Use GitHub actions to deploy to OSS Sonatype/Maven Central

[resolves #186]

Author: mp911de

.github/workflows/ci.yml

@@ -0,0 +1,30 @@
+# This workflow will build a Java project with Maven
+# For more information see: https://help.github.com/actions/language-and-framework-guides/building-and-testing-java-with-maven
+
+name: Java CI with Maven
+
+on:
+  push:
+    branches: [ main, 0.8.x ]
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v2
+    - name: Set up JDK 1.8
+      uses: actions/setup-java@v1
+      with:
+        java-version: 1.8
+    - name: Cache local Maven repository
+      uses: actions/cache@v2
+      with:
+        path: ~/.m2/repository
+        key: ${{ runner.os }}-maven-${{ hashFiles('**/pom.xml') }}
+        restore-keys: |
+          ${{ runner.os }}-maven-
+    - name: Build with Maven
+      env:
+        SONATYPE_USER: ${{ secrets.SONATYPE_USER }}
+        SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }}
+      run: ./mvnw -B deploy -P snapshot -s settings.xml

.github/workflows/pullrequests.yml

@@ -0,0 +1,25 @@
+# This workflow will build a Java project with Maven
+# For more information see: https://help.github.com/actions/language-and-framework-guides/building-and-testing-java-with-maven
+
+name: Build Pull request with Maven
+
+on: [pull_request]
+
+jobs:
+  pr-build:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+      - name: Set up JDK 1.8
+        uses: actions/setup-java@v1
+        with:
+          java-version: 1.8
+      - name: Cache local Maven repository
+        uses: actions/cache@v2
+        with:
+          path: ~/.m2/repository
+          key: ${{ runner.os }}-maven-pr-${{ hashFiles('**/pom.xml') }}
+          restore-keys: |
+            ${{ runner.os }}-maven-pr-
+      - name: Build with Maven
+        run: ./mvnw -B verify

.github/workflows/release.yml

@@ -0,0 +1,29 @@
+# This workflow will build a Java project with Maven
+# For more information see: https://help.github.com/actions/language-and-framework-guides/building-and-testing-java-with-maven
+
+name: Stage release to Maven Central
+
+on:
+  push:
+    branches: [ release-0.x ]
+
+jobs:
+  release:
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v2
+    - name: Set up JDK 1.8
+      uses: actions/setup-java@v1
+      with:
+        java-version: 1.8
+    - name: Initialize Maven Version
+      run: ./mvnw -q org.apache.maven.plugins:maven-help-plugin:2.1.1:evaluate -Dexpression=project.version
+    - name: GPG Check
+      run: gpg -k
+    - name: Release with Maven
+      env:
+        SONATYPE_USER: ${{ secrets.SONATYPE_USER }}
+        SONATYPE_PASSWORD: ${{ secrets.SONATYPE_PASSWORD }}
+        GPG_KEY_BASE64: ${{ secrets.GPG_KEY_BASE64 }}
+        GPG_PASSPHRASE: ${{ secrets.GPG_PASSPHRASE }}
+      run: ci/build-and-deploy-to-maven-central.sh

CI.adoc

@@ -38,9 +38,9 @@ If you'd rather like the latest snapshots of the upcoming major version, use our
 </dependency>
 
 <repository>
-  <id>spring-libs-snapshot</id>
-  <name>Spring Snapshot Repository</name>
-  <url>https://repo.spring.io/libs-snapshot</url>
+  <id>sonatype-nexus-snapshots</id>
+  <name>Sonatype OSS Snapshot Repository</name>
+  <url>https://oss.sonatype.org/content/repositories/snapshots</url>
 </repository>
 ```
 
@@ -81,6 +81,10 @@ If you want to build with the regular `mvn` command, you will need [Maven v3.5.0
 
 _Also see [CONTRIBUTING.adoc](https://github.com/r2dbc/.github/blob/main/CONTRIBUTING.adoc) if you wish to submit pull requests, and in particular please sign the [Contributor's Agreement](https://cla.pivotal.io/sign/reactor) before your first change, however trivial._
 
+## Staging to Maven Central
+
+To stage a release to Maven Central, you need to create a release tag (release version) that contains the desired state and version numbers (`mvn versions:set versions:commit -q -o -DgenerateBackupPoms=false -DnewVersion=x.y.z.(RELEASE|Mnnn|RCnnn`) and force-push it to the `release-0.x` branch. This push will trigger a Maven staging build (see `build-and-deploy-to-maven-central.sh`).
+
 ## License
 This project is released under version 2.0 of the [Apache License][l].
 

Jenkinsfile

@@ -1,22 +1,39 @@
-#!/bin/bash -x
+#!/bin/bash
 
 set -euo pipefail
 
-#
-# Stage on Maven Central
-#
-echo 'Staging on Maven Central...'
+VERSION=$(./mvnw org.apache.maven.plugins:maven-help-plugin:2.1.1:evaluate -Dexpression=project.version -o | grep -v INFO)
 
-GNUPGHOME=/tmp/gpghome
-export GNUPGHOME
+if [[ $VERSION =~ [^.*-SNAPSHOT$] ]] ; then
 
-mkdir $GNUPGHOME
-cp $KEYRING $GNUPGHOME
+  echo "Cannot deploy a snapshot: $VERSION"
+  exit 1
+fi
+
+if [[ $VERSION =~ [^(\d+\.)+(RC(\d+)|M(\d+)|RELEASE)$] ]] ; then
+
+  #
+  # Prepare GPG Key is expected to be in base64
+  # Exported with gpg -a --export-secret-keys "your@email" | base64 > gpg.base64
+  #
+  printf "$GPG_KEY_BASE64" | base64 --decode > gpg.asc
+  echo ${GPG_PASSPHRASE} | gpg --batch --yes --passphrase-fd 0 --import gpg.asc
+  gpg -k
+
+  #
+  # Stage on Maven Central
+  #
+  echo "Staging $VERSION to Maven Central"
+
+  ./mvnw \
+      -s settings.xml \
+      -Pcentral \
+      -Dmaven.test.skip=true \
+      -Dgpg.passphrase=${GPG_PASSPHRASE} \
+      clean deploy -B
+else
+
+  echo "Not a release: $VERSION"
+  exit 1
+fi
 
-MAVEN_OPTS="-Duser.name=jenkins -Duser.home=/tmp/jenkins-home" ./mvnw \
-    -s settings.xml \
-    -P${PROFILE} \
-    -Dmaven.test.skip=true \
-    -Dgpg.passphrase=${PASSPHRASE} \
-    -Dgpg.secretKeyring=${GNUPGHOME}/secring.gpg \
-    clean deploy -B