528780 – The E4 spies build should sign its jar

Bug 528780 - The E4 spies build should sign its jar

Summary: The E4 spies build should sign its jar

Status:	RESOLVED FIXED

Alias:	None

Product:	e4
Classification:	Eclipse Project
Component:	Tools (show other bugs)
Version:	unspecified
Hardware:	PC Mac OS X

Importance:	P3 normal (vote)
Target Milestone:	---
Assignee:	Olivier Prouvost
QA Contact:

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2017-12-14 09:13 EST by Olivier Prouvost
Modified:	2018-03-22 05:15 EDT (History)
CC List:	1 user (show)

See Also:	Gerrit Change Git Commit 490765

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Olivier Prouvost

2017-12-14 09:13:09 EST

When the E4 spies are installed, a message tells us that spies are not signed.

As they are build on the eclipse site, they can be easily signed during the build.

Comment 1 Olivier Prouvost

2018-03-13 10:51:35 EDT

Thanks Mikael Barbero) for these links : 

http://git.eclipse.org/c/cbi/org.eclipse.cbi.git/tree/maven-plugins/README.md section "Using eclipse-jarsigner-plugin"

Latest release is 1.1.4 : https://www.eclipse.org/cbi/sitedocs/eclipse-jarsigner-plugin/plugin-info.html

And :  http://codeandme.blogspot.fr/2017/04/host-your-own-eclipse-signing-server.html

Comment 2 Eclipse Genie

2018-03-13 13:04:36 EDT

New Gerrit change created: https://git.eclipse.org/r/119354

Comment 3 Eclipse Genie

2018-03-14 05:22:25 EDT

Gerrit change https://git.eclipse.org/r/119354 was merged to [master].
Commit: http://git.eclipse.org/c/e4/org.eclipse.e4.tools.git/commit/?id=cf01abebd79cb50877f676df5c7b2c553d598cb3

Comment 4 Olivier Prouvost

2018-03-14 05:23:28 EDT

Also add the -P sign parameter in the Hudson job : 

https://hudson.eclipse.org/e4/job/org.eclipse.e4.tools/

Comment 5 Olivier Prouvost

2018-03-14 11:10:42 EDT

It works with the zip and from market place. No more dialog with 'not signed jar'...