chore(gha): use Keeper action #98

	name: Build

	on:
	pull_request:
	branches: [ main ]
	push:
	branches: [ main ]

	jobs:
	build:
	runs-on: ubuntu-latest

	steps:
	- uses: actions/checkout@v4
	with:
	fetch-depth: 0

	- uses: Keeper-Security/ksm-action@v1
	with:
	keeper-secret-config: ${{ secrets.KSM_CONFIG }}
	secrets: \|
	${{ vars.KEEPER_SONARCLOUD_RECORD_ID }}/field/password > env:SONAR_TOKEN
	${{ vars.KEEPER_OSSRH_RECORD_ID }}/field/login > env:MAVEN_USERNAME
	${{ vars.KEEPER_OSSRH_RECORD_ID }}/field/password > env:MAVEN_PASSWORD
	${{ vars.KEEPER_GPG_ARTIFACT_SIGNING_RECORD_ID }}/field/login > env:GPG_KEYNAME
	${{ vars.KEEPER_GPG_ARTIFACT_SIGNING_RECORD_ID }}/custom_field/gpg-private-key > env:GPG_PRIVATE_KEY
	${{ vars.KEEPER_GPG_ARTIFACT_SIGNING_RECORD_ID }}/field/password > env:MAVEN_GPG_PASSPHRASE

	- name: Setup Java
	uses: actions/setup-java@v4
	with:
	java-version: 17
	distribution: temurin
	cache: maven
	server-id: ossrh # Value of the distributionManagement/repository/id field of the pom.xml
	server-username: MAVEN_USERNAME # env variable for username in deploy
	server-password: MAVEN_PASSWORD # env variable for token in deploy
	gpg-private-key: ${{ env.GPG_PRIVATE_KEY }} # Value of the GPG private key to import
	gpg-passphrase: MAVEN_GPG_PASSPHRASE # env variable for GPG private key passphrase

	- name: Build and deploy
	env:
	GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information, if any
	run: ./mvnw -B -ntp clean deploy

	- run: mkdir staging && cp target/*.zip staging
	- name: Upload artifact
	uses: actions/upload-artifact@v3
	with:
	name: Connectors
	path: staging

Provide feedback