From 9665943f156f698cde2022ddd1eef8222dc6807a Mon Sep 17 00:00:00 2001 From: Rodrigo Antunes Date: Tue, 16 Jul 2024 11:18:16 -0300 Subject: [PATCH] Adjust pipelines to use the gpg key provided by Apache to sign the artifacts (#1778) --- .ci/jenkins/Jenkinsfile.build-image | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.ci/jenkins/Jenkinsfile.build-image b/.ci/jenkins/Jenkinsfile.build-image index 0a02478ec..eef738516 100644 --- a/.ci/jenkins/Jenkinsfile.build-image +++ b/.ci/jenkins/Jenkinsfile.build-image @@ -220,8 +220,8 @@ pipeline { docker pull ${getBuiltImageTag()} docker save ${getBuiltImageTag()} | gzip > ${resultingFileName} """ - release.gpgImportKeyFromFileWithPassword(getReleaseGpgSignKeyCredsId(), getReleaseGpgSignPassphraseCredsId()) - release.gpgSignFileDetachedSignatureWithPassword(resultingFileName, signatureFileName, getReleaseGpgSignPassphraseCredsId()) + release.gpgImportKeyFromStringWithoutPassword(getReleaseGpgSignKeyCredsId()) + release.gpgSignFileDetachedSignatureWithoutPassword(resultingFileName, signatureFileName) release.svnUploadFileToRepository(getReleaseSvnRepository(), getReleaseSvnCredsId(), getImageArtifactReleaseVersion(), resultingFileName, signatureFileName) } }