1 files changed, 170 insertions, 0 deletions

diff --git a/README.txt b/README.txt
new file mode 100644
index 0000000..380157b
--- /dev/null
+++ b/README.txt
@@ -0,0 +1,170 @@
+------------------------------------------------------------------------
+Maven deployment scripts
+------------------------------------------------------------------------
+
+The purpose of these scripts is to produce a set of PGP-signed jars and
+POM files for deployment to Maven Central.
+
+  http://search.maven.org
+
+Because the jogamp projects do not use Maven to manage their own builds
+(and it would be too much work for very little gain to convert the build
+system over to Maven), these scripts take an archive of already-released
+jar files and produce renamed jar files and POM files as output, ready
+for deployment to the repository.
+
+These instructions assume that you know how to set up a PGP agent [0].
+
+In order to get packages onto Maven Central, it's necessary to have an
+account on one of the large Java "forges". The most-used one seems to be
+Sonatype. See the repository usage guide [1] for details on getting an
+account.
+
+------------------------------------------------------------------------
+Instructions
+------------------------------------------------------------------------
+
+  1. Obtain the jogamp-all-platforms.7z release for the version
+     of jogamp you wish to deploy to Central. As an example, we'll
+     use 2.0-rc10. Unpack the 7z file to the 'input' subdirectory,
+     creating it if it doesn't exist:
+
+    $ mkdir input
+    $ cd input
+    $ wget http://jogamp.org/deployment/v2.0-rc9/archive/jogamp-all-platforms.7z
+    $ 7z x jogamp-all-platforms.7z
+
+  2. Switch back to the old directory:
+
+    $ cd ..
+
+  3. The Central repository requires PGP signatures on all files
+     deployed to the repository. Because we'll be signing a lot
+     of files, we need this to occur in the most automated manner
+     possible. Therefore, we need to tell Maven which PGP key to
+     use and also to tell it to use any running PGP agent we have.
+     To do this, we have to add a profile to $HOME/.m2/settings.xml
+     that sets various properties that tell the PGP plugin what
+     to do. My settings.xml looks something like:
+
+     <?xml version="1.0" encoding="UTF-8"?>
+     <settings
+       xmlns="http://maven.apache.org/SETTINGS/1.0.0" 
+       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
+       xsi:schemaLocation="http://maven.apache.org/SETTINGS/1.0.0 http://maven.apache.org/xsd/settings-1.0.0.xsd">
+       <profiles>
+         <profile>
+           <id>jogamp-deployment</id>
+           <properties>
+             <gpg.useagent>true</gpg.useagent>
+             <gpg.keyname>jogamp.com (Release signing key)</gpg.keyname>
+           </properties>
+         </profile>
+       </profiles>
+       <activeProfiles>
+         <activeProfile>jogamp-deployment</activeProfile>
+       </activeProfiles>
+     </settings>
+
+    That is, I've defined a new profile called "jogamp-deployment"
+    that enables the use of a PGP agent, and uses the string
+    "jogamp.com (Release signing key)" to tell PGP which key to use.
+    You can obviously use the fingerprint of the key here too
+    (or anything else that uniquely identifies it).
+
+    See: http://www.sonatype.com/books/mvnref-book/reference/profiles.html
+
+  4. Now, run make.sh with the desired version number to generate POM
+     files and copy jar files to the correct places:
+
+      $ ./make.sh 2.0-rc10
+
+  5. The scripts will have created an 'output' directory, containing
+     all the prepared releases. It's now necessary to deploy the releases,
+     one at a time [2]. Assuming that our Sonatype username is 'jogamp'
+     and our password is '********', we now need to edit settings.xml
+     to tell Maven to use them both:
+
+     <?xml version="1.0" encoding="UTF-8"?>
+     <settings
+       xmlns="http://maven.apache.org/SETTINGS/1.0.0" 
+       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" 
+       xsi:schemaLocation="http://maven.apache.org/SETTINGS/1.0.0 http://maven.apache.org/xsd/settings-1.0.0.xsd">
+       <profiles>
+         <profile>
+           <id>jogamp-deployment</id>
+           <properties>
+             <gpg.useagent>true</gpg.useagent>
+             <gpg.keyname>jogamp.com (Release signing key)</gpg.keyname>
+           </properties>
+         </profile>
+       </profiles>
+       <activeProfiles>
+         <activeProfile>jogamp-deployment</activeProfile>
+       </activeProfiles>
+      <servers>
+        <server>
+          <id>sonatype-nexus-staging</id>
+          <username>jogamp</username>
+          <password>********</password>
+        </server>
+      </servers>
+     </settings>
+
+     That is, we define a new server called 'sonatype-nexus-staging' (this
+     is the name that the scripts use to refer to the remote repository),
+     and state that it wants username 'jogamp' and password '********'.
+
+  6. Now we can deploy a project:
+
+      $ ./make-deploy.sh gluegen-rt-main 2.0-rc10
+
+     The scripts will upload all necessary jars, poms, signatures, etc.
+
+  7. Now, we need to tell the Sonatype repository that we wish to actually
+     promote the uploaded ("staged") files to a release. This step (unfortunately)
+     doesn't seem to be possible from the command line.
+
+     Log in to https://oss.sonatype.org using the 'jogamp:********' username
+     and password.
+
+     Click 'Staging repositories' in the left navigation bar.
+
+     In the main pane, there should now be a table of repositories. Because
+     we've just uploaded a set of files, there should be one entry (staging
+     repositories are automatically created when files are uploaded).
+
+     Click the checkbox to the left of the repository name. This will open
+     a 'repository browser' below the main view, showing a tree of files.
+     Inspect the tree of files to be sure that all of the necessary files are
+     present.
+
+     If all files are there, and assuming that the checkbox is still selected
+     from the previous step, click the 'Close' button above the repository
+     browser - this will 'close' the staging repository and the release will
+     be official!
+
+     If there are still more projects to release, return to step 6.
+
+------------------------------------------------------------------------
+Notes
+------------------------------------------------------------------------
+
+We're currently uploading empty jar files for the "sources" and
+"javadoc" jars required by Central. The rules state that these
+files are required unconditionally, but may be empty in the case
+that there aren't sources or javadoc. It'd be nice to provide real
+sources and javadoc one day.
+
+------------------------------------------------------------------------
+Footnotes
+------------------------------------------------------------------------
+
+[0] http://www.gnupg.org/documentation/manuals/gnupg/Invoking-GPG_002dAGENT.html
+
+[1] https://docs.sonatype.org/display/Repository/Sonatype+OSS+Maven+Repository+Usage+Guide
+
+[2] Sonatype seems to have the restriction that it's only possible to
+    deploy one 'artifactId' at a time - that translates to deploying one
+    jogamp project at a time.
+