Now using in memory PGP key

Fixed signin syntax Fixed dangling char Fixed typo Added GPG key password
2023-09-21 10:28:32 -07:00 · 2023-09-21 10:28:32 -07:00 · 392af12f50
commit 392af12f50
parent 0235444814
2 changed files with 7 additions and 31 deletions
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@ -8,6 +8,8 @@ env:
  JAVA_DISTRIBUTION: 'zulu'
  ORG_GRADLE_PROJECT_ossrhUsername: ${{ secrets.OSSRH_USERNAME}}
  ORG_GRADLE_PROJECT_ossrhPassword: ${{ secrets.OSSRH_PASSWORD}}
+  ORG_GRADLE_PROJECT_signingKey: ${{ secrets.SIGN_SECRET_KEY }}
+  ORG_GRADLE_PROJECT_signingPassword: ${{ secrets.SIGN_SECRET_PWD }}

 jobs:
  publish-base:
@ -24,11 +26,6 @@ jobs:

      - uses: gradle/gradle-build-action@v2

-      - name: Import key
-        run: echo "${{ secrets.SIGN_SECRET_KEY }}" | gpg --batch --import
-        env: 
-          GPG_TTY: ${{ env.tty }}
-
      - name: Publish Multiplatform release
        run: ./gradlew publishKotlinMultiplatformPublicationToOSSRHRepository

@ -55,17 +52,9 @@ jobs:

      - uses: gradle/gradle-build-action@v2

-      - name: Import key
-        run: echo "${{ secrets.SIGN_SECRET_KEY }}" | gpg --batch --import
-        env: 
-          GPG_TTY: ${{ env.tty }}
-
      - name: Publish Linux x64 release
        run: ./gradlew publishLinuxX64PublicationToOSSRHRepository

-      - name: Delete GnuPG data
-        run: rm -rfv $HOME/.gnupg
-
  publish-mac:
    runs-on: macos-latest
    strategy:
@ -86,17 +75,9 @@ jobs:

      - uses: gradle/gradle-build-action@v2

-      - name: Import key
-        run: echo "${{ secrets.SIGN_SECRET_KEY }}" | gpg --batch --import
-        env: 
-          GPG_TTY: ${{ env.tty }}
-
      - name: Publish
        run: ./gradlew ${{ matrix.target }}

-      - name: Delete GnuPG data
-        run: rm -rfv $HOME/.gnupg
-
  publish-windows:
    runs-on: windows-latest
    steps:
@ -111,13 +92,5 @@ jobs:

      - uses: gradle/gradle-build-action@v2

-      - name: Import key
-        run: echo "${{ secrets.SIGN_SECRET_KEY }}" | gpg --batch --import
-
      - name: Publish MinGW x64 release
        run: ./gradlew publishMingwX64PublicationToOSSRHRepository
-
-      - name: Delete GnuPG data
-        uses: JesseTG/rm@v1.0.3
-        with:
-          path: ~/.gnupg
--- a/buildSrc/src/main/kotlin/buildsrc/conventions/publishing.gradle.kts
+++ b/buildSrc/src/main/kotlin/buildsrc/conventions/publishing.gradle.kts
@ -85,7 +85,10 @@ publishing {
 }

 signing {
-    useGpgCmd()
+    val signingKey: String? by project
+    val signingPassword: String? by project
+    useInMemoryPgpKeys(signingKey, signingPassword)
+
    sign(publishing.publications)

    setRequired({