citizen
citizen copied to clipboard
Published
20 hours ago •
outsideris
outsideris
Provider Publication
Hi I am trying to publish an existing provider in citizen. There is already a .sig file, can I use it? What am I doing wrong?
https://github.com/sbercloud-terraform/terraform-provider-sbercloud/releases
CITIZEN_ADDR=https://citizen.mydomain.com ./citizen-macos-x64 provider terraform-provider sbercloud 1.8.1
✔ validate required files in /Users/al/Downloads
Found:
terraform-provider-sbercloud_1.8.1_darwin_amd64.zip
terraform-provider-sbercloud_1.8.1_linux_amd64.zip
✔ generate terraform-provider-sbercloud_1.8.1_SHA256SUMS file
✖ sign terraform-provider-sbercloud_1.8.1_SHA256SUMS file with gpg
Error: Command failed: gpg --detach-sign --yes terraform-provider-sbercloud_1.8.1_SHA256SUMS
gpg: no default secret key: No secret key
gpg: signing failed: No secret key
at ChildProcess.exithandler (node:child_process:398:12)
at ChildProcess.emit (node:events:527:28)
at maybeClose (node:internal/child_process:1092:16)
at Socket.<anonymous> (node:internal/child_process:451:11)
at Socket.emit (node:events:527:28)
at Pipe.<anonymous> (node:net:709:12) {
code: 2,
killed: false,
signal: null,
cmd: 'gpg --detach-sign --yes terraform-provider-sbercloud_1.8.1_SHA256SUMS'
}
Thanks!
AFAIK citizen is not aware of existing signatures and always tries to invoke gpg. Maybe passing your GPG fingerprint or email address using the -g, --gpg-key <gpgkey> parameter will get you somewhere.
It appears to be common for provider projects to already sign the binaries with goreleaser, so it might be worth looking into just using existing checksums/signatures when available.
