alitheg commented on issue #609: URL: https://github.com/apache/tooling-trusted-releases/issues/609#issuecomment-3878026124
What do we want to think about here? I had a quick look at Pekko as an example and the build process in Github pushes the source dist to SVN and then uses sbt to stage the JARs to Nexus. ATR also allows SVN import for the files. In the latter case I assume it's fine to be using an ATR service account to access SVN using the SVN_TOKEN config setting. So then (from the title) I assume it's about the option to replace the two Pekko steps with Github -> ATR -> (onwards)? At the moment, the CI uploads to ATR use Trusted Publishing from Github. Are we considering allowing an LDAP username/password as an alternative to that? Or perhaps I've missed a step! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
