Update maven auto-deploy & security vulnerability (#46)

ssung88 · web-flow · commit b65f42253d4c · 2018-10-16T14:41:42.000-07:00
Update maven auto-deploy
security vulnerability
diff --git a/.travis.yml b/.travis.yml
@@ -6,10 +6,20 @@ before_cache:
 - rm -fr $HOME/.gradle/caches/*/plugin-resolution/
 cache:
   directories:
-  - $HOME/.gradle/caches/
-  - $HOME/.gradle/wrapper/
+  - "$HOME/.gradle/caches/"
+  - "$HOME/.gradle/wrapper/"
 before_install:
-- openssl aes-256-cbc -K $encrypted_cef8742a9861_key -iv $encrypted_cef8742a9861_iv -in ./travis-ci/accounts.enc -out ./travis-ci/accounts.json -d
+- openssl aes-256-cbc -K $encrypted_849008ab3eb3_key -iv $encrypted_849008ab3eb3_iv
+  -in ./travis-ci/accounts.enc -out ./travis-ci/accounts.json -d
 - chmod a+x ./gradlew
 script:
-- ./gradlew test
+- "./gradlew test"
+env:
+  global:
+  - secure: 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
+  - secure: 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
+  - secure: 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
+  - secure: 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
+after_success:
+- "./maven/before_deploy.sh"
+- "./maven/deploy.sh"
diff --git a/build.gradle b/build.gradle
@@ -94,7 +94,7 @@ if(hasProperty('target') && target == 'android') {
 
 ext {
     swagger_annotations_version = "1.5.8"
-    jackson_version = "2.7.5"
+    jackson_version = "2.9.6"
     jersey_version = "2.22.2"
     junit_version = "4.12"
 
diff --git a/maven/before_deploy.sh b/maven/before_deploy.sh
@@ -0,0 +1,5 @@
+#!/usr/bin/env bash
+if [ "$TRAVIS_BRANCH" = 'master' ] && [ "$TRAVIS_PULL_REQUEST" == 'false' ]; then
+    openssl aes-256-cbc -K $encrypted_cef8742a9861_key -iv $encrypted_cef8742a9861_iv -in maven/codesigning.asc.enc -out maven/codesigning.asc -d
+    gpg --fast-import maven/codesigning.asc 
+fi
diff --git a/maven/codesigning.asc.enc b/maven/codesigning.asc.enc
diff --git a/maven/deploy.sh b/maven/deploy.sh
@@ -0,0 +1,4 @@
+#!/usr/bin/env bash
+if [ "$TRAVIS_BRANCH" = 'master' ] && [ "$TRAVIS_PULL_REQUEST" == 'false' ]; then
+    mvn deploy -P sign,build-extras --settings maven/mvnsettings.xml
+fi
diff --git a/maven/mvnsettings.xml b/maven/mvnsettings.xml
@@ -0,0 +1,24 @@
+<settings>
+  <servers>
+    <server>
+      <id>ossrh</id>
+      <username>${env.OSSRH_JIRA_USERNAME}</username>
+      <password>${env.OSSRH_JIRA_PASSWORD}</password>
+    </server>
+  </servers>
+
+  <profiles>
+    <profile>
+      <id>ossrh</id>
+      <activation>
+        <activeByDefault>true</activeByDefault>
+      </activation>
+      <properties>
+        <gpg.executable>gpg</gpg.executable>
+        <gpg.keyname>${env.GPG_KEY_NAME}</gpg.keyname>
+        <gpg.passphrase>${env.GPG_PASSPHRASE}</gpg.passphrase>
+      </properties>
+
+    </profile>
+  </profiles>
+</settings>
diff --git a/pom.xml b/pom.xml
@@ -34,6 +34,13 @@
     </developer>
   </developers>
 
+  <distributionManagement>
+    <snapshotRepository>
+        <id>ossrh</id>
+        <url>https://oss.sonatype.org/content/repositories/snapshots</url>
+    </snapshotRepository>
+  </distributionManagement>
+
   <build>
     <plugins>
       <plugin>
@@ -52,6 +59,17 @@
           <forkMode>pertest</forkMode>
         </configuration>
       </plugin>
+      <plugin>
+          <groupId>org.sonatype.plugins</groupId>
+          <artifactId>nexus-staging-maven-plugin</artifactId>
+          <version>1.6.8</version>
+          <extensions>true</extensions>
+          <configuration>
+              <serverId>ossrh</serverId>
+              <nexusUrl>https://oss.sonatype.org/</nexusUrl>
+              <autoReleaseAfterClose>true</autoReleaseAfterClose>
+          </configuration>
+      </plugin>
       <plugin>
         <artifactId>maven-dependency-plugin</artifactId>
         <executions>
@@ -154,24 +172,24 @@
 
   <profiles>
     <profile>
-      <id>sign-artifacts</id>
+      <id>sign</id>
       <build>
-        <plugins>
-          <plugin>
-            <groupId>org.apache.maven.plugins</groupId>
-            <artifactId>maven-gpg-plugin</artifactId>
-            <version>1.5</version>
-            <executions>
-              <execution>
-                <id>sign-artifacts</id>
-                <phase>verify</phase>
-                <goals>
-                  <goal>sign</goal>
-                </goals>
-              </execution>
-            </executions>
-          </plugin>
-        </plugins>
+          <plugins>
+              <plugin>
+                  <groupId>org.apache.maven.plugins</groupId>
+                  <artifactId>maven-gpg-plugin</artifactId>
+                  <version>1.6</version>
+                  <executions>
+                      <execution>
+                          <id>sign-artifacts</id>
+                          <phase>verify</phase>
+                          <goals>
+                              <goal>sign</goal>
+                          </goals>
+                      </execution>
+                  </executions>
+              </plugin>
+          </plugins>
       </build>
     </profile>
     <profile>
@@ -191,6 +209,42 @@
         </plugins>
       </build>
     </profile>
+    <profile>
+      <id>build-extras</id>
+      <activation>
+          <activeByDefault>true</activeByDefault>
+      </activation>
+      <build>
+          <plugins>
+              <plugin>
+                  <groupId>org.apache.maven.plugins</groupId>
+                  <artifactId>maven-source-plugin</artifactId>
+                  <version>2.4</version>
+                  <executions>
+                      <execution>
+                          <id>attach-sources</id>
+                          <goals>
+                              <goal>jar-no-fork</goal>
+                          </goals>
+                      </execution>
+                  </executions>
+              </plugin>
+                  <plugin>
+                  <groupId>org.apache.maven.plugins</groupId>
+                  <artifactId>maven-javadoc-plugin</artifactId>
+                  <version>2.10.3</version>
+                  <executions>
+                      <execution>
+                          <id>attach-javadocs</id>
+                          <goals>
+                              <goal>jar</goal>
+                          </goals>
+                      </execution>
+                  </executions>
+              </plugin>
+          </plugins>
+      </build>
+    </profile>
   </profiles>
 
   <dependencies>
diff --git a/travis-ci/accounts.enc b/travis-ci/accounts.enc
