how do i get maven-gpg-plugin to sign with sub key rather than primary key?
Details:
I am using the maven-gpg-plugin to sign some files prior to uploading to
oss.sonatype.org maven repo.
This repo seems to expect the files to be signed with the primary key but the
maven plugin is signing with the sub key.
plugin config is set to use the primary short id 44792C47.
<plugin>
<groupId>org.apache.maven.plugins</groupId>
<artifactId>maven-gpg-plugin</artifactId>
<executions>
<execution>
<id>sign-artifacts</id>
<phase>package</phase>
<goals>
<goal>sign</goal>
</goals>
<configuration>
<executable>/usr/local/bin/gpg2</executable>
<keyname>44792C47</keyname>
<passphrase>${gpg.passphrase}</passphrase>
</configuration>
</execution>
</executions>
</plugin>
when I verify the resultant asc file
gpg2 --verify file.asc
gpg: Signature made Fri 15 Jul 16:13:13 2011 EST using RSA key ID 822CB8B5
it is using the subkey 822CB8B5
If I check the usage of the key
gpg2 --edit-key 44792C47
gpg (GnuPG/MacGPG2) 2.0.17; Copyright (C) 2011 Free Software Foundation, Inc.
pub 2048R/44792C47 created: 2011-07-13 expires: never usage: SCEA
sub 2048R/822CB8B5 created: 2011-07-13 expires: never usage: SEA
and if I list keys
gpg2 --list-keys
/Users/david/.gnupg/pubring.gpg
-------------------------------
pub 2048R/44792C47 2011-07-13
uid ...
sub 2048R/822CB8B5 2011-07-13
I am using Mac OSX. The key was generated using a gui called GPG Keychain Access
Thanks
David
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
