Skip to content
Permalink
Browse files
8269244: [IDE] Dependency verification of *-sources.jar fails when do…
…ing gradle sync

Reviewed-by: kcr, nlisker
  • Loading branch information
Marius Hanl authored and nlisker committed Jun 29, 2021
1 parent c4cc998 commit 98e516698f02bfd3484ca5721c014dae8ddf80c9
Showing with 13 additions and 1 deletion.
  1. +10 −1 gradle/README.txt
  2. +3 −0 gradle/verification-metadata.xml
@@ -32,7 +32,16 @@ Recreate the dependency verification file as follows:
builds to pick up the internal tools and development kits in the
'javafx' component group.

6. Commit the final version of the file to the repository.
6. Add the following entry inside the <configuration> section:

<trusted-artifacts>
<trust file=".*-sources[.]jar" regex="true"/>
</trusted-artifacts>

This configures Gradle to trust automatically all sources.
See also: https://docs.gradle.org/current/userguide/dependency_verification.html#sec:skipping-javadocs

7. Commit the final version of the file to the repository.

These commands will cause Gradle to compute the requested checksums
directly from the newly downloaded artifacts and add them to the file.
@@ -3,6 +3,9 @@
<configuration>
<verify-metadata>true</verify-metadata>
<verify-signatures>false</verify-signatures>
<trusted-artifacts>
<trust file=".*-sources[.]jar" regex="true"/>
</trusted-artifacts>
</configuration>
<components>
<component group="" name="ffmpeg-3.3.3" version="">

1 comment on commit 98e5166

@openjdk-notifier

This comment has been minimized.

Copy link

@openjdk-notifier openjdk-notifier bot commented on 98e5166 Jun 29, 2021

Please sign in to comment.