Decoding signing key from Base64

jakubmalek · jakubmalek · commit eda3ce5d7d15 · 2022-07-05T17:04:37.000+02:00
Using `release` environment for release action
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -7,6 +7,7 @@ on:
 jobs:
   build:
     runs-on: ubuntu-latest
+    environment: release
     steps:
       - uses: actions/checkout@v3
       - name: Set up JDK 11
diff --git a/build.gradle.kts b/build.gradle.kts
@@ -1,4 +1,5 @@
 import nebula.plugin.contacts.Contact
+import java.util.Base64
 
 plugins {
     id("org.owasp.dependencycheck") version "7.1.1"
@@ -38,11 +39,13 @@ nexusPublishing {
 }
 
 signing {
-    useInMemoryPgpKeys(
-        System.getenv("SIGNING_KEY_ID"),
-        System.getenv("SIGNING_KEY"),
-        System.getenv("SIGNING_KEY_PASSWORD"))
-    sign(publishing.publications["nebula"])
+    val signingKeyId = System.getenv("SIGNING_KEY_ID")
+    val signingKey = System.getenv("SIGNING_KEY")
+    val signingKeyPassword = System.getenv("SIGNING_KEY_PASSWORD")
+    if (signingKeyId != null && signingKey != null) {
+        useInMemoryPgpKeys(signingKeyId, String(Base64.getDecoder().decode(signingKey)), signingKeyPassword)
+        sign(publishing.publications["nebula"])
+    }
 }
 
 contacts {
