-
-
Notifications
You must be signed in to change notification settings - Fork 503
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Please switch to Package Cloud apt repository; rabbitmq.com's one becomes read-only in a few months #640
Comments
@michaelklishin Thanks for the heads up. I'm happy to update apt to use packagecloud when Is this how we'd want the resulting repo to look on Ubuntu 16?
Also, will the signing key [for the package itself, vs. the repo, which I think uses https://packagecloud.io/rabbitmq/rabbitmq-server/gpgkey] continue to be at: Thanks for the heads up. |
@michaelklishin I created #641. This will probably get merged soon, but let me know if you have any feedback, especially anything in regards to whether signing practices will remain the same. |
@wyardley I think for the cases of vendor (distribution?) provided packages nothing should change. The signing key on Our key is also available from Bintray. To my knowledge we can't just add an arbitrary key to a repo, or an arbitrary file to our account. Would Bintray work for the key? Or should we create a GitHub repo for public keys? |
@michaelklishin Separately, there has been discussion about the safest way of including the key -- in the module, via a site unconnected to the package source, and so on. |
@michaelklishin I stand corrected -- for Ubuntu, with only the packagecloud key, the 3.6.12 package seems to install cleanly. So I think we can rework this a little bit. However, with RHEL, it seems to still be using the RabbitMQ signing key (which is what we've been using even since I switched to the packagecloud repo)?
So for now, I'll use the old signing key for yum, and the new for apt? |
Rework apt to use packagecloud repos as well (#640)
I'm going to close this one for benefit of being in the right place in the Changelog... but, please do keep us up to date, and if the rpm packages switch to using the same signing key, we may need to make some adjustments. Having a mix of signing keys within the same repo may also cause problems, since the module does allow users to specify a specific version. |
Rework apt to use packagecloud repos as well (voxpupuli#640)
This module currently uses Package Cloud for RHEL-based distributions and rabbitmq.com apt repo for Debian-based ones.
Team RabbitMQ plans to stop publishing new releases to rabbitmq.com in a few months (note: existing packages won't be removed). 3.7.0 will
be distributed via Bintray, GitHub, and Package Cloud. It would be great if this module was updated
to use those three ahead of the 3.7.0 release in late November.
The text was updated successfully, but these errors were encountered: