Clone Tools
  • last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Split the `signing` module

This commit splits the `signing` module into another `security`

project so that we can reuse some code for dependency verification.

It's worth noting that some of the classes had to remain in the `plugins`

package because they were public APIs.

Further effort to split them out may be done later.

    • -85
    • +10
    ./InMemoryPgpSignatoryProvider.java
  1. … 72 more files in changeset.
Split the `signing` module

This commit splits the `signing` module into another `security`

project so that we can reuse some code for dependency verification.

It's worth noting that some of the classes had to remain in the `plugins`

package because they were public APIs.

Further effort to split them out may be done later.

    • -85
    • +10
    ./InMemoryPgpSignatoryProvider.java
  1. … 72 more files in changeset.
Supporting in-memory signing subkeys Issue: #10363

Signed-off-by: Sergey Zhemzhitsky <szhemzhitski@gmail.com>

    • -9
    • +42
    ./InMemoryPgpSignatoryProvider.java
  1. … 2 more files in changeset.
Remove synthetic accessors for internal private symbol references

  1. … 902 more files in changeset.
Remove synthetic accessors for internal private symbol references

  1. … 902 more files in changeset.
Remove synthetic accessors for internal private symbol references

  1. … 890 more files in changeset.
Remove synthetic accessors for internal private symbol references

  1. … 897 more files in changeset.
Remove synthetic accessors for internal private symbol references

  1. … 902 more files in changeset.
Remove synthetic accessors for internal private symbol references

  1. … 902 more files in changeset.
WIP

    • -0
    • +103
    ./InMemoryPgpSignatoryProvider.java
  1. … 13 more files in changeset.
Introduce SigningExtension.useInMemoryPgpKeys()

This commit adds an alternative signatory provider that works with

ascii-armored in-memory PGP keys instead of keyring files. This is often

easier to setup on CI servers and more secure because there never is a

persistent file that contains the secret key. The user manual is updated

with a sample that demonstrates how to pass key and password using

environment variables.

    • -0
    • +103
    ./InMemoryPgpSignatoryProvider.java
  1. … 13 more files in changeset.
Introduce SigningExtension.useInMemoryPgpKeys()

This commit adds an alternative signatory provider that works with

ascii-armored in-memory PGP keys instead of keyring files. This is often

easier to setup on CI servers and more secure because there never is a

persistent file that contains the secret key. The user manual is updated

with a sample that demonstrates how to pass key and password using

environment variables.

    • -0
    • +103
    ./InMemoryPgpSignatoryProvider.java
  1. … 10 more files in changeset.