sign:sign
Full name:
org.simplify4u.plugins:sign-maven-plugin:1.1.0:sign
Description:
Creates Open PGP / GPG signatures for all of the project's artifacts.
Attributes:
- Requires a Maven project to be executed.
- The goal is thread-safe and supports parallel builds.
- Since version:
0.1.0. - Binds by default to the lifecycle phase:
verify.
Optional Parameters
| Name | Type | Since | Description |
|---|---|---|---|
<excludes> |
List<String> |
1.0.0 |
A list of files to exclude from being signed. Can contain Ant-style wildcards and double wildcards. Default: **/*.md5,**/*.sha1,**/*.sha256,**/*.sha512,**/*.asc |
<keyFile> |
File |
0.1.0 |
File with This value can be delivered by environment variable If Key can by created and exported by: gpg --armor --export-secret-keys Default: ${user.home}/.m2/sign-key.ascUser Property: sign.keyFile |
<keyId> |
String |
0.1.0 |
This value can be delivered by environment variable User Property: sign.keyId |
<keyPass> |
String |
0.1.0 |
Can be encrypted by standard Maven Password Encryption Provided key can be stored in plain text, in this case This value can be delivered by environment variable User Property: sign.keyPass |
<serverId> |
String |
1.0.0 |
A
NOTICE when used Environment variable - User Property: sign.serverId |
<skip> |
boolean |
0.1.0 |
Skip the execution of plugin. Default: falseUser Property: sign.skip |
<skipNoKey> |
boolean |
0.1.0 |
By default execution is skipped if private key is missing.
When set to Default: trueUser Property: sign.skipNoKey |
Parameter Details
<excludes>
- Type:
java.util.List<java.lang.String> - Since:
1.0.0 - Required:
No - Default:
**/*.md5,**/*.sha1,**/*.sha256,**/*.sha512,**/*.asc
<keyFile>
File with private key used for signing.
This value can be delivered by environment variable SIGN_KEY. Environment variable must contain private key content - not file path for key.
If keyFile path start with ~/ then ~/ will be replace by user home directory - java user.home property
Key can by created and exported by:
gpg --armor --export-secret-keys
- Type:
java.io.File - Since:
0.1.0 - Required:
No - User Property:
sign.keyFile - Default:
${user.home}/.m2/sign-key.asc
<keyId>
keyId used for signing. If not provided first key from keyFile will be taken.
This value can be delivered by environment variable SIGN_KEY_ID.
- Type:
java.lang.String - Since:
0.1.0 - Required:
No - User Property:
sign.keyId
<keyPass>
passphrase to decrypt private signing key.
Can be encrypted by standard Maven Password Encryption
Provided key can be stored in plain text, in this case keyPass can be empty.
This value can be delivered by environment variable SIGN_KEY_PASS.
- Type:
java.lang.String - Since:
0.1.0 - Required:
No - User Property:
sign.keyPass
<serverId>
A serverId from settings.xml which contains configuration for private key used to signing.
- server.username
- key id - optional value
- server.privateKey
- path to file contains private key
- server.passphrase
- password for decrypting private key
NOTICE when used serverId data from property keyId, keyPass and keyFile will not be used.
Environment variable - SIGN_KEY_ID, SIGN_KEY_PASS and SIGN_KEY have always priority and when will be provided will be used first.
- Type:
java.lang.String - Since:
1.0.0 - Required:
No - User Property:
sign.serverId
<skip>
- Type:
boolean - Since:
0.1.0 - Required:
No - User Property:
sign.skip - Default:
false
<skipNoKey>
When set to false and private key is missing error will be reported for current Maven session.
- Type:
boolean - Since:
0.1.0 - Required:
No - User Property:
sign.skipNoKey - Default:
true