Ты путаешь java.time и java.util.TimeZone

Ммм. Понял. В проект внедрена некая либа joda или koda , она вроде именно для работы с временем. Надо глянуть как она мне может помочь

Joda time поди

#question Hello everyone. I have a question about security of app; My application has a String type secret keys. How can I store it safe ? Shortly I want to hide that keys from hackers in app

You can't. This cannot be achieved.

What do you do in problem like that ?

I don't store any private keys within app.

#question Hello everyone. I have a question about security of app; My application has a String type secret keys. How can I store it safe ? Shortly I want to hide that keys from hackers in app

I think you can crypt text by some code, for example - long password and store it

where you gonna store yout long password?

#question Hello everyone. I have a question about security of app; My application has a String type secret keys. How can I store it safe ? Shortly I want to hide that keys from hackers in app

If you are planning to post that project as open source you can try to hide api keys in build.gradle. Read this : https://medium.com/code-better/hiding-api-keys-from-your-android-repository-b23f5598b906

Well, original question wasn't about hiding keys in the repository, but within the app. :)

For me the only logical secret keys inside of app is API keys. And the only reason you will need to hide your API keys it's when you want to post project as open source :)

All use-cases for secret keys inside app are invalid.

why you need secret keys?

Let me ask you where do you keep your API_KEYs for third party API?

inside of code of course

So I can decompile your dex code and steal your API_KEY. I suppose, question was about it. 🤔

chance that someone will decompile your app and get the api keys is pretty low. You can't even get proper code when you decompile an app.

The chance is around 100%. Every app uploaded to store gets analyzed by some bots for some easy-to-crack cases.

And you think that Google bots will get your keys? this is nonsense

Not Google ones

The chance is around 100%. Every app uploaded to store gets analyzed by some bots for some easy-to-crack cases.

okay but without that api keys your app will not function properly. so you have no chance.

chance that someone will decompile your app and get the api keys is pretty low. You can't even get proper code when you decompile an app.

Why do you need private keys in your app?

Well, it's not true. It's quite easy to decompile apk even if it was obfuscated. But real cases shows us that, unfortunately, S means Security in the word "Android".

okay let's say you have an app which needs google maps. how you will use google maps without api key?

Well, it's not true. It's quite easy to decompile apk even if it was obfuscated. But real cases shows us that, unfortunately, S means Security in the word "Android".

unless your app is widely used and popular among the world no one will care about it :)

There's nothing wrong with GMaps API keys in app, it cannot be used without correct signature.

False. Unpopular app can be decompiled by a robot. A robot can inject ads, repach app and publish it on an alternative store.

okay. your app depends on some 3rd party api and that api requires api key to work. and there is no other alternative. what will you do?

There's nothing common between OS security and private keys in client app.

validate user auth and call API from my server

let's say the hacker which can decompile your beloved apk's can also fake your user auth :)

If they will abuse server, I will ban them.

False. Unpopular app can be decompiled by a robot. A robot can inject ads, repach app and publish it on an alternative store.

and they will just change api and come back. :) if someone wants to crack your apk that person will do it and there is no way you can stop him

Change what? Auth? You still can ban by IP

Why android so open source 🙈

This makes it so secure, powerful and popular

https://fortnite-public-api.theapinetwork.com/prod09/store/get?language=ru подскажите, это json? спарсить же можно?

да, это он. Да, можно

чтобы автоматом в ресайкл записывался

как это, автоматом? как текст? 🤔

ну допустим в джсоне 10 элементов, все они подкгрузятся в ресайклвью. Завтра будет 12 элементов, тогда и в ресайкле 12 будет.. как то так

окей, можно. Только вот слово - “автоматом” - меня смущает.

ну парсер же парсит то, что есть в файле. 10 строк, то 10, 12 то 12.. работает с интернетом же

ну пока ты не напишешь чтобы он парсил - он как бы и не парсит. Вообщем, сформулируй вопрос. А то это гадание на кофейной гуще

Geofences https://developer.android.com/training/location/geofencing

Geofences https://developer.android.com/training/location/geofencing

i'm busy

GeofenceTransitionsIntentService - никогда не работает постоянно, он получил интент, отработал handleIntent и сервис умирает

нет

Уже 2 час не могу решить проблему Super calls to Java default methods are prohibited in JVM target 1.6. Recompile with '-jvm-target 1.8' Хотя я в проекте поменял на 1.8