ci: configure release build

Author: oliemansm

.github/workflows/ci.yml

@@ -67,7 +67,7 @@ jobs:
         env:
           OSS_USER_TOKEN_KEY: ${{ secrets.OSS_USER_TOKEN_KEY }}
           OSS_USER_TOKEN_PASS: ${{ secrets.OSS_USER_TOKEN_PASS }}
-        run: ./gradlew publish
+        run: ./gradlew clean build publish
   sonar:
     name: Sonar analysis
     needs: validation

.github/workflows/release.yml

@@ -58,10 +58,19 @@ jobs:
             ${{ runner.os }}-${{ env.java-version }}-gradle-
       - name: Make gradlew executable
         run: chmod +x ./gradlew
+      - name: Prepare environment
+        env:
+          GPG_KEY_CONTENTS: ${{ secrets.GPG_KEY_CONTENTS }}
+          SIGNING_SECRET_KEY_RING_FILE: ${{ secrets.GPG_SIGNING_SECRET_KEY_RING_FILE }}
+        run: |
+          git fetch --unshallow
+          sudo bash -c "echo '$GPG_KEY_CONTENTS' | base64 -d > '$SIGNING_SECRET_KEY_RING_FILE'"
       - name: Publish release
         env:
-          BINTRAY_USER: ${{ secrets.BINTRAY_USER }}
-          BINTRAY_PASS: ${{ secrets.BINTRAY_PASSWORD }}
+          SIGNING_KEY_ID: ${{ secrets.GPG_SIGNING_KEY_ID }}
+          SIGNING_PASSWORD: ${{ secrets.GPG_SIGNING_PASSWORD }}
+          SIGNING_SECRET_KEY_RING_FILE: ${{ secrets.GPG_SIGNING_SECRET_KEY_RING_FILE }}
           OSS_USER_TOKEN_KEY: ${{ secrets.OSS_USER_TOKEN_KEY }}
           OSS_USER_TOKEN_PASS: ${{ secrets.OSS_USER_TOKEN_PASS }}
-        run: bash github-build.sh
+#        run: bash github-build.sh
+        run: ./gradlew clean build publish

build.gradle

@@ -47,7 +47,6 @@ subprojects {
     }
     apply plugin: 'maven-publish'
     apply plugin: 'signing'
-    apply plugin: 'com.jfrog.artifactory'
 
     group "$PROJECT_GROUP"
 
@@ -134,15 +133,10 @@ subprojects {
             }
         }
 
-        signing {
-//            useInMemoryPgpKeys(System.env.GPG_SIGNING_KEY, System.env.GPG_SIGNING_PASSWORD)
-            required {
-                // signing is required if this is a release version and the artifacts are to be published
-                !version.toString().endsWith('-SNAPSHOT') && tasks.withType(PublishToMavenRepository).find {
-                    gradle.taskGraph.hasTask it
-                }
+        if (!version.toString().endsWith('-SNAPSHOT')) {
+            signing {
+                sign publishing.publications
             }
-            sign publishing.publications
         }
 
         publishing {

github-build.sh

@@ -42,10 +42,10 @@ commitNextVersion() {
 git config --global user.email "[email protected]"
 git config --global user.name "GitHub Actions"
 
-echo "Deploying release to Bintray"
+echo "Deploying release to Sonatype"
 removeSnapshots
 
-./gradlew clean assemble && ./gradlew bintrayUpload -x check --info
+./gradlew clean build publish
 
 commitRelease
 bumpVersion

gradle.properties

@@ -16,7 +16,7 @@
 # DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
 # FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
 #
-version=11.1.0-SNAPSHOT
+version=11.1.0
 ### Project Metadata
 PROJECT_GROUP=com.graphql-java-kickstart
 PROJECT_NAME=graphql-spring-boot