Switch to sr.ht build
This commit is contained in:
parent
8c5c84c1d8
commit
0fa0ed9658
11 changed files with 8 additions and 257 deletions
8
.build.yml
Normal file
8
.build.yml
Normal file
|
@ -0,0 +1,8 @@
|
||||||
|
image: ubuntu/lts
|
||||||
|
packages:
|
||||||
|
- openjdk-17-jdk-headless
|
||||||
|
- maven
|
||||||
|
tasks:
|
||||||
|
- build: |
|
||||||
|
cd thorp
|
||||||
|
mvn -B install
|
41
.github/GitHub-Actions.org
vendored
41
.github/GitHub-Actions.org
vendored
|
@ -1,41 +0,0 @@
|
||||||
* Deploying using Github Actions
|
|
||||||
|
|
||||||
** Actions definition: workflow/sonatype-deploy.yml
|
|
||||||
|
|
||||||
When a GitHub Release is created, usually from a tag, this action will trigger.
|
|
||||||
|
|
||||||
Using JDK8 the software will be packaged, including running any tests.
|
|
||||||
|
|
||||||
Then the Deploy script will sign the created artifacts then deploy them according to the distributionManagement configuration in the `pom.xml`.
|
|
||||||
|
|
||||||
** Deploy Script
|
|
||||||
|
|
||||||
Uses a signing key provided from the GitHub Actions Secrets as an environment variable to sign the artifact(s) before they are then deployed.
|
|
||||||
|
|
||||||
*** Inputs
|
|
||||||
|
|
||||||
**** DEPLOY_PROJECTS (optional)
|
|
||||||
|
|
||||||
An optional list of modules in a multi-module project to be deployed. If this value is not specified, then all projects will be deployed.
|
|
||||||
|
|
||||||
** Maven Configuration
|
|
||||||
|
|
||||||
Picks up the credentials from Environment variables for authenticating both with GPG and with the target deployment server (e.g. sonatype-nexus).
|
|
||||||
|
|
||||||
*** Inputs
|
|
||||||
|
|
||||||
**** NEXUS_USERNAME
|
|
||||||
|
|
||||||
The username for your account on the deployment server.
|
|
||||||
|
|
||||||
**** NEXUS_PASSWORD
|
|
||||||
|
|
||||||
The password for your account on the deployement server.
|
|
||||||
|
|
||||||
**** GPG_KEYNAME
|
|
||||||
|
|
||||||
The key to use when signing.
|
|
||||||
|
|
||||||
**** GPG_PASSPHRASE
|
|
||||||
|
|
||||||
The passphrase to unlock the key to use when signing.
|
|
53
.github/NOTES
vendored
53
.github/NOTES
vendored
|
@ -1,53 +0,0 @@
|
||||||
Add subkeys:
|
|
||||||
|
|
||||||
????
|
|
||||||
|
|
||||||
Publish:
|
|
||||||
|
|
||||||
gpg --send-keys --keyserver keyserver.ubuntu.com $KEYID
|
|
||||||
gpg --send-keys --keyserver pgp.mit.edu $KEYID
|
|
||||||
gpg --send-keys --keyserver pool.sks-keyservers.net $KEYID
|
|
||||||
|
|
||||||
Backup:
|
|
||||||
|
|
||||||
gpg --export --armor pcampbell@kemitix.net > gpg-key-backup.asc
|
|
||||||
gpg --export-secret-keys --armor pcampbell@kemitix.net >> gpg-key-backup.asc
|
|
||||||
|
|
||||||
Export sub-keys:
|
|
||||||
|
|
||||||
gpg --export-secret-subkeys pcampbell@kemitix.net > subkeys
|
|
||||||
|
|
||||||
Remove master keys:
|
|
||||||
|
|
||||||
gpg --delete-secret-key pcampbell@kemitix.net
|
|
||||||
|
|
||||||
Import sub-keys and clean up:
|
|
||||||
|
|
||||||
gpg --import subkeys
|
|
||||||
|
|
||||||
shred --remove subkeys
|
|
||||||
|
|
||||||
Delete any encryption subkeys:
|
|
||||||
|
|
||||||
gpg --edit-key pcampbell@kemitix.net
|
|
||||||
|
|
||||||
2
|
|
||||||
delkey
|
|
||||||
save
|
|
||||||
|
|
||||||
Change passphrase:
|
|
||||||
|
|
||||||
gpg --edit-key pcampbell@kemitix.net
|
|
||||||
passwd
|
|
||||||
save
|
|
||||||
|
|
||||||
Export keys:
|
|
||||||
|
|
||||||
gpg --export --armor pcampbell@kemitix.net > codesigning.asc
|
|
||||||
gpg --export-secret-keys --armor pcampbell@kemitix.net >> codesigning.asc
|
|
||||||
|
|
||||||
Encrypt keys:
|
|
||||||
|
|
||||||
gpg --symmetric --cipher-algo AES256 codesigning.asc
|
|
||||||
|
|
||||||
shred codesigning.asc
|
|
BIN
.github/codesigning.asc.gpg
vendored
BIN
.github/codesigning.asc.gpg
vendored
Binary file not shown.
7
.github/dependabot.yml
vendored
7
.github/dependabot.yml
vendored
|
@ -1,7 +0,0 @@
|
||||||
version: 2
|
|
||||||
updates:
|
|
||||||
- package-ecosystem: maven
|
|
||||||
directory: "/"
|
|
||||||
schedule:
|
|
||||||
interval: daily
|
|
||||||
open-pull-requests-limit: 10
|
|
34
.github/release-drafter.yml
vendored
34
.github/release-drafter.yml
vendored
|
@ -1,34 +0,0 @@
|
||||||
name-template: 'v$RESOLVED_VERSION 🌈'
|
|
||||||
tag-template: 'v$RESOLVED_VERSION'
|
|
||||||
categories:
|
|
||||||
- title: '🚀 Features'
|
|
||||||
labels:
|
|
||||||
- 'feature'
|
|
||||||
- 'enhancement'
|
|
||||||
- title: '🐛 Bug Fixes'
|
|
||||||
labels:
|
|
||||||
- 'fix'
|
|
||||||
- 'bugfix'
|
|
||||||
- 'bug'
|
|
||||||
- title: '🧰 Maintenance'
|
|
||||||
labels:
|
|
||||||
- 'chore'
|
|
||||||
- 'dependencies'
|
|
||||||
change-template: '- $TITLE @$AUTHOR (#$NUMBER)'
|
|
||||||
version-resolver:
|
|
||||||
major:
|
|
||||||
labels:
|
|
||||||
- 'major'
|
|
||||||
minor:
|
|
||||||
labels:
|
|
||||||
- 'minor'
|
|
||||||
patch:
|
|
||||||
labels:
|
|
||||||
- 'patch'
|
|
||||||
default: patch
|
|
||||||
exclude-labels:
|
|
||||||
- 'skip-changelog'
|
|
||||||
template: |
|
|
||||||
## Changes
|
|
||||||
|
|
||||||
$CHANGES
|
|
28
.github/settings.xml
vendored
28
.github/settings.xml
vendored
|
@ -1,28 +0,0 @@
|
||||||
<?xml version="1.0" encoding="UTF-8" ?>
|
|
||||||
<settings xmlns="http://maven.apache.org/SETTINGS/1.0.0">
|
|
||||||
<servers>
|
|
||||||
<server>
|
|
||||||
<id>sonatype-nexus-snapshots</id>
|
|
||||||
<username>${env.NEXUS_USERNAME}</username>
|
|
||||||
<password>${env.NEXUS_PASSWORD}</password>
|
|
||||||
</server>
|
|
||||||
<server>
|
|
||||||
<id>sonatype-nexus-staging</id>
|
|
||||||
<username>${env.NEXUS_USERNAME}</username>
|
|
||||||
<password>${env.NEXUS_PASSWORD}</password>
|
|
||||||
</server>
|
|
||||||
</servers>
|
|
||||||
<profiles>
|
|
||||||
<profile>
|
|
||||||
<id>gpg-sign</id>
|
|
||||||
<activation>
|
|
||||||
<activeByDefault>true</activeByDefault>
|
|
||||||
</activation>
|
|
||||||
<properties>
|
|
||||||
<gpg.executable>gpg</gpg.executable>
|
|
||||||
<gpg.keyname>${env.GPG_KEYNAME}</gpg.keyname>
|
|
||||||
<gpg.passphrase>${env.GPG_PASSPHRASE}</gpg.passphrase>
|
|
||||||
</properties>
|
|
||||||
</profile>
|
|
||||||
</profiles>
|
|
||||||
</settings>
|
|
17
.github/stale.yaml
vendored
17
.github/stale.yaml
vendored
|
@ -1,17 +0,0 @@
|
||||||
# Number of days of inactivity before an issue becomes stale
|
|
||||||
daysUntilStale: 60
|
|
||||||
# Number of days of inactivity before a stale issue is closed
|
|
||||||
daysUntilClose: 7
|
|
||||||
# Issues with these labels will never be considered stale
|
|
||||||
exemptLabels:
|
|
||||||
- pinned
|
|
||||||
- security
|
|
||||||
# Label to use when marking an issue as stale
|
|
||||||
staleLabel: wontfix
|
|
||||||
# Comment to post when marking an issue as stale. Set to `false` to disable
|
|
||||||
markComment: >
|
|
||||||
This issue has been automatically marked as stale because it has not had
|
|
||||||
recent activity. It will be closed if no further activity occurs. Thank you
|
|
||||||
for your contributions.
|
|
||||||
# Comment to post when closing a stale issue. Set to `false` to disable
|
|
||||||
closeComment: false
|
|
23
.github/workflows/build-maven.yml
vendored
23
.github/workflows/build-maven.yml
vendored
|
@ -1,23 +0,0 @@
|
||||||
name: maven-build
|
|
||||||
|
|
||||||
on:
|
|
||||||
push:
|
|
||||||
branches: '*'
|
|
||||||
pull_request:
|
|
||||||
branches: '*'
|
|
||||||
|
|
||||||
jobs:
|
|
||||||
build:
|
|
||||||
runs-on: ubuntu-latest
|
|
||||||
strategy:
|
|
||||||
matrix:
|
|
||||||
java: [ 8, 11, 14 ]
|
|
||||||
steps:
|
|
||||||
- uses: kamiazya/setup-graphviz@v1
|
|
||||||
- uses: actions/checkout@v2
|
|
||||||
- name: setup-jdk-${{ matrix.java }}
|
|
||||||
uses: actions/setup-java@v1
|
|
||||||
with:
|
|
||||||
java-version: ${{ matrix.java }}
|
|
||||||
- name: build-jar
|
|
||||||
run: mvn -B install
|
|
40
.github/workflows/deploy-sonatype.yml
vendored
40
.github/workflows/deploy-sonatype.yml
vendored
|
@ -1,40 +0,0 @@
|
||||||
name: sonatype-deploy
|
|
||||||
|
|
||||||
on:
|
|
||||||
push:
|
|
||||||
tags:
|
|
||||||
- "v*"
|
|
||||||
|
|
||||||
jobs:
|
|
||||||
deploy:
|
|
||||||
runs-on: ubuntu-latest
|
|
||||||
steps:
|
|
||||||
- uses: kamiazya/setup-graphviz@v1
|
|
||||||
- uses: actions/checkout@v2
|
|
||||||
- name: Set up JDK
|
|
||||||
uses: actions/setup-java@v1
|
|
||||||
with:
|
|
||||||
java-version: 8
|
|
||||||
- name: Build with Maven
|
|
||||||
run: mvn -B install
|
|
||||||
- name: Nexus Repo Publish
|
|
||||||
run: |
|
|
||||||
gpg --quiet \
|
|
||||||
--batch \
|
|
||||||
--yes \
|
|
||||||
--decrypt \
|
|
||||||
--passphrase="${{ secrets.GPG_PASSPHRASE }}" \
|
|
||||||
--output codesigning.asc \
|
|
||||||
.github/codesigning.asc.gpg
|
|
||||||
gpg --batch \
|
|
||||||
--fast-import codesigning.asc
|
|
||||||
mvn --settings .github/settings.xml \
|
|
||||||
-Dskip-Tests=true \
|
|
||||||
-P release \
|
|
||||||
-B \
|
|
||||||
deploy
|
|
||||||
env:
|
|
||||||
NEXUS_USERNAME: ${{ secrets.NEXUS_USERNAME }}
|
|
||||||
NEXUS_PASSWORD: ${{ secrets.NEXUS_PASSWORD }}
|
|
||||||
GPG_KEYNAME: ${{ secrets.GPG_KEYNAME }}
|
|
||||||
GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
|
|
14
.github/workflows/draft-release.yml
vendored
14
.github/workflows/draft-release.yml
vendored
|
@ -1,14 +0,0 @@
|
||||||
name: draft-release
|
|
||||||
|
|
||||||
on:
|
|
||||||
push:
|
|
||||||
branches:
|
|
||||||
- master
|
|
||||||
|
|
||||||
jobs:
|
|
||||||
update_draft_release:
|
|
||||||
runs-on: ubuntu-latest
|
|
||||||
steps:
|
|
||||||
- uses: release-drafter/release-drafter@v5.11.0
|
|
||||||
env:
|
|
||||||
GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
|
|
Loading…
Reference in a new issue