Return-Path: X-Original-To: apmail-commons-dev-archive@www.apache.org Delivered-To: apmail-commons-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 85FF67E53 for ; Thu, 15 Dec 2011 03:32:39 +0000 (UTC) Received: (qmail 71540 invoked by uid 500); 15 Dec 2011 03:32:38 -0000 Delivered-To: apmail-commons-dev-archive@commons.apache.org Received: (qmail 71440 invoked by uid 500); 15 Dec 2011 03:32:37 -0000 Mailing-List: contact dev-help@commons.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Commons Developers List" Delivered-To: mailing list dev@commons.apache.org Received: (qmail 71428 invoked by uid 99); 15 Dec 2011 03:32:33 -0000 Received: from minotaur.apache.org (HELO minotaur.apache.org) (140.211.11.9) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 15 Dec 2011 03:32:33 +0000 Received: from localhost (HELO mail-iy0-f171.google.com) (127.0.0.1) (smtp-auth username wspeirs, mechanism plain) by minotaur.apache.org (qpsmtpd/0.29) with ESMTP; Thu, 15 Dec 2011 03:32:32 +0000 Received: by iagw33 with SMTP id w33so1533002iag.30 for ; Wed, 14 Dec 2011 19:32:31 -0800 (PST) MIME-Version: 1.0 Received: by 10.50.87.234 with SMTP id bb10mr1281717igb.81.1323919951784; Wed, 14 Dec 2011 19:32:31 -0800 (PST) Received: by 10.43.50.67 with HTTP; Wed, 14 Dec 2011 19:32:31 -0800 (PST) In-Reply-To: References: Date: Wed, 14 Dec 2011 22:32:31 -0500 Message-ID: Subject: Re: [dbutils] sign-artifacts hangs during release:prepare From: William Speirs To: Commons Developers List Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Anyone have any idea on this? Should I be seeing basic auth for my challenge? Where can I set the password as I was never prompted to enter it. At this point, can someone else deploy RC1 while I figure out what is wrong on my end? Thanks... Bill- On Tue, Dec 13, 2011 at 4:32 PM, William Speirs wrote: > First, thank you all again for the help! > > I got past the GPG step, now I'm stuck on password/auth issues now with S= VN :-( > > I thought the issue was that my password manager wasn't authed and > that svn was working in a non-interactive mode, so it couldn't get my > password; this was the reason for -r1213934. > > Anyway, output below... any/all ideas welcomed! > > Bill- > > [INFO] Checking in modified POMs... > [INFO] Executing: /bin/sh -c cd > /home/wspeirs/workspace/commons-dbutils && svn --non-interactive > commit --file /tmp/maven-scm-481300763.commit --targets > /tmp/maven-scm-3917786176898805146-targets > [INFO] Working directory: /home/wspeirs/workspace/commons-dbutils > [INFO] ------------------------------------------------------------------= ------ > [ERROR] BUILD FAILURE > [INFO] ------------------------------------------------------------------= ------ > [INFO] Unable to commit files > Provider message: > The svn command failed. > Command output: > svn: Commit failed (details follow): > svn: MKACTIVITY of > '/repos/asf/!svn/act/3b6f8370-abd6-4d88-adeb-7dc981ecd57f': > authorization failed: Could not authenticate to server: rejected Basic > challenge (https://svn.apache.org) > > > On Tue, Dec 13, 2011 at 10:28 AM, sebb wrote: >> On 13 December 2011 15:19, William Speirs wrote: >>> I will try adding the additional elements: >>> >>> /path/to/secring.gpg >>> >>> gpg2 >> >> Sorry, should have clarified - the above requires gpg2 to be installed >> and created. >> >> I installed both gpg1 and gpg2, and created gpg1 and gpg2 as copies of >> their respective gpg executables. >> e.g. on Windows copy gpg.exe gpg.exe >> >> Both versions of gpg are on the execution path; running gpg picks the >> first one; running gpg1 or gpg2 picks only that version. >> >> This enables quick swapping between them as required. >> >>> And also try with gpg2. >>> >>> I'll try later today and update. >>> >>> Thanks again for all of the help! >>> >>> Bill- >>> >>> On Tue, Dec 13, 2011 at 9:23 AM, Gary Gregory = wrote: >>>> FWIW: My set up is such that I always enter my password on the CLI whe= n >>>> Maven asks for it. >>>> >>>> Gary >>>> >>>> On Tue, Dec 13, 2011 at 9:20 AM, sebb wrote: >>>> >>>>> On 13 December 2011 13:53, William Speirs wrote: >>>>> > On Tue, Dec 13, 2011 at 12:16 AM, Gary Gregory >>>>> wrote: >>>>> >> Did you do the whole master pass phrase/obfuscated stuff that the = top >>>>> >> of the Using Nexus wiki points to? >>>>> > >>>>> > I did not do this at first, but I have since tried. I setup my >>>>> > settings-security.xml file as show on the wiki page, and added the >>>>> > encrypted passwords to my settings.xml file. Still doesn't work. >>>>> > >>>>> > Below is my entire settings.xml file (with passwords removed). By >>>>> > adding the element, it will not hang but prompt m= e >>>>> > for a password if it's not supplied via . However, >>>>> > even when I type my passphrase in, it still rejects it. Again, if I >>>>> > use gpg -c somefile.txt and type in that same passphrase, everythin= g >>>>> > works. >>>>> > >>>>> > I'm testing this by running: mvn -Prc,apache package gpg:sign >>>>> >>>>> Not sure what the rc profile does compared with the release profile. >>>>> >>>>> What version of GPG are you using? >>>>> >>>>> >>>>> > And I keep getting: >>>>> > >>>>> > [INFO] [gpg:sign {execution: default-cli}] >>>>> > gpg: skipped "B0EC1E65": bad passphrase >>>>> > gpg: signing failed: bad passphrase >>>>> > >>>>> > I'm at a loss at this point... >>>>> > >>>>> > Bill- >>>>> > >>>>> > * settings.xml * >>>>> > >>>>> > >>>>> > >>>> > xmlns:xsi=3D"http://www.w3.org/2001/XMLSchema-instance" >>>>> > xsi:schemaLocation=3D"http://maven.apache.org/SETTINGS/1.0.0 >>>>> > http://maven.apache.org/xsd/settings-1.0.0.xsd"> >>>>> > =A0 >>>>> > =A0 =A0 >>>>> > =A0 =A0 =A0apache.releases >>>>> > =A0 =A0 =A0wspeirs >>>>> > =A0 =A0 =A0{my encrypted Apache password here} >>>>> > =A0 =A0 =A0664 >>>>> > =A0 =A0 =A0775 >>>>> > =A0 =A0 >>>>> > =A0 =A0 >>>>> > =A0 =A0 =A0apache.website >>>>> > =A0 =A0 =A0wspeirs >>>>> > =A0 =A0 =A0{my encrypted Apache password here} >>>>> > =A0 =A0 =A0664 >>>>> > =A0 =A0 =A0775 >>>>> > =A0 =A0 >>>>> > =A0 =A0 >>>>> > =A0 =A0 =A0apache.snapshots >>>>> > =A0 =A0 =A0wspeirs >>>>> > =A0 =A0 =A0{my encrypted Apache password here} >>>>> > =A0 =A0 =A0664 >>>>> > =A0 =A0 =A0775 >>>>> > =A0 =A0 >>>>> > =A0 >>>>> > =A0 >>>>> > =A0 =A0 >>>>> > =A0 =A0 =A0apache >>>>> > =A0 =A0 =A0 >>>>> > =A0 =A0 =A0 =A0false >>>>> > =A0 =A0 =A0 >>>>> > =A0 =A0 =A0 >>>>> > =A0 =A0 =A0 =A0forked-path >>>>> > =A0 =A0 =A0 =A0scp >>>>> > =A0 =A0 =A0 =A0B0EC1E65 >>>>> > =A0 =A0 =A0 =A0{my encrypted GPG password here} >>>>> > =A0 =A0 =A0 >>>>> > =A0 =A0 >>>>> > =A0 >>>>> > >>>>> >>>>> I use an external GPG database (on a USB stick); but for test purpose= s >>>>> I have a dummy signing key using a local database. >>>>> >>>>> =A0 =A0 >>>>> =A0 =A0 =A0keyTest >>>>> =A0 =A0 =A0 >>>>> =A0 =A0 =A0 =A0Deploy Test User >>>>> =A0 =A0 =A0 =A0password in clear >>>>> =A0 =A0 =A0 =A0false >>>>> =A0 =A0 =A0 >>>>> =A0 =A0 >>>>> >>>>> Here's the real key profile: >>>>> >>>>> =A0 =A0 >>>>> =A0 =A0 =A0keyReal >>>>> =A0 =A0 =A0 >>>>> =A0 =A0 =A0 =A04FAD5F62 >>>>> =A0 =A0 =A0 =A0/path/to/secring.gpg >>>>> =A0 =A0 =A0 >>>>> =A0 =A0 =A0 =A0gpg2 >>>>> =A0 =A0 =A0 =A0false >>>>> =A0 =A0 =A0 >>>>> =A0 =A0 >>>>> >>>>> I found gpg2 worked better for me, but I still use gpg1 sometimes. >>>>> >>>>> The real gpg password is not stored anywhere; I have to enter it at >>>>> run-time. >>>>> >>>>> For example, if I remove the test password, I see the following: >>>>> >>>>> mvn package gpg:sign -PkeyTest >>>>> ... >>>>> [INFO] [jar:jar {execution: default-jar}] >>>>> [INFO] [jar:test-jar {execution: default}] >>>>> [INFO] [gpg:sign {execution: default-cli}] >>>>> GPG Passphrase: * <=3D enter the passphrase here. >>>>> >>>>> The same applies to gpg1 and gpg2, but if I use gpg2, I also get the >>>>> following warnings: >>>>> >>>>> gpg: WARNING: "--no-use-agent" is an obsolete option - it has no effe= ct >>>>> gpg: WARNING: "--no-use-agent" is an obsolete option - it has no effe= ct >>>>> gpg: WARNING: "--no-use-agent" is an obsolete option - it has no effe= ct >>>>> >>>>> The settings-security.xml file is not needed for GPG passwords. >>>>> And I've not tried it. >>>>> >>>>> I suggest you set up a dummy local key and password as per my example= . >>>>> Get that working, then try specifying the secret key ring to point to >>>>> the dummy key. >>>>> When that works, drop the password. >>>>> Then fix the secret key ring tag to point to your real secret key rin= g. >>>>> >>>>> > >>>>> > -------------------------------------------------------------------= -- >>>>> > To unsubscribe, e-mail: dev-unsubscribe@commons.apache.org >>>>> > For additional commands, e-mail: dev-help@commons.apache.org >>>>> > >>>>> >>>>> --------------------------------------------------------------------- >>>>> To unsubscribe, e-mail: dev-unsubscribe@commons.apache.org >>>>> For additional commands, e-mail: dev-help@commons.apache.org >>>>> >>>>> >>>> >>>> >>>> -- >>>> E-Mail: garydgregory@gmail.com | ggregory@apache.org >>>> JUnit in Action, 2nd Ed: http://bit.ly/ECvg0 >>>> Spring Batch in Action: http://bit.ly/bqpbCK >>>> Blog: http://garygregory.wordpress.com >>>> Home: http://garygregory.com/ >>>> Tweet! http://twitter.com/GaryGregory >>> >>> --------------------------------------------------------------------- >>> To unsubscribe, e-mail: dev-unsubscribe@commons.apache.org >>> For additional commands, e-mail: dev-help@commons.apache.org >>> >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: dev-unsubscribe@commons.apache.org >> For additional commands, e-mail: dev-help@commons.apache.org >> --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscribe@commons.apache.org For additional commands, e-mail: dev-help@commons.apache.org