Add jreleaser plugin for deployment (#172)

* Add jreleaser plugin for deployment

* fix document

* fix a description of the deployment guide

* address comment - remove an useless plugin, reuse a secret

Author: wool0826

.github/workflows/publish.yml

@@ -30,9 +30,13 @@ jobs:
         run: ./gradlew clean build
 
       - name: Publish artifacts
-        run: ./gradlew publish
+        run: ./gradlew jreleaserConfig publish jreleaserDeploy
         env:
-          OSSRH_USERNAME: ${{ secrets.OSSRH_USER_NAME }}
-          OSSRH_PASSWORD: ${{ secrets.OSSRH_USER_PASSWORD }}
-          ORG_GRADLE_PROJECT_signingKey: ${{ secrets.SIGNING_KEY }}
-          ORG_GRADLE_PROJECT_signingPassword: ${{ secrets.SIGNING_PASSWORD }}
+          JRELEASER_GPG_PUBLIC_KEY: ${{ secrets.JRELEASER_GPG_PUBLIC_KEY }}
+          JRELEASER_GPG_SECRET_KEY: ${{ secrets.JRELEASER_GPG_SECRET_KEY }}
+          JRELEASER_GPG_PASSPHRASE: ${{ secrets.JRELEASER_GPG_PASSPHRASE }}
+          JRELEASER_NEXUS2_USERNAME: ${{ secrets.JRELEASER_CENTRAL_USERNAME }}
+          JRELEASER_NEXUS2_PASSWORD: ${{ secrets.JRELEASER_CENTRAL_USERNAME }}
+          JRELEASER_MAVENCENTRAL_USERNAME: ${{ secrets.JRELEASER_CENTRAL_USERNAME }}
+          JRELEASER_MAVENCENTRAL_PASSWORD: ${{ secrets.JRELEASER_CENTRAL_USERNAME }}
+          JRELEASER_GITHUB_TOKEN: ${{ secrets.JRELEASER_GITHUB_TOKEN }}

buildSrc/build.gradle

@@ -13,4 +13,5 @@ repositories {
 
 dependencies {
     implementation "io.spring.gradle:dependency-management-plugin:1.1.5"
+    implementation "org.jreleaser:org.jreleaser.gradle.plugin:1.19.0"
 }

buildSrc/src/main/groovy/spring.jdbc.plus.maven-publish-conventions.gradle

@@ -1,29 +1,57 @@
 plugins {
     id "maven-publish"
-    id "signing"
+    id 'org.jreleaser'
 }
 
 group = "com.navercorp.spring"
 version = "3.5.0"
 
+jreleaser {
+    release {
+        github {
+            skipRelease = true
+        }
+    }
+    gitRootSearch = true
+    signing {
+        active = 'ALWAYS'
+        armored = true
+        verify = true
+    }
+    deploy {
+        maven {
+            mavenCentral {
+                'release-deploy' {
+                    active = 'RELEASE'
+                    url = 'https://central.sonatype.com/api/v1/publisher'
+                    sign = true
+                    stagingRepository('build/staging-deploy')
+                }
+            }
+            // The following configuration is applied when the version matches the "*-SNAPSHOT" pattern.
+            nexus2 {
+                'snapshot-deploy' {
+                    active = 'SNAPSHOT'
+                    snapshotUrl = 'https://central.sonatype.com/repository/maven-snapshots/'
+                    applyMavenCentralRules = true
+                    snapshotSupported = true
+                    closeRepository = true
+                    releaseRepository = false
+                    stagingRepository('build/staging-deploy')
+                }
+            }
+        }
+    }
+}
+
 publishing {
     publications {
         mavenJava(MavenPublication) {
             from components.java
 
             repositories {
                 maven {
-                    def ossrhUsername = System.getenv("OSSRH_USERNAME")
-                    def ossrhPassword = System.getenv("OSSRH_PASSWORD")
-
-                    credentials {
-                        username ossrhUsername
-                        password ossrhPassword
-                    }
-
-                    def releasesRepoUrl = "https://ossrh-staging-api.central.sonatype.com/service/local/staging/deploy/maven2/"
-                    def snapshotsRepoUrl = "https://central.sonatype.com/repository/maven-snapshots/"
-                    url = version.endsWith("SNAPSHOT") ? snapshotsRepoUrl : releasesRepoUrl
+                    url = layout.buildDirectory.dir("staging-deploy")
                 }
             }
 
@@ -77,16 +105,3 @@ publishing {
         }
     }
 }
-
-signing {
-    def signingKey = findProperty("signingKey")
-    def signingPassword = findProperty("signingPassword")
-
-    useInMemoryPgpKeys(signingKey, signingPassword)
-
-    sign publishing.publications.mavenJava
-}
-
-tasks.withType(Sign) {
-    onlyIf { !version.endsWith("SNAPSHOT") }
-}

doc/deployment_guide.md

@@ -4,13 +4,19 @@
 
 1. Go to the "[Publish Artifacts](https://github.com/naver/spring-jdbc-plus/actions/workflows/publish.yml)" action.
 2. Enter the tag, branch, or commit ID, and run the action.
-3. You can verify the success of the deployment on [oss.sonatype.org](https://oss.sonatype.org/#stagingRepositories).
+3. You can verify the success of the deployment on [central.sonatype.org](https://central.sonatype.com/publishing/deployments).
 
 ### Using a Local Machine
 
 1. Set the following environment variables before publishing:
-    - `ORG_GRADLE_PROJECT_signingKey`: Enter your personal GPG private key. Ensure that line breaks are removed, as shown [here](https://github.com/vanniktech/gradle-maven-publish-plugin/pull/201#discussion_r584270633).
-    - `ORG_GRADLE_PROJECT_signingPassword`: Enter the password associated with your GPG private key.
-    - `OSSRH_USERNAME`: Enter your OSSRH username using the generated [Access User Token](https://oss.sonatype.org/#profile;User%20Token).
-    - `OSSRH_PASSWORD`: Enter your OSSRH password using the generated [Access User Token](https://oss.sonatype.org/#profile;User%20Token).
-2. Run `./gradlew clean publish` to complete the publishing process.
+    - `JRELEASER_MAVENCENTRAL_USERNAME`: Your Sonatype username token. using the generated [Access User Token](https://central.sonatype.com/account).
+    - `JRELEASER_MAVENCENTRAL_PASSWORD`: Your Sonatype password token. using the generated [Access User Token](https://central.sonatype.com/account).
+    - `JRELEASER_NEXUS2_USERNAME` (for snapshots): same as JRELEASER_MAVENCENTRAL_USERNAME
+    - `JRELEASER_NEXUS2_PASSWORD` (for snapshots): same as JRELEASER_MAVENCENTRAL_PASSWORD
+    - `JRELEASER_GPG_PASSPHRASE`: Your GPG key passphrase.
+    - `JRELEASER_GPG_PUBLIC_KEY`: Your GPG public key, Base64 encoded. (`gpg --export ${your_key_id} | base64`)
+    - `JRELEASER_GPG_SECRET_KEY`: Your GPG secret key, Base64 encoded. (`gpg --export-secret-keys ${your_key_id} | base64`)
+    - `JRELEASER_GITHUB_TOKEN`: Set this to an empty string. It's not used, but the variable is required by JReleaser.
+2. Run `./gradlew jreleaserConfig` to verify your configuration.
+3. Run `./gradlew clean build publish` to build the artifact locally.
+4. Run `./gradlew jreleaserDeploy` to publish and release your artifact to Maven Central