directory-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From build...@apache.org
Subject svn commit: r928286 - in /websites/staging/directory/trunk/content: ./ api/developer-guide.html
Date Fri, 07 Nov 2014 13:50:43 GMT
Author: buildbot
Date: Fri Nov  7 13:50:43 2014
New Revision: 928286

Log:
Staging update by buildbot for directory

Modified:
    websites/staging/directory/trunk/content/   (props changed)
    websites/staging/directory/trunk/content/api/developer-guide.html

Propchange: websites/staging/directory/trunk/content/
------------------------------------------------------------------------------
--- cms:source-revision (original)
+++ cms:source-revision Fri Nov  7 13:50:43 2014
@@ -1 +1 @@
-1637375
+1637376

Modified: websites/staging/directory/trunk/content/api/developer-guide.html
==============================================================================
--- websites/staging/directory/trunk/content/api/developer-guide.html (original)
+++ websites/staging/directory/trunk/content/api/developer-guide.html Fri Nov  7 13:50:43
2014
@@ -309,7 +309,7 @@ $ <span class="n">mvn</span> <span class
 
 
 <p>This deploys the release to a staging repository.</p>
-<p>Go to https://repository.apache.org/index.html#stagingRepositories and close the
staging repository.</p>
+<p>Go to <a href="https://repository.apache.org/index.html#stagingRepositories">the
nexus server</a> and close the staging repository.</p>
 <h3 id="build-the-site">Build the Site</h3>
 <div class="codehilite"><pre>$ <span class="n">cd</span> <span
class="n">target</span><span class="o">/</span><span class="n">checkout</span>
 $ <span class="n">mvn</span> <span class="n">site</span>
@@ -317,17 +317,130 @@ $ <span class="n">mvn</span> <span class
 
 
 <p>This creates the site.</p>
-<DIV class="info" markdown="1">
-Now, you have to sign the binary packages which are in target/checkout/distribution/target.
-
-Use your PGP key ID (the pub key, 4096R/[XXXXXXX] where [XXXXXXX] is the key ID)
-</DIV>
-
+<h3 id="sign-the-packages">Sign the packages</h3>
+<p>Now, you have to sign the binary packages which are in target/checkout/distribution/target.</p>
+<p>Use your PGP key ID (the pub key, 4096R/[XXXXXXX] where [XXXXXXX] is the key ID)</p>
 <p>You can get the keys by typing :</p>
 <div class="codehilite"><pre><span class="n">gpg</span> <span
class="o">--</span><span class="n">list</span><span class="o">-</span><span
class="n">keys</span>
 </pre></div>
 
 
+<p>The produced packages already have .asc signature that you will need to remove :</p>
+<div class="codehilite"><pre>$ <span class="n">cd</span> <span
class="n">target</span><span class="o">/</span><span class="n">checkout</span><span
class="o">/</span><span class="n">distribution</span><span class="o">/</span><span
class="n">target</span>
+$ <span class="n">rm</span> <span class="o">*</span><span class="p">.</span><span
class="n">asc</span>
+$ <span class="o">~/</span><span class="nb">sign</span><span class="p">.</span><span
class="n">sh</span>
+<span class="n">PGP</span> <span class="n">Key</span> <span class="n">ID</span><span
class="p">:</span> 
+<span class="o">&lt;</span><span class="n">You</span> <span
class="n">public</span> <span class="n">key</span><span class="o">&gt;</span>
+<span class="n">PGP</span> <span class="n">Key</span> <span class="n">Password</span><span
class="p">:</span> 
+<span class="o">&lt;</span><span class="n">Your</span> <span
class="n">password</span><span class="o">&gt;</span>
+<span class="o">-</span><span class="n">n</span> <span class="n">Signing</span><span
class="p">:</span> <span class="o">./</span><span class="n">apache</span><span
class="o">-</span><span class="n">ldap</span><span class="o">-</span><span
class="n">api</span><span class="o">-</span>1<span class="p">.</span>0<span
class="p">.</span>0<span class="o">-</span><span class="n">M25</span><span
class="o">-</span><span class="n">bin</span><span class="p">.</span><span
class="n">tar</span><span class="p">.</span><span class="n">gz</span>
<span class="p">...</span> 
+  <span class="o">-</span> <span class="n">Generated</span> <span
class="s">&#39;./apache-ldap-api-1.0.0-M25-bin.tar.gz.md5&#39;</span>
+  <span class="o">-</span> <span class="n">Generated</span> <span
class="s">&#39;./apache-ldap-api-1.0.0-M25-bin.tar.gz.sha1&#39;</span>
+  <span class="o">-</span> <span class="n">Generated</span> <span
class="s">&#39;./apache-ldap-api-1.0.0-M25-bin.tar.gz.asc&#39;</span>
+<span class="o">-</span><span class="n">n</span> <span class="n">Signing</span><span
class="p">:</span> <span class="o">./</span><span class="n">apache</span><span
class="o">-</span><span class="n">ldap</span><span class="o">-</span><span
class="n">api</span><span class="o">-</span>1<span class="p">.</span>0<span
class="p">.</span>0<span class="o">-</span><span class="n">M25</span><span
class="o">-</span><span class="n">bin</span><span class="p">.</span><span
class="n">zip</span> <span class="p">...</span> 
+  <span class="o">-</span> <span class="n">Generated</span> <span
class="s">&#39;./apache-ldap-api-1.0.0-M25-bin.zip.md5&#39;</span>
+  <span class="o">-</span> <span class="n">Generated</span> <span
class="s">&#39;./apache-ldap-api-1.0.0-M25-bin.zip.sha1&#39;</span>
+  <span class="o">-</span> <span class="n">Generated</span> <span
class="s">&#39;./apache-ldap-api-1.0.0-M25-bin.zip.asc&#39;</span>
+<span class="p">...</span>
+</pre></div>
+
+
+<p>You are done with the signature.</p>
+<p>For the record, here is the script shell you can use to sign the packages. Name
it sign.sh, and put it into your home directory (on a unix based computer) :</p>
+<table class="codehilitetable"><tr><td class="linenos"><div class="linenodiv"><pre>
1
+ 2
+ 3
+ 4
+ 5
+ 6
+ 7
+ 8
+ 9
+10
+11
+12
+13
+14
+15
+16
+17
+18
+19
+20
+21
+22
+23
+24
+25
+26
+27
+28
+29
+30
+31
+32
+33
+34
+35
+36
+37
+38
+39
+40
+41
+42
+43
+44
+45
+46</pre></div></td><td class="code"><div class="codehilite"><pre><span
class="c">#!/bin/sh</span>
+
+<span class="nb">echo</span> <span class="s2">&quot;PGP Key ID: &quot;</span>
+<span class="nb">read </span>DEFAULT_KEY
+
+<span class="nb">echo</span> <span class="s2">&quot;PGP Key Password:
&quot;</span>
+stty -echo
+<span class="nb">read </span>PASSWORD
+stty <span class="nb">echo</span>
+<span class="nb">echo</span> <span class="s2">&quot;&quot;</span>
+
+<span class="k">for </span>FILE in <span class="k">$(</span>find
. -maxdepth 1 -not <span class="s1">&#39;(&#39;</span> -name <span
class="s2">&quot;sign.sh&quot;</span> -or -name <span class="s2">&quot;.*&quot;</span>
-or -name <span class="s2">&quot;*.md5&quot;</span> -or -name <span
class="s2">&quot;*.sha1&quot;</span> -or -name <span class="s2">&quot;*.asc&quot;</span>
<span class="s1">&#39;)&#39;</span> -and -type f<span class="k">)</span>
; <span class="k">do</span>
+<span class="k">    if</span> <span class="o">[</span> -f <span
class="s2">&quot;$FILE.asc&quot;</span> <span class="o">]</span>;
<span class="k">then</span>
+<span class="k">        </span><span class="nb">echo</span> <span
class="s2">&quot;Skipping: $FILE&quot;</span>
+        <span class="k">continue</span>
+<span class="k">    fi</span>
+
+<span class="k">    </span><span class="nb">echo</span> -n <span
class="s2">&quot;Signing: $FILE ... &quot;</span>
+
+    <span class="c"># MD5</span>
+    <span class="k">if</span> <span class="o">[</span> ! -f <span
class="s2">&quot;$FILE.md5&quot;</span> <span class="o">]</span>;
+    <span class="k">then</span>
+<span class="k">        </span>openssl md5 &lt; <span class="s2">&quot;$FILE&quot;</span>
| cut <span class="s2">&quot;-d &quot;</span> -f2 &gt; <span class="s2">&quot;$FILE.md5&quot;</span>
+        <span class="nb">echo</span> <span class="s2">&quot;  - Generated
&#39;$FILE.md5&#39;&quot;</span>
+    <span class="k">else</span>
+<span class="k">        </span><span class="nb">echo</span> <span
class="s2">&quot;  - Skipped &#39;$FILE.md5&#39; (file already existing)&quot;</span>
+    <span class="k">fi</span>
+
+    <span class="c"># SHA1</span>
+    <span class="k">if</span> <span class="o">[</span> ! -f <span
class="s2">&quot;$FILE.sha1&quot;</span> <span class="o">]</span>;
+    <span class="k">then</span>
+<span class="k">        </span>gpg -v --default-key <span class="s2">&quot;$DEFAULT_KEY&quot;</span>
--print-md SHA1 <span class="s2">&quot;$FILE&quot;</span> &gt; <span
class="s2">&quot;$FILE&quot;</span>.sha1
+        <span class="nb">echo</span> <span class="s2">&quot;  - Generated
&#39;$FILE.sha1&#39;&quot;</span>
+    <span class="k">else</span>
+<span class="k">        </span><span class="nb">echo</span> <span
class="s2">&quot;  - Skipped &#39;$FILE.sha1&#39; (file already existing)&quot;</span>
+    <span class="k">fi</span>
+
+    <span class="c"># ASC</span>
+    <span class="k">if</span> <span class="o">[</span> ! -f <span
class="s2">&quot;$FILE.asc&quot;</span> <span class="o">]</span>;
+    <span class="k">then</span>
+<span class="k">        </span><span class="nb">echo</span> <span
class="s2">&quot;$PASSWORD&quot;</span> | gpg --default-key <span class="s2">&quot;$DEFAULT_KEY&quot;</span>
--detach-sign --armor --no-tty --yes --passphrase-fd 0 <span class="s2">&quot;$FILE&quot;</span>
+        <span class="nb">echo</span> <span class="s2">&quot;  - Generated
&#39;$FILE.asc&#39;&quot;</span>
+    <span class="k">else</span>
+<span class="k">        </span><span class="nb">echo</span> <span
class="s2">&quot;  - Skipped &#39;$FILE.asc&#39; (file already existing)&quot;</span>
+    <span class="k">fi</span>
+<span class="k">done</span>
+</pre></div>
+</td></tr></table>
+
 <h3 id="publish-source-and-binary-distribution-packages">Publish Source and Binary
Distribution Packages</h3>
 <p>First of all, create a new directory on people.apache.org/public_html to store the
pacckages :</p>
 <div class="codehilite"><pre>$ <span class="n">ssh</span> <span
class="n">people</span><span class="p">.</span><span class="n">apache</span><span
class="p">.</span><span class="n">org</span>



Mime
View raw message