2017-03-19 09:46:30 -04:00
|
|
|
#!/usr/bin/env bash
|
2019-08-20 00:07:39 -04:00
|
|
|
# Licensed to the Apache Software Foundation (ASF) under one
|
|
|
|
|
# or more contributor license agreements. See the NOTICE file
|
|
|
|
|
# distributed with this work for additional information
|
|
|
|
|
# regarding copyright ownership. The ASF licenses this file
|
|
|
|
|
# to you under the Apache License, Version 2.0 (the
|
|
|
|
|
# "License"); you may not use this file except in compliance
|
|
|
|
|
# with the License. You may obtain a copy of the License at
|
2017-03-19 09:46:30 -04:00
|
|
|
#
|
2019-08-20 00:07:39 -04:00
|
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
2017-03-19 09:46:30 -04:00
|
|
|
#
|
2019-08-20 00:07:39 -04:00
|
|
|
# Unless required by applicable law or agreed to in writing,
|
|
|
|
|
# software distributed under the License is distributed on an
|
|
|
|
|
# "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
|
|
|
|
|
# KIND, either express or implied. See the License for the
|
|
|
|
|
# specific language governing permissions and limitations
|
|
|
|
|
# under the License.
|
2020-09-14 10:19:19 +02:00
|
|
|
set -euo pipefail
|
2017-03-19 09:46:30 -04:00
|
|
|
|
2024-11-08 09:22:01 +00:00
|
|
|
# Use this to sign the tarballs and packages generated
|
2017-03-19 09:46:30 -04:00
|
|
|
# you will still be required to type in your signing key password
|
|
|
|
|
# or it needs to be available in your keychain
|
|
|
|
|
|
2020-11-10 11:26:48 +00:00
|
|
|
# Which key to sign releases with? This can be a (partial) email address or a
|
|
|
|
|
# key id. By default use any apache.org key
|
|
|
|
|
SIGN_WITH="${SIGN_WITH:-apache.org}"
|
|
|
|
|
|
2020-09-14 10:19:19 +02:00
|
|
|
for name in "${@}"
|
2020-05-17 20:38:46 +02:00
|
|
|
do
|
2021-02-05 19:57:39 +01:00
|
|
|
gpg --yes --armor --local-user "$SIGN_WITH" --output "${name}.asc" --detach-sig "${name}"
|
2020-12-06 23:46:06 +00:00
|
|
|
shasum -a 512 "${name}" > "${name}.sha512"
|
2020-05-17 20:38:46 +02:00
|
|
|
done
|
