The following document should be used to help people from the team to release a new version of ff4j
- Start the
ssh-agent
eval "$(ssh-agent -s)"
- Add the ssh key to the agent
cd ~/.ssh
ssh-add githubff4j
- Update sources
find . -type f -name *.DS_Store -ls -delete
git pull
git add -A
git commit -m "delivery"
git push
- Release
mvn release:prepare release:perform
- Go to the taglist on github then create the release
- Create a release note document
`Fixes:`
+ XXX (#000)
`Evolutions`
+ YYY (#000)
- Go to the spring-boot-starter
find . -type f -name *.DS_Store -ls -delete
git pull
- Change the FF4j version in the
pom.xmlex:1.8.x - Check build
mvn clean install - Push modifications
git add -A
git commit -m "bump ff4j version to 1.8.x"
git push
- Release
mvn release:prepare release:perform
- Update samples to use the latest version and build
- Build the
ff4j-demodocker image and push
mvn clean package dockerfile:build
docker login
docker push clunven/ff4j-sample:1.8.x
- Update ff4j.org [Getting Started(http://ff4j.org/#10min) guide
- Twitter with release node
- Open Collective
To release artifacts in Maven Central you should have the following tools installed on your machine:
- Apache Maven
- Java 8+
- Git
- SSH
- Gnu GPG (any tool to create gpg keys)
During releases, you will clone the ff4j repository, but also create tags and branches. All operations are performed using SSH git interface (not http). As such, you must generate an SSH key as describe in the following reference documentation on github. Main points have been copied below.
1.1.1 - List available keys
-
Open a terminal window.
-
Enter
ls -al ~/.sshto see if existing SSH keys are present:
ls -al ~/.sshBy default, the filenames of the public keys are one of the following:
id_dsa.pub
id_ecdsa.pub
id_ed25519.pub
id_rsa.pub
If you don't have an existing public and private key pair, or don't wish to use any that are available to connect to GitHub, then generate a new SSH key.
1.1.2 How to generate a new SSH key
-
Open a terminal window.
-
Paste the text below, substituting in your GitHub email address.
ssh-keygen -t rsa -b 4096 -C "[email protected]"This creates a new ssh key, using the provided email as a label.
> Generating public/private rsa key pair.
When you're prompted to "Enter a file in which to save the key," press Enter. This accepts the default file location.
> Enter a file in which to save the key (/Users/you/.ssh/id_rsa): [Press enter]
At the prompt, type a secure passphrase. For more information, see "Working with SSH key passphrases".
> Enter passphrase (empty for no passphrase): [Type a passphrase]
> Enter same passphrase again: [Type passphrase again]
1.1.3 Add your SSH key to the agent
- Start the ssh-agent in the background.
eval "$(ssh-agent -s)"
If you're using macOS Sierra 10.12.2 or later, you will need to modify your ~/.ssh/config file to automatically load keys into the ssh-agent and store passphrases in your keychain
Host *
AddKeysToAgent yes
UseKeychain yes
IdentityFile ~/.ssh/id_rsa
Add your SSH private key to the ssh-agent and store your passphrase in the keychain. If you created your key with a different name, or if you are adding an existing key that has a different name, replace id_rsa in the command with the name of your private key file.
ssh-add -K ~/.ssh/id_rsa
You should now be able to see your key in the agent with:
ssh-add -l
1.1.4 Add the SSH key to your github account
- Copy the SSH key to your clipboard.
If your SSH key file has a different name than the example code, modify the filename to match your current setup. When copying your key, don't add any newlines or whitespace.
pbcopy < ~/.ssh/id_rsa.pub
-
In the upper-right corner of any page, click your profile photo, then click Settings
-
In the user settings sidebar, click SSH and GPG keys.
-
Click New SSH key or Add SSH key.
-
In the "Title" field, add a descriptive label for the new key. For example, if you're using a personal Mac, you might call this key "Personal MacBook Air".
-
Paste your key into the
Keyfield. -
Click Add SSH key
-
If prompted, confirm your GitHub password.
1.1.5 Testing your SSH connection
-
Open Terminal.
-
Enter the following:
ssh -T [email protected]
You may see a warning like this:
> The authenticity of host 'github.com (IP ADDRESS)' can't be established.
> RSA key fingerprint is 16:27:ac:a5:76:28:2d:36:63:1b:56:4d:eb:df:a6:48.
> Are you sure you want to continue connecting (yes/no)?
Verify that the fingerprint in the message you see matches one of the messages in step 2, then type yes:
> Hi username! You've successfully authenticated, but GitHub does not
> provide shell access.
Verify that the resulting message contains your username.
1.2.1 Installing GnuPG
Download GnuPG and follow the instructions and install it to your system. Verify your gpg installation was successful by running gpg with the version flag:
gpg --version
1.2.2 Generate a Key Pair
Before you do anything with GPG, you will need to generate a key pair for yourself. Once you have you own key pair, you can use your private key to sign artifacts, and distribute your public key to public key servers and end-users so that they can validate artifacts signed with your private key.
gpg --gen-key
You'll be asked for the type, the size, and the time of validity for the key, just use the default value if you don't have any special requirements. You will be asked to input your name, email, and comment for the key. These identifiers are essential as they will be seen by anyone downloading a software artifact and validating a signatute. Finally, you can provide a passphase to protect your secret key, this is not mandatory, but I highly recommend you to do this. It is essential that you choose a secure passphrase and that you do not divulge it to any one. This passphrase and your private key are all that is needed to sign artifacts with your signature.
1.2.3 List Keys
Once key pair is generated, we can display them on the console, along with any other keys imported to the local machine. To list the public keys, enter the following command:
gpg --list-keys
To list the private keys use this command:
gpg --list-secret-keys
1.2.4 Distribute Your Public Key
Since other people need your public key to verify your files, you have to upload your public key to a key server:
gpg --keyserver hkp://pgp.mit.edu --send-keys <KEY_ID>
Here I distributed my public key to hkp://pgp.mit.edu, use --keyserver along with a key server address, and use --send-keys along with a keyid. You can get your keyid by listing the public keys. Note that public keys are synced among key servers.
Now other people can import your public key from the key server to their local machines:
gpg --keyserver hkp://pgp.mit.edu --send-keys <KEY_ID>
Some resources to consider:
During the release you will upload files (jar, sources, javadocs) to the nexus server (well this is what we call a release right ?). As such you need an account username/password. With such account you can later connect to the user interface and see download metrics.
Open your Maven settings.xml file (should be located in ~/.m2) and enter the following servers, which map to identifiers defined in ff4j's pom.xml file. The username/password values will be provided to you by a member of the team.
<servers>
<server>
<id>sonatype-nexus-snapshots</id>
<username>username</username>
<password>password</password>
</server>
<server>
<id>sonatype-nexus-staging</id>
<username>username</username>
<password>password</password>
</server>
<server>
<id>ossrh</id>
<username>username</username>
<password>password</password>
</server>
</servers>You can test your credentials by going to the Nexus Repository Manager and clicking Log In" at the top right corner of the page. Note: you may need to refresh the page to make it work... old JavaScript maybe.
Before starting please ensure that your environment is completely setup. The ff4j release process will take you about 30 minutes on a MacPro when everything is fine, and it is quite tricky to fix a half-finished release. Most of the time you have to start again from the very beginning.
- Clone or sync the repository to ensure you have the latest version on your machine, with no commitS ahead or behind.
git clone <URL>
git pull
- Ensure that the project builds property on your machine. This build takes about 5 minUTES. (Remember we rUn 10k+ unit tests to ensure the highest quality). It will eventually also download half of the Internet due to transitive dependencies.
mvn validate
mvn clean install
- Optional : If you want to enforce a new version in the trunk (eg go from 1.7.x-SNAPSHOT to 1.8-SNAPSHOT) you may go with
mvn versions:set -DnewVersion=1.8-SNAPSHOT
This will change all pom.xml files and create pom.xml.backup files with older version. To rollback simply go for a mvn versions:rollback. Most of the time you simply want to remove the backup files with
mvn versions:commit
- Ready? With all the preparations releasing is as simple as :
mvn release:prepare release:perform
There are a couple of questions to answer. If you don't provide any values it will use the default values shown in parentheses.
- Version of the release (1.8) : 1.8
- Tag name on github (ff4j-parent-1.8) : 1.8
- New version on the repository (1.9-SNAPSHOT) : 1.8.1-SNAPSHOT
Enjoy the process and look at the log to see what the process looks like under the hood:
*- mvn clean install
- Git branching and taging + push to github
- Version update + push to github
- Generating Javadocs and Sources jars
- Uploading jars to OSSRH
- Waiting to close the
stating(about 2min)*
Once the build is successfull, it takes around an hour to have Maven Central updated with your release.
Delete tag locally
git tag -d 1.8.3
Delete tag remotely
git push origin :refs/tags/1.8.3