mirror of
https://github.com/apache/superset.git
synced 2024-09-19 20:19:37 -04:00
c1810aab15
* [docs] Crafting a new release
42 lines
1.6 KiB
Bash
Executable File
42 lines
1.6 KiB
Bash
Executable File
#!/usr/bin/env bash
|
|
#
|
|
# Licensed to the Apache Software Foundation (ASF) under one or more
|
|
# contributor license agreements. See the NOTICE file distributed with
|
|
# this work for additional information regarding copyright ownership.
|
|
# The ASF licenses this file to You under the Apache License, Version 2.0
|
|
# (the "License"); you may not use this file except in compliance with
|
|
# the License. You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
#
|
|
|
|
# Use this to sign the tar balls generated from
|
|
# python setup.py sdist --formats=gztar
|
|
# ie. sign.sh <my_tar_ball>
|
|
# you will still be required to type in your signing key password
|
|
# or it needs to be available in your keychain
|
|
|
|
|
|
# The name of the file/artifact to sign ${RELEASE}-source.tar.gz
|
|
|
|
if [ -z "${1}" ]; then
|
|
echo "Missing first parameter, usage: sign <FILE_NAME> <GPG KEY>"
|
|
exit 1
|
|
fi
|
|
NAME="${1}"
|
|
if [ -z "${2}" ]; then
|
|
gpg --armor --output "${NAME}".asc --detach-sig "${NAME}"
|
|
gpg --print-md SHA512 "${NAME}" > "${NAME}".sha512
|
|
else
|
|
# The GPG key name to use
|
|
GPG_LOCAL_USER="${2}"
|
|
gpg --local-user "${GPG_LOCAL_USER}" --armor --output "${NAME}".asc --detach-sig "${NAME}"
|
|
gpg --local-user "${GPG_LOCAL_USER}" --print-md SHA512 "${NAME}" > "${NAME}".sha512
|
|
fi
|