Maven plugin for Sonatype Central Portal API (API Doc).
- Authenticate with Bearer token (from CLI or Maven settings.xml)
- Upload artifact bundles to Central Portal with configurable publishing types
- Check if a component is published in Central
- Retrieve and display deployment status (state, errors, date)
- List all deployments for a namespace, including state, creation date, and errors per component
- Release (publish) a deployment if it is validated
- Drop (delete) a deployment by ID
- Drop all deployments in a namespace with
central.removeAll - Drop only deployments in FAILED state with
central.removeFailedOnly(works with single, latest, or all deployments) - Supports custom Central Portal API URL and serverId for token retrieval
| Parameter | Description | Default | Example Value |
|---|---|---|---|
| central.bearerToken | Bearer token for authentication | xxxxxxxx... | |
| central.serverId | Server id in settings.xml to use for bearer token | central | myserverid |
| central.namespace | Namespace of the component | org.eclipse.cbi | |
| central.name | Name of the component | org.eclipse.cbi.tycho.example-parent | |
| central.version | Version of the component | 1.0.0 | |
| central.deploymentId | Deployment id for release/drop operations | xxxxx-xxxxx-xxxx-xxx-xxxxxxx | |
| central.centralApiUrl | Custom Central Portal API URL | https://central.sonatype.com/api/v1/publisher | https://central.sonatype.com/api/v1/publisher |
| central.removeAll | If true, drop all deployments in the namespace | false | true |
| central.removeFailedOnly | If true, only drop deployments in FAILED state (used with removeAll or when dropping by id/latest) | true | true |
| central.dryRun | If true, only simulate the release/drop (no action performed) | false | true |
| central.artifactFile | Path to the artifact file to upload (zip file containing Maven artifacts) | /path/to/bundle.zip | |
| central.bundleName | Custom name for the upload bundle (defaults to artifact filename without extension) | my-custom-bundle | |
| central.automaticPublishing | Whether to automatically publish after validation (true=AUTOMATIC, false=USER_MANAGED) | false | true |
| central.maxWaitTime | Maximum wait time in seconds for validation to complete | 300 | 600 |
| central.maxWaitTimePublishing | Maximum wait time in seconds for publishing to complete | 600 | 900 |
| central.pollInterval | Polling interval in seconds when checking deployment status | 5 | 10 |
| central.waitForCompletion | If true, wait for complete publishing process. If false, return after validation/publishing starts | false | true |
You can provide your Bearer token either via the command line or securely via your Maven settings.xml file.
| Goal/Function | Description | Main Parameters | Example Command |
|---|---|---|---|
| rc-status | List publication status for a component | namespace, name, version, bearerToken | mvn central-staging-plugins:rc-status -Dcentral.namespace=org.eclipse.cbi -Dcentral.name=org.eclipse.cbi.tycho.example-parent -Dcentral.version=1.0.0 |
| rc-upload | Upload artifact bundle to Central Portal with validation waiting | artifactFile, bundleName, automaticPublishing, waitForCompletion, bearerToken | mvn central-staging-plugins:rc-upload -Dcentral.artifactFile=/path/to/bundle.zip -Dcentral.automaticPublishing=false -Dcentral.waitForCompletion=true |
| rc-publish | Publish a deployment (publish if validated, supports dry run) | deploymentId (optional), bearerToken, dryRun | mvn central-staging-plugins:rc-publish -Dcentral.deploymentId=xxxxx-xxxxx-xxxx-xxx-xxxxxxx -Dcentral.dryRun=true |
| rc-drop | Drop (delete) a deployment (supports dry run) | deploymentId, bearerToken, dryRun | mvn central-staging-plugins:rc-drop -Dcentral.deploymentId=xxxxx-xxxxx-xxxx-xxx-xxxxxxx -Dcentral.dryRun=true |
| rc-list | List all deployments for a namespace, with state, date, and errors per component | namespace, bearerToken | mvn central-staging-plugins:rc-list -Dcentral.namespace=org.eclipse.cbi |
The automaticPublishing parameter controls the publishing behavior:
Manual Publishing (default): Upload, validate, and wait for manual approval
mvn central-staging-plugins:rc-upload -Dcentral.artifactFile=/path/to/bundle.zip
# or explicitly
mvn central-staging-plugins:rc-upload -Dcentral.artifactFile=/path/to/bundle.zip -Dcentral.automaticPublishing=falseAutomatic Publishing: Upload, validate, and automatically publish to Maven Central
mvn central-staging-plugins:rc-upload -Dcentral.artifactFile=/path/to/bundle.zip -Dcentral.automaticPublishing=true -Dcentral.waitForCompletion=trueThe rc-upload goal requires a bundle file (zip archive) that follows the Maven Repository Layout. The bundle must contain your artifacts with all required files: JAR, POM, sources, javadoc, and their corresponding signatures and checksums.
See doc: https://central.sonatype.org/publish/publish-portal-upload/
For a project with namespace com.sonatype.central.example, component example_java_project, and version 0.1.0:
bundle.zip
└── com/
└── sonatype/
└── central/
└── example/
└── example_java_project/
└── 0.1.0/
├── example_java_project-0.1.0.jar
├── example_java_project-0.1.0.jar.asc
├── example_java_project-0.1.0.jar.md5
├── example_java_project-0.1.0.jar.sha1
├── example_java_project-0.1.0.pom
├── example_java_project-0.1.0.pom.asc
├── example_java_project-0.1.0.pom.md5
├── example_java_project-0.1.0.pom.sha1
├── example_java_project-0.1.0-sources.jar
├── example_java_project-0.1.0-sources.jar.asc
├── example_java_project-0.1.0-sources.jar.md5
├── example_java_project-0.1.0-sources.jar.sha1
├── example_java_project-0.1.0-javadoc.jar
├── example_java_project-0.1.0-javadoc.jar.asc
├── example_java_project-0.1.0-javadoc.jar.md5
└── example_java_project-0.1.0-javadoc.jar.sha1- Archive format: zip, tar.gz, or other common archive formats
- Maximum size: 1GB per upload
- Required files per artifact:
- Main JAR file
- POM file
- Sources JAR (
-sources.jar) - Javadoc JAR (
-javadoc.jar) - GPG signatures (
.ascfiles) for all above - Checksums (
.md5and.sha1files) for all above
- Multiple components: A single bundle can contain multiple components
- Layout: Must follow Maven Repository Layout with proper directory structure
The deployment state can have the following values:
- PENDING: A deployment is uploaded and waiting for processing by the validation service
- VALIDATING: A deployment is being processed by the validation service
- VALIDATED: A deployment has passed validation and is waiting on a user to manually publish via the Central Portal UI
- PUBLISHING: A deployment has been either automatically or manually published and is being uploaded to Maven Central
- PUBLISHED: A deployment has successfully been uploaded to Maven Central
- FAILED: A deployment has encountered an error (additional context will be present in an errors field)
Add the following to your ~/.m2/settings.xml:
<settings>
<servers>
<server>
<id>central</id>
<username>unused</username>
<password>YOUR_BEARER_TOKEN</password>
</server>
</servers>
</settings>You can change the server id used in settings.xml by passing -Dcentral.serverId=yourServerId to any plugin command. Example:
mvn central-staging-plugins:rc-publish -Dcentral.serverId=myserveridThe plugin will automatically use the token from the server with id central (or your custom id) if -Dcentral.bearerToken is not provided.
How to produce a bearer token?
$ printf "example_username:example_password" | base64
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXname: Publish staging package to the Maven Central Repository
on:
push:
branches: [ "staging" ]
workflow_dispatch:
jobs:
publish:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- name: Set up Maven Central Repository
uses: actions/setup-java@v4
with:
java-version: '21'
distribution: 'temurin'
server-id: central
server-username: MAVEN_USERNAME
server-password: MAVEN_PASSWORD
gpg-private-key: ${{ secrets.GPG_PRIVATE_KEY }}
gpg-passphrase: MAVEN_GPG_PASSPHRASE
- name: Generate Sonatype Bearer Token
id: bearer_token
run: |
echo "CENTRAL_SONATYPE_TOKEN=$(echo -n '${{ secrets.CENTRAL_SONATYPE_TOKEN_USERNAME }}:${{ secrets.CENTRAL_SONATYPE_TOKEN_PASSWORD }}' | base64)" >> $GITHUB_ENV
- name: Drop failed staging deployments
run: |
mvn -P central-staging --batch-mode central-staging-plugins:rc-drop -Dcentral.removeAll=true
env:
MAVEN_PASSWORD: ${{ env.CENTRAL_SONATYPE_TOKEN }}
- name: Publish package
run: |
mvn -P central-staging --batch-mode clean compile javadoc:jar deploy -DskipTests
env:
MAVEN_USERNAME: ${{ secrets.CENTRAL_SONATYPE_TOKEN_USERNAME }}
MAVEN_PASSWORD: ${{ secrets.CENTRAL_SONATYPE_TOKEN_PASSWORD }}
MAVEN_GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
- name: Release package
run: |
mvn -P central-staging --batch-mode central-staging-plugins:rc-publish
env:
MAVEN_PASSWORD: ${{ env.CENTRAL_SONATYPE_TOKEN }}mvn clean packageEclipse Public License v.2.0 (LICENSE)
Contributions are welcome! Please read CONTRIBUTING.md for guidelines on how to contribute to this project.