On 4/4/07, Filip Hanik - Dev Lists <[EMAIL PROTECTED]> wrote:
still haven't got around the fact that maven command line has the limitation around simply being able to attach a signature and send it up. do you have a script that does what you say, that will prevent me from having to duplicate this effort.
It's probably more manual effort than you'll want, and can surely be improved, but... Since you're using 'mvn deploy:deploy-file' [1], Maven will put the jars in your local Maven repo as part of the deployment. So, if you delete ~/.m2/repository/org/apache/tomcat/ (from your local repo) before doing the deployment, you'll have a local directory structure matching what you just deployed to the remote repo. Run (something like) this from ~/.m2/repository/org/apache/tomcat/ : # Recursively pgp sign files in a directory structure # Adapted from: http://gleamynode.net/wordpress/archives/129 echo -n "PGP Key Password: " stty -echo read PASSWORD stty echo echo "" for FILE in $(find . -name "*.jar" -or -name "*.pom"); do echo -n "Signing: $FILE ... " echo "$PASSWORD" | gpg --default-key "$DEFAULT_KEY" --detach-sign --armor --no-tty --yes --passphrase-fd 0 "$FILE" && echo done. done Then upload the signatures: for FILE in $(find . -name "*.asc"); do scp $FILE people.apache.org:/www/tomcat.apache.org/dev/dist/m2-repository/org/apache/tomcat/$FILE done Once you're sure it works, switch over and deploy/upload directly to people.apache.org/repo/m2-ibiblio-rsync-repository, and it will sync automatically with central. I also opened an issue to see about making signing work with deploy:deploy-file: http://jira.codehaus.org/browse/MGPG-7 [1] http://svn.apache.org/repos/asf/tomcat/tc6.0.x/trunk/res/maven/mvn-pub.xml -- Wendy --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
