From b81beb20f0d49329f230205b08a2dc7c1cb5f997 Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" Date: Wed, 17 Jul 2024 00:21:51 +0000 Subject: [PATCH] add maven publish workflow (#24) Signed-off-by: Chenyang Ji (cherry picked from commit 2534e01967d164d6cf1e324b429d55efd38489e3) Signed-off-by: github-actions[bot] --- .github/workflows/maven-publish.yml | 44 +++++++++++++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 .github/workflows/maven-publish.yml diff --git a/.github/workflows/maven-publish.yml b/.github/workflows/maven-publish.yml new file mode 100644 index 00000000..aabc13d4 --- /dev/null +++ b/.github/workflows/maven-publish.yml @@ -0,0 +1,44 @@ +name: Publish snapshots to maven + +on: + workflow_dispatch: + push: + branches: + - main + - '[0-9]+.[0-9]+' + - '[0-9]+.x' + +jobs: + build-and-publish-snapshots: + runs-on: ubuntu-latest + + permissions: + id-token: write + contents: write + + steps: + - uses: actions/checkout@v4 + - name: Set up JDK 11 + uses: actions/setup-java@v3 + with: + distribution: temurin # Temurin is a distribution of adoptium + java-version: 11 + + - name: Configure AWS credentials + uses: aws-actions/configure-aws-credentials@v4 + with: + role-to-assume: ${{ secrets.PUBLISH_SNAPSHOTS_ROLE }} + aws-region: us-east-1 + + - name: Publish snapshots to maven + run: | + export SONATYPE_USERNAME=$(aws secretsmanager get-secret-value --secret-id maven-snapshots-username --query SecretString --output text) + export SONATYPE_PASSWORD=$(aws secretsmanager get-secret-value --secret-id maven-snapshots-password --query SecretString --output text) + echo "::add-mask::$SONATYPE_USERNAME" + echo "::add-mask::$SONATYPE_PASSWORD" + # For JS-SPI jar + ./gradlew publishShadowPublicationToSnapshotsRepository + # For JS jar + ./gradlew publishNebulaPublicationToSnapshotsRepository + # For JS plugin zip + ./gradlew publishPluginZipPublicationToSnapshotsRepository