From 0fcf755dbd7eef53160ae8f9758465b2bdad33e9 Mon Sep 17 00:00:00 2001 From: Hammy Date: Thu, 10 Jun 2021 02:47:25 +0100 Subject: [PATCH] Update Dockerfile & Jenkinsfile Correctly use credentials to upload gpg keys / settings.xml to properly sign artifacts --- Dockerfile | 7 +++++-- Jenkinsfile | 17 +++++++++++++++-- 2 files changed, 20 insertions(+), 4 deletions(-) diff --git a/Dockerfile b/Dockerfile index 3d6944d..2f92d62 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,7 @@ FROM maven:3.8.1-adoptopenjdk-11 +MAINTAINER Goudham Suresh -RUN apt-get update && sudo apt-get upgrade && sudo apt-get dist-upgrade -RUN apt install gpg \ No newline at end of file +RUN apt-get -y update && \ + apt-get -y upgrade && \ + apt-get -y dist-upgrade && \ + apt-get -y install gpg \ No newline at end of file diff --git a/Jenkinsfile b/Jenkinsfile index 332a206..5cde786 100644 --- a/Jenkinsfile +++ b/Jenkinsfile @@ -1,7 +1,7 @@ pipeline { agent { dockerfile { - args '-v /root/.m2:/root/.m2' + args '-u root' } } @@ -13,12 +13,25 @@ pipeline { NEXUS_CREDENTIAL_ID = 'e5582b32-3507-4e88-ab7c-d16d701c46e9' CODECOV_TOKEN = credentials('44a3c021-5cbb-4a6f-bea2-ae6c51d43038') + + GPG_SECRET_KEY = credentials('4dbfd4ed-bba4-44e0-8410-fbce1a9bba73') + GPG_OWNER_TRUST = credentials('8703bbe8-c099-481f-8337-1dce32d51771') } stages { + stage("Import GPG Keys") { + steps { + sh """ + gpg --batch --import ${GPG_SECRET_KEY} + gpg --import-ownertrust ${GPG_OWNER_TRUST} + """ + } + } stage("Building") { steps { - sh "mvn -B -DskipTests clean install" + withCredentials([file(credentialsId: '076a36e8-d448-46fc-af11-7e7181a6cb99', variable: 'MAVEN_SETTINGS')]) { + sh 'mvn -s $MAVEN_SETTINGS -B -DskipTests clean install' + } } } stage("Testing") {