ is the classic Android debug mode with all logs and debugging capability

    • ‘release’ is the classic Android release mode plus our custom ProGuarg configuration

    • ‘protect’ is the most secure build type (and the only one that should go in production), the whole code is obfuscated and protected against a variety of attacks and reverse engineering

Docker images

The Secure Backend images are split into 3 images:

  • secbkd-http

  • secbkd-php

  • secbkd-database

To pull the images from a terminal for instance, you can use the below command:

Â