Sign and verify new release jars with GnuPG

This commit is contained in:
Reinhard Pointner 2017-04-13 19:29:12 +08:00
parent d2d3a9ed50
commit e8c4e3ba0e
1 changed files with 2 additions and 2 deletions

View File

@ -55,11 +55,11 @@ fi
# initialize gpg
GPG_HOME="$APP_ROOT/.gpg"
GPG_HOME="$APP_ROOT/data/.gpg"
JAR_XZ_FILE="$APP_ROOT/FileBot.jar.xz"
if [ ! -d "$GPG_HOME" ]; then
mkdir -p -m 700 "$GPG_HOME" && gpg --homedir "$GPG_HOME" --import "$APP_ROOT/filebot.pub"
mkdir -p "$GPG_HOME" && chmod 700 "$GPG_HOME" && gpg --homedir "$GPG_HOME" --import "$APP_ROOT/filebot.pub"
fi
# verify signature and extract jar