@@ -13,16 +13,29 @@ jobs:
1313 - name : Checkout code
1414 uses : actions/checkout@v4
1515
16- - name : Set up GPG
16+ - name : Import GPG Key
1717 run : |
1818 echo "$GPG_PRIVATE_KEY" | gpg --batch --import
19- echo "$GPG_OWNERTRUST" | gpg --batch --import-ownertrust
20- env :
21- GPG_PRIVATE_KEY : ${{ secrets.GPG_PRIVATE_KEY }}
22- GPG_OWNERTRUST : ${{ secrets.GPG_OWNERTRUST }}
19+ KEY_ID=$(gpg --list-secret-keys --with-colons | awk -F: '/^sec:/ { print $5 }')
20+ echo "Using GPG key: $KEY_ID"
21+ echo "GPG_KEY_ID=$KEY_ID" >> $GITHUB_ENV
22+ echo "use-agent" >> ~/.gnupg/gpg.conf
23+ echo "pinentry-mode loopback" >> ~/.gnupg/gpg.conf
24+ echo "allow-loopback-pinentry" >> ~/.gnupg/gpg-agent.conf
25+ echo RELOADAGENT | gpg-connect-agent
26+ shell : bash
27+ GPG_PRIVATE_KEY : ${{ secrets.GPG_PRIVATE_KEY }}
2328
24- - name : Verify GPG Key
25- run : gpg --list-secret-keys --keyid-format LONG
29+ # - name: Set up GPG
30+ # run: |
31+ # echo "$GPG_PRIVATE_KEY" | gpg --batch --import
32+ # echo "$GPG_OWNERTRUST" | gpg --batch --import-ownertrust
33+ # env:
34+ # GPG_PRIVATE_KEY: ${{ secrets.GPG_PRIVATE_KEY }}
35+ # GPG_OWNERTRUST: ${{ secrets.GPG_OWNERTRUST }}
36+
37+ # - name: Verify GPG Key
38+ # run: gpg --list-secret-keys --keyid-format LONG
2639
2740 - name : Debug GPG Key Import
2841 run : |
@@ -54,10 +67,14 @@ jobs:
5467 gpg-passphrase : ${{ secrets.GPG_PASSPHRASE }}
5568
5669 - name : Build and Deploy
57- run : mvn clean deploy -Psign-artifacts
70+ # run: mvn clean deploy -Psign-artifacts
71+ run : |
72+ mvn clean deploy -Psign-artifacts \
73+ -Dgpg.passphrase="$GPG_PASSPHRASE" \
74+ -Dgpg.keyname="$GPG_KEY_ID"
5875env :
5976 GPG_TTY : $(tty)
6077 MAVEN_USERNAME : ${{ secrets.CENTRAL_USERNAME }}
6178 MAVEN_PASSWORD : ${{ secrets.CENTRAL_PASSWORD }}
6279 GPG_PASSPHRASE : ${{ secrets.GPG_PASSPHRASE }}
63- GPG_KEY_ID : ${{ secrets.GPG_KEY_ID }}
80+ # GPG_KEY_ID: ${{ secrets.GPG_KEY_ID }}
0 commit comments