Travis: decrypt GPG keypair via travis-build.sh

ctrueden · ctrueden · commit a00f50de7e84 · 2017-10-30T16:17:28.000-05:00
Rather than having the .travis.yml declare that it should be
done before_install, we have more control if it is done as part
of the build itself. For one thing, we can use if statements
without being at the mercy of Travis's YAML support.
diff --git a/.travis.yml b/.travis.yml
@@ -15,7 +15,3 @@ env:
   - secure: Jgj204N4hKv+7sUrXGtXMvUoXYuHAerhUvwbHsm0BJFpzUSyHP5QWJH2tHvCUL9Yb4VhNEjc46RLFVmiIXynJwAdAWJodT/VEnOTb5Cf7+0UHK4qCyjyjVHiWq1cf+R8Lr9fuKRqxUAdz9Hw6g0Yt23TX8kCa+wQW9lwchn0IG8=
   - secure: RuGzuPrxyvBRJwsCpSJ10p9PdP2Hzc9lxb29L//Y/Fkc3bJwNMlNa0ST83oGNHJapYc4dWuFk22Ooy/2YioNgsVvR4n5MAslqXQXSY0VDle1Nbf1pudAlPU+quaiYxcAyyysjUUtqc5wADVgpkrDA7GJzAuCOWb4aSwiiIn6u4A=
   - secure: bnsjVlj9MBJto8ahZdMwGpVPjZeyF7r5tZh+t+NhDuZsP0WMlURzGZ9/lJOO4quklgiWCyeVDB5uvDvsdG9BReBe5Q8Q6WZyxhxYtP2iLV0zRWSWsGKk0stGcrmJKk8wbicIJdXD8suiP+2Li5GfxTge/hkhL4CL0OOr6b1JqrM=
-before_install:
-- test "$TRAVIS_SECURE_ENV_VARS" = true &&
-  openssl aes-256-cbc -K $encrypted_d2fbfc37eea9_key -iv $encrypted_d2fbfc37eea9_iv
-  -in .travis/signingkey.asc.enc -out .travis/signingkey.asc -d
diff --git a/.travis/build.sh b/.travis/build.sh
@@ -1,3 +1,3 @@
 #!/bin/sh
 curl -fsLO https://raw.githubusercontent.com/scijava/scijava-scripts/master/travis-build.sh
-sh travis-build.sh
+sh travis-build.sh $encrypted_d2fbfc37eea9_key $encrypted_d2fbfc37eea9_iv
