maven-gpg-plugin SHA512

> Hi all!
>
>
> Struggling to configure maven-gpg-plugin to generate sha512 has sum to deployed artifacts alongside with asc.
> Current config does not work:
>
>              <plugin>
>                  <groupId>org.apache.maven.plugins</groupId>
>                  <artifactId>maven-gpg-plugin</artifactId>
>                  <version>3.0.0</version>
>                  <configuration>
>                      <gpgArguments>
>                          <arg>--no-permission-warning</arg>
>                          <arg>--digest-algo=SHA512</arg>
>                      </gpgArguments>
>                  </configuration>
>                  <executions>
>                      <execution>
>                          <id>sign-artifacts</id>
>                          <phase>verify</phase>
>                          <goals>
>                              <goal>sign</goal>
>                          </goals>
>                      </execution>
>                  </executions>
>              </plugin>
>
>
> Documentation is predictably empty.
>
> The final goal — sha512 hash sums for deployed artifacts with deploy goal.
>
>
> Does anyone know how can this be achieved?
> Thanks in advance!
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>

> On 24 Jan 2021, at 17:19, Oliver B. Fischer <[hidden email]> wrote:
>
> I am sure that there is a better solution, but I don't know it yet ;-)
>
> Have a look at https://www.mojohaus.org/build-helper-maven-plugin/attach-artifact-mojo.html
>
> Oliver
>
> Am 22.01.21 um 16:11 schrieb Petr Ivanov:
>> Hi all!
>>
>>
>> Struggling to configure maven-gpg-plugin to generate sha512 has sum to deployed artifacts alongside with asc.
>> Current config does not work:
>>
>>             <plugin>
>>                 <groupId>org.apache.maven.plugins</groupId>
>>                 <artifactId>maven-gpg-plugin</artifactId>
>>                 <version>3.0.0</version>
>>                 <configuration>
>>                     <gpgArguments>
>>                         <arg>--no-permission-warning</arg>
>>                         <arg>--digest-algo=SHA512</arg>
>>                     </gpgArguments>
>>                 </configuration>
>>                 <executions>
>>                     <execution>
>>                         <id>sign-artifacts</id>
>>                         <phase>verify</phase>
>>                         <goals>
>>                             <goal>sign</goal>
>>                         </goals>
>>                     </execution>
>>                 </executions>
>>             </plugin>
>>
>>
>> Documentation is predictably empty.
>>
>> The final goal — sha512 hash sums for deployed artifacts with deploy goal.
>>
>>
>> Does anyone know how can this be achieved?
>> Thanks in advance!
>> ---------------------------------------------------------------------
>> To unsubscribe, e-mail: [hidden email]
>> For additional commands, e-mail: [hidden email]
>>
> --
> N Oliver B. Fischer
> A Schönhauser Allee 64, 10437 Berlin, Deutschland/Germany
> P +49 30 44793251
> M +49 178 7903538
> E [hidden email]
> S oliver.b.fischer
> J [hidden email]
> X http://xing.to/obf
>

> On 25 Jan 2021, at 11:34, Petr Ivanov <[hidden email]> wrote:
>
> Nice plugin, thanks!
>
>
> However, currently I am under impressions, that gpg plugin is not what am I looking for, 'cause it seems the initial md5 and sha1 sums are generated by maven-install-plugin which has no options whatsoever...
> Also, cheksum-maven-plugin seems to be better suited for my task.
>
>
> I will keep posted if it will be success :)
>
>
>> On 24 Jan 2021, at 17:19, Oliver B. Fischer <[hidden email]> wrote:
>>
>> I am sure that there is a better solution, but I don't know it yet ;-)
>>
>> Have a look at https://www.mojohaus.org/build-helper-maven-plugin/attach-artifact-mojo.html
>>
>> Oliver
>>
>> Am 22.01.21 um 16:11 schrieb Petr Ivanov:
>>> Hi all!
>>>
>>>
>>> Struggling to configure maven-gpg-plugin to generate sha512 has sum to deployed artifacts alongside with asc.
>>> Current config does not work:
>>>
>>>            <plugin>
>>>                <groupId>org.apache.maven.plugins</groupId>
>>>                <artifactId>maven-gpg-plugin</artifactId>
>>>                <version>3.0.0</version>
>>>                <configuration>
>>>                    <gpgArguments>
>>>                        <arg>--no-permission-warning</arg>
>>>                        <arg>--digest-algo=SHA512</arg>
>>>                    </gpgArguments>
>>>                </configuration>
>>>                <executions>
>>>                    <execution>
>>>                        <id>sign-artifacts</id>
>>>                        <phase>verify</phase>
>>>                        <goals>
>>>                            <goal>sign</goal>
>>>                        </goals>
>>>                    </execution>
>>>                </executions>
>>>            </plugin>
>>>
>>>
>>> Documentation is predictably empty.
>>>
>>> The final goal — sha512 hash sums for deployed artifacts with deploy goal.
>>>
>>>
>>> Does anyone know how can this be achieved?
>>> Thanks in advance!
>>> ---------------------------------------------------------------------
>>> To unsubscribe, e-mail: [hidden email]
>>> For additional commands, e-mail: [hidden email]
>>>
>> --
>> N Oliver B. Fischer
>> A Schönhauser Allee 64, 10437 Berlin, Deutschland/Germany
>> P +49 30 44793251
>> M +49 178 7903538
>> E [hidden email]
>> S oliver.b.fischer
>> J [hidden email]
>> X http://xing.to/obf
>>
>

> Andreas Sewe wrote:
>> Michael Osipov wrote:
>>>> Michael Osipov wrote:
>>>>> Don't waste your time. Read [1]: aether.checksums.algorithms
>>>>>
>>>>> [1] https://maven.apache.org/resolver/configuration.html
>>>>
>>>> Thank you for the pointer. Just found this post when searching for a way
>>>> to create .sha256 and .sha512 files during a "mvn deploy" but can't get
>>>> it to work:
>>>>
>>>>    mvn deploy -Daether.checksums.algorithms=SHA-512,SHA-256,SHA1,MD5
>>>>
>>>> The above still only created .sha1 and .md5 files in my staging
>>>> repository. What am I doing wrong?
>>>
>>> You need to update the bundled Maven Resolver version and it will work.
>>> Mark Thomas is already using it with Maven Resolver Ant Tasks to push
>>> Tomcat releases.
>>
>> Thanks Michael. That works like a charm.
>
> Alas, I spoke too soon. It works on the command line, but I can't make
> it an permanent part of my parent POM:
>
>    <properties>
>
> <aether.checksums.algorithms>SHA-512,SHA-256,SHA-1,MD5</aether.checksums.algorithms>
>    </properties>

> Andreas Sewe wrote:
>> Michael Osipov wrote:
>>>> Michael Osipov wrote:
>>>>> Don't waste your time. Read [1]: aether.checksums.algorithms
>>>>>
>>>>> [1] https://maven.apache.org/resolver/configuration.html
>>>>
>>>> Thank you for the pointer. Just found this post when searching for a way
>>>> to create .sha256 and .sha512 files during a "mvn deploy" but can't get
>>>> it to work:
>>>>
>>>>    mvn deploy -Daether.checksums.algorithms=SHA-512,SHA-256,SHA1,MD5
>>>>
>>>> The above still only created .sha1 and .md5 files in my staging
>>>> repository. What am I doing wrong?
>>>
>>> You need to update the bundled Maven Resolver version and it will work.
>>> Mark Thomas is already using it with Maven Resolver Ant Tasks to push
>>> Tomcat releases.
>>
>> Thanks Michael. That works like a charm.
>
> Alas, I spoke too soon. It works on the command line, but I can't make
> it an permanent part of my parent POM:
>
>    <properties>
>
> <aether.checksums.algorithms>SHA-512,SHA-256,SHA-1,MD5</aether.checksums.algorithms>
>    </properties>

> ________________________________
> Von: Michael Osipov <[hidden email]>
> Gesendet: Sunday, March 14, 2021 9:46:55 PM
> An: [hidden email] <[hidden email]>
> Betreff: Re: maven-gpg-plugin SHA512
>
> Am 2021-03-11 um 17:25 schrieb Andreas Sewe:
>> Andreas Sewe wrote:
>>> Michael Osipov wrote:
>>>>> Michael Osipov wrote:
>>>>>> Don't waste your time. Read [1]: aether.checksums.algorithms
>>>>>>
>>>>>> [1] https://maven.apache.org/resolver/configuration.html
>>>>>
>>>>> Thank you for the pointer. Just found this post when searching for a way
>>>>> to create .sha256 and .sha512 files during a "mvn deploy" but can't get
>>>>> it to work:
>>>>>
>>>>>     mvn deploy -Daether.checksums.algorithms=SHA-512,SHA-256,SHA1,MD5
>>>>>
>>>>> The above still only created .sha1 and .md5 files in my staging
>>>>> repository. What am I doing wrong?
>>>>
>>>> You need to update the bundled Maven Resolver version and it will work.
>>>> Mark Thomas is already using it with Maven Resolver Ant Tasks to push
>>>> Tomcat releases.
>>>
>>> Thanks Michael. That works like a charm.
>>
>> Alas, I spoke too soon. It works on the command line, but I can't make
>> it an permanent part of my parent POM:
>>
>>     <properties>
>>
>> <aether.checksums.algorithms>SHA-512,SHA-256,SHA-1,MD5</aether.checksums.algorithms>
>>     </properties>
>
> This will not work. I do recommend to use
> https://maven.apache.org/maven-release/maven-release-plugin/prepare-mojo.html#arguments
>
> Please try and tell...
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [hidden email]
> For additional commands, e-mail: [hidden email]
>
>