Does Manage Signing Key by Google override settings in signingConfigs?

android flutter google-play google-play-console release-management
351

Re "overriding the signing"

It depends how you enrolled in Play Signing (i.e. "Manage signing key by Google").

By default, when you enroll a new app in Play Signing, Play generates a new signing key which it will sign all APKs of your apps with. In that sense, it "overrides" the signature of the APKs you upload to Play Console, yes. In the "App Signing" page of the Play Console, you can find the certificate associated with that key (and its MD5, SHA1, SHA256) in case you need to provide it to some APIs for those APIs to work.

In that scenario, the key you signed the APK with is called the "upload key": it is used only for Play to authenticate that artifact was signed by you. What your end users get is the APK that is re-signed with the "app signing" key (that Google generated).

There is also an advanced option for new apps when you first enroll where you can supply the key that Play signs the APK with. In this case, Play will sign the APKs it serves to users with the key you supplied.

For "existing" apps (i.e. apps that have uploaded APKs before enrolling into Play Signing) to enroll in Play Signing, there is no choice but to supply the key currently used to sign APKs (since users must always receive an APK signed with the same key).

A lot of it is explained in this documentation: https://support.google.com/googleplay/android-developer/answer/7384423

Re: if you lose the local key.jks

If you're already enrolled in Play Signing and you lose your keystore, then there will be no impact for your users. You will have to ask Google to reset your upload keystore (after proving your identity) so you can continue uploading APKs or App Bundles, but Play will still hold the key that it uses to sign the APKs served to your users, so there will be no change for your users and they'll see updates as usual.

Share:
351
user2233706
Author by

user2233706

Updated on December 23, 2022

Comments

  • user2233706
    user2233706 over 1 year

    I followed the directions here to release my Flutter app. Specifically, I created my own key.jks file and referenced it appropriately from the signingConfigs section in build.gradle. When I uploaded my app to the Play Console, I was given the option to 'Manage Signing Key by Google,' and chose this option. Does this:

    • override the signing done by signingConfigs?
    • if I lose the local key.jks file and use a new key.jks, will my app still function properly since I'm letting Google manage key signing? If the user upgrades, will Android treat this as a new app install?
  • user2233706
    user2233706 over 3 years
    Yes, I'm enrolled in Play Signing. Regarding your last paragraph: will this just involve uploading a new version of the app and letting Google take of the rest?
  • Pierre
    Pierre over 3 years
    To reset the upload key, you need to contact Google Play Developer support, they'll have instructions on how to prove identity and how to provide the new key. Then, change the signingConfig so to sign your APKs with your newly created upload key and Play will take care of the rest, yes.
  • fenchai
    fenchai over 3 years
    @Pierre what do you need to change in the signingConfig?
  • Pierre
    Pierre over 3 years
    Here's how to configure signing for your app. Search for "signingConfig" if you want an example; just fill in the fields with the appropriate values.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

java.lang.RuntimeException: android.database.sqlite.SQLiteException: no such table: media_store_extension (code 1): ,
An Android app works when installed via Android Studio but shows some settings page when installed and opened via Google Play
In Flutter pubspec.yaml file updated the version to 1.1.0+3 but on uploading to playConsole, still error version code 1
Version code 1 has already been used. Try another version code
How to troubleshoot crashes detected by Google Play Store for Flutter app
Flutter Android: Unable to fetch in-app products from Google Play
Flutter does not include Native Debug Symbols
Flutter and Android release aab 'android:exported = true' not working
Flutter App cannot install from Play Store
Google Play Console Track status production: why isn't the App available?