Skip to content

Commit

Permalink
Fix gpg signing (#293)
Browse files Browse the repository at this point in the history
  • Loading branch information
@unidevel
unidevel authored Feb 25, 2025
1 parent e89c2fb commit ea07a1e
Showing 1 changed file with 11 additions and 3 deletions.
14 changes: 11 additions & 3 deletions .github/workflows/release.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,8 @@ jobs:
permissions:
contents: write
packages: write
env:
GPG_KEY_FILE: ${{ github.workspace }}/secret-key.gpg

steps:
- name: Check branch
Expand Down Expand Up @@ -96,15 +98,19 @@ jobs:
- name: Set up GPG key
run: |
echo "${{ secrets.GPG_SECRET }}" > ${{ github.workspace }}/secret-key.gpg
chmod 600 ${{ github.workspace }}/secret-key.gpg
echo "${{ secrets.GPG_SECRET }}" > ${{ env.GPG_KEY_FILE }}
chmod 600 ${{ env.GPG_KEY_FILE }}
gpg --import --batch ${{ env.GPG_KEY_FILE }}
touch /tmp/dummy.txt && gpg --batch --yes --pinentry-mode loopback --passphrase "${{ secrets.GPG_PASSPHRASE }}" --sign /tmp/dummy.txt
env:
GPG_TTY: $(tty)

- name: Set up gradle.properties for publishing
run: |
echo "skipSigning=false" > gradle.properties
echo "signing.keyId=${{ secrets.GPG_KEYID }}" >> gradle.properties
echo "signing.password=${{ secrets.GPG_PASSPHRASE }}" >> gradle.properties
echo "signing.secretKeyRingFile=${{ github.workspace }}/secret-key.gpg" >> gradle.properties
echo "signing.secretKeyRingFile=${{ env.GPG_KEY_FILE }}" >> gradle.properties
echo "nexusUsername=${{ secrets.NEXUS_USERNAME }}" >> gradle.properties
echo "nexusPassword=${{ secrets.NEXUS_PASSWORD }}" >> gradle.properties
Expand All @@ -114,6 +120,8 @@ jobs:
export NEXUS_USERNAME="${{ secrets.NEXUS_USERNAME }}"
export NEXUS_PASSWORD="${{ secrets.NEXUS_PASSWORD }}"
./gradlew sign publish
env:
GPG_TTY: $(tty)

- name: Update release version in build.gradle
run: |
Expand Down

0 comments on commit ea07a1e

Please sign in to comment.