Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provider Publication #106

Open
tetesh opened this issue Jul 15, 2022 · 2 comments
Open

Provider Publication #106

tetesh opened this issue Jul 15, 2022 · 2 comments

Comments

@tetesh
Copy link

tetesh commented Jul 15, 2022

Hi I am trying to publish an existing provider in citizen. There is already a .sig file, can I use it?
What am I doing wrong?

https://github.com/sbercloud-terraform/terraform-provider-sbercloud/releases

CITIZEN_ADDR=https://citizen.mydomain.com   ./citizen-macos-x64 provider terraform-provider sbercloud 1.8.1
✔ validate required files in /Users/al/Downloads
  Found: 
	terraform-provider-sbercloud_1.8.1_darwin_amd64.zip
	terraform-provider-sbercloud_1.8.1_linux_amd64.zip
✔ generate terraform-provider-sbercloud_1.8.1_SHA256SUMS file
✖ sign terraform-provider-sbercloud_1.8.1_SHA256SUMS file with gpg
Error: Command failed: gpg --detach-sign  --yes terraform-provider-sbercloud_1.8.1_SHA256SUMS
gpg: no default secret key: No secret key
gpg: signing failed: No secret key

    at ChildProcess.exithandler (node:child_process:398:12)
    at ChildProcess.emit (node:events:527:28)
    at maybeClose (node:internal/child_process:1092:16)
    at Socket.<anonymous> (node:internal/child_process:451:11)
    at Socket.emit (node:events:527:28)
    at Pipe.<anonymous> (node:net:709:12) {
  code: 2,
  killed: false,
  signal: null,
  cmd: 'gpg --detach-sign  --yes terraform-provider-sbercloud_1.8.1_SHA256SUMS'
}

Thanks!
@zuntrax
Copy link

zuntrax commented Nov 14, 2022
edited

AFAIK citizen is not aware of existing signatures and always tries to invoke gpg. Maybe passing your GPG fingerprint or email address using the -g, --gpg-key <gpgkey> parameter will get you somewhere.

It appears to be common for provider projects to already sign the binaries with goreleaser, so it might be worth looking into just using existing checksums/signatures when available.

@ymrsmns
Copy link

ymrsmns commented Aug 2, 2023

[solution]
Run create gpg key

gpg --default-new-key-algo rsa4096 --gen-key

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@zuntrax @ymrsmns @tetesh