How to use signing with nFPM? #563
-
I'm very new when it comes to software releases and I found nFPM which has made things very easy. The next step in the learning process for me is signing binaries and release packages. I followed this tutorial on how to run my own APT repo and generate my own signing keys. TL;DR of the tutorial: using gpg, I generated a master key and a subkey for signing from it. Exported the master key to a file and backed that up on a separate machine. Deleted the file and the master key from the keyring, which then deleted all other keys. Imported the signing key. Now when I write my configuration files for nFPM, I try to export the signing key into a file format as follows:
This prompts me for my passphrase. In the config under signature:
key_file: key.gpg
key_id: XXXXXXXX When I go to create my using deb packager...
signing error: armored detach sign: no signing key in keyring
using rpm packager...
failed to create signatures: call to signer failed: signing error: no signing key in keyring
using apk packager...
signing error: no PEM block found I've tried exporting the passphrase manually as the |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 7 replies
-
as stated in the docs, the env variable has a different name: https://goreleaser.com/customization/nfpm/ in your case, probably please reply in thread instead of a new one, thank |
Beta Was this translation helpful? Give feedback.
as stated in the docs, the env variable has a different name: https://goreleaser.com/customization/nfpm/
in your case, probably
NFPM_DEFAULT_PASSPHRASE
, unless you set a differentnfpms.id
please reply in thread instead of a new one, thank