boniface · boniface · Oct 23, 2025 · Oct 23, 2025 · Oct 23, 2025 · Oct 23, 2025
diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -48,14 +48,26 @@ jobs:
             javadocJar sourcesJar \
             --no-daemon --stacktrace
 
-      # Sign and publish (no need to build again!)
+      # Import GPG key for signing
+      - name: Import GPG key
+        uses: crazy-max/ghaction-import-gpg@v6
+        with:
+          gpg_private_key: ${{ secrets.GPG_PRIVATE_KEY }}
+          passphrase: ${{ secrets.GPG_PASSPHRASE }}
+
+      # Sign and publish to Maven Central (Central Portal)
       - name: Publish to Maven Central
         env:
-          ORG_GRADLE_PROJECT_signingKey: ${{ secrets.GPG_PRIVATE_KEY }}
-          ORG_GRADLE_PROJECT_signingPassword: ${{ secrets.GPG_PASSPHRASE }}
-          ORG_GRADLE_PROJECT_sonatypeUsername: ${{ secrets.SONATYPE_USERNAME }}
-          ORG_GRADLE_PROJECT_sonatypePassword: ${{ secrets.SONATYPE_PASSWORD }}
+          ORG_GRADLE_PROJECT_centralPortalUsername: ${{ secrets.CENTRAL_PORTAL_USERNAME }}
+          ORG_GRADLE_PROJECT_centralPortalPassword: ${{ secrets.CENTRAL_PORTAL_PASSWORD }}
+          ORG_GRADLE_PROJECT_signing.keyId: ${{ secrets.SIGNING_KEY_ID }}
+          ORG_GRADLE_PROJECT_signing.password: ${{ secrets.GPG_PASSPHRASE }}
+          ORG_GRADLE_PROJECT_signing.secretKeyRingFile: ${{ github.workspace }}/.gnupg/secring.gpg
         run: |
+          # Export secret key for Gradle signing
+          gpg --export-secret-keys > ${{ github.workspace }}/.gnupg/secring.gpg
+
+          # Publish to Maven Central via Central Portal
           ./gradlew publishToSonatype closeAndReleaseSonatypeStagingRepository \
             --no-daemon --stacktrace
 
@@ -86,8 +98,11 @@ jobs:
 
             ### Changes
             See [CHANGELOG.md](CHANGELOG.md) for details.
+
+            ---
+            **Note:** This is a pre-1.0.0 release. The API may change between releases.
           draft: false
-          prerelease: false
+          prerelease: ${{ startsWith(steps.extract_version.outputs.VERSION, '0.') }}
           files: |
             build/libs/*.jar
             build/publications/maven/pom-default.xml

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -8,35 +8,46 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ## [Unreleased]
 
 ### Added
-- Complete Open Payments API implementation with Java 25
-- GNAP (Grant Negotiation and Authorization Protocol) support
-- HTTP Message Signatures with Ed25519
-- Token lifecycle management (rotation and revocation)
-- HTTP interceptors for logging, authentication, and error handling
-- Async-first API with CompletableFuture
-- Immutable data models using Java records
-- Comprehensive JavaDoc documentation
-- 465 unit tests with 100% pass rate
-- PMD and Checkstyle quality checks
-- Automatic code formatting with Spotless
-- Complete resource service implementations:
-  - WalletAddressService for wallet address discovery
-  - IncomingPaymentService for receiving payments
-  - OutgoingPaymentService for sending payments
-  - QuoteService for exchange rate quotes
-- Comprehensive usage examples and documentation
+- 📦 **Maven Central Publishing Setup**
+  - Automated CI/CD publishing via GitHub Actions
+  - Central Portal integration
+  - Comprehensive release guide (RELEASE_GUIDE.md)
+  - GPG artifact signing configuration
+  - Automated GitHub Release creation
+  - JavaDoc deployment to GitHub Pages
+  - Publication verification in CI/CD pipeline
 
 ### Changed
-- Converted payment and auth domain models to Java records for improved immutability
-  - IncomingPayment, OutgoingPayment, Quote (payment models)
-  - AccessToken, Grant, AccessRight (auth models)
-  - Preserved builder patterns for backward compatibility
-  - Added Optional-returning getters for nullable fields
-  - Maintained custom equals/hashCode/toString implementations
+- 🔢 **Versioning Strategy**
+  - Changed from `1.0.0-SNAPSHOT` to `0.1.0` (pre-1.0 development)
+  - Adopted semantic versioning with 0.x.y for initial development
+  - Configured for release-only versions (no SNAPSHOT support)
+
+- 🔧 **Publishing Configuration**
+  - Fixed Maven Central Portal URL to `https://central.sonatype.com`
+  - Updated to token-based authentication (Central Portal tokens)
+  - Removed legacy OSSRH references and configurations
+  - Removed duplicate version declarations in build files
+  - Simplified publishing workflow 
+
+- 📝 **Documentation**
+  - Added publishing docs into single comprehensive RELEASE_GUIDE.md
+  - Updated CI_CD_SETUP.md to reflect Central Portal approach
+  - Updated GITHUB_ACTIONS_SETUP.md with correct secret names
+
+- ⚙️ **CI/CD Workflow**
+  - Updated release.yml for Central Portal authentication
+  - Added GPG key import step using crazy-max/ghaction-import-gpg
+  - Updated secret names: `CENTRAL_PORTAL_*` instead of `SONATYPE_*`
+  - Added automatic pre-release flag for 0.x versions
+  - Enhanced artifact verification steps
 
 ### Removed
-- Phase-specific TODO comments from completed implementation
-- Replaced with proper documentation for future enhancements
+- 🗑️ **Cleanup**
+  - Removed all SNAPSHOT version references from codebase
+  - Removed OSSRH (legacy Sonatype) documentation and references
+  - Removed duplicate/redundant publishing documentation files
+  - Removed old sunset `s01.oss.sonatype.org` endpoint references
 
 ## [0.1.0] - Initial Development
 
@@ -163,7 +174,6 @@ Not applicable for initial release.
 
 1. Integration tests for Phases 5+ are still pending implementation
 2. Performance benchmarks not yet established
-3. Maven Central publication pending first stable release
 
 ## Future Plans
 
@@ -173,17 +183,18 @@ Not applicable for initial release.
 - Additional authentication schemes
 - Enhanced error recovery
 
-### Version 1.0.0
-- Production-ready release
+### Version 1.0.0 (Stable Release)
+- Production-ready release with API stability commitment
 - Full Open Payments API coverage
-- Performance benchmarks
-- Maven Central publication
+- Performance benchmarks and optimization
 - Comprehensive integration testing
 - Production deployment guide
+- First stable release on Maven Central
 
 ## Contributors
 
 - Boniface Kabaso - Initial implementation
+- Espoir Diteekemena - Initial implementation and Documentation
 
 ## References
 

diff --git a/PROJECT_STATUS.md b/PROJECT_STATUS.md
@@ -356,7 +356,7 @@ All completed phases meet the following quality standards:
 - **HTTP**: Apache HttpClient 5 (abstracted, multiple implementations)
 - **JSON**: Jackson with Jdk8Module (for Optional support) and JSR310 (for Java Time)
 - **Crypto**: Ed25519 (Java standard library KeyPairGenerator)
-- **Testing**: JUnit 5, Mockito, AssertJ
+- **Testing**: JUnit 6, Mockito, AssertJ
 - **Quality**: PMD, Checkstyle, SpotBugs, Spotless
 
 ---

diff --git a/README.md b/README.md
@@ -1,7 +1,7 @@
 # Open Payments Java SDK
 
-[![CI](https://github.com/boniface/open-payments-java/actions/workflows/ci.yml/badge.svg)](https://github.com/bonifacekabaso/open-payments-java/actions/workflows/ci.yml)
-[![Security & Quality](https://img.shields.io/github/actions/workflow/status/boniface/open-payments-java/ci.yml?label=Security%20%26%20Quality&query=jobs.security-and-quality.conclusion)](https://github.com/bonifacekabaso/open-payments-java/actions/workflows/ci.yml)
+[![CI](https://github.com/boniface/open-payments-java/actions/workflows/ci.yml/badge.svg)](https://github.com/boniface/open-payments-java/actions/workflows/ci.yml)
+[![Security & Quality](https://img.shields.io/github/actions/workflow/status/boniface/open-payments-java/ci.yml?label=Security%20%26%20Quality&query=jobs.security-and-quality.conclusion)](https://github.com/boniface/open-payments-java/actions/workflows/ci.yml)
 [![JaCoCo](https://img.shields.io/badge/JaCoCo-Coverage-green.svg)](https://github.com/boniface/open-payments-java/actions/workflows/ci.yml)
 [![Java](https://img.shields.io/badge/Java-25-orange.svg)](https://openjdk.java.net/)
 [![License](https://img.shields.io/badge/License-Apache%202.0-blue.svg)](LICENSE)
@@ -41,7 +41,7 @@ graph TD
         Auth ~~~ Note
         Resource ~~~ Note
 
-        Note["Operated by Account Service Entity (ASE)<br/> (Bank, Wallet Provider, Payment Processor)"]
+        Note["Operated by Account Service Entity (ASE) (Bank, Wallet Provider, Payment Processor)"]
     end
 
     App -->|HTTP Request via SDK| SDK
@@ -80,7 +80,7 @@ graph TD
 
 ```kotlin
 dependencies {
-    implementation("zm.hashcode:open-payments-java:1.0-SNAPSHOT")
+    implementation("zm.hashcode:open-payments-java:0.1.0")
 }
 ```
 
@@ -90,10 +90,12 @@ dependencies {
 <dependency>
     <groupId>zm.hashcode</groupId>
     <artifactId>open-payments-java</artifactId>
-    <version>1.0-SNAPSHOT</version>
+    <version>0.1.0</version>
 </dependency>
 ```
 
+> **Note:** Versions 0.x.y are pre-1.0.0 releases. The API may change between releases until 1.0.0 is reached.
+
 ### Basic Usage
 
 ```java
@@ -213,10 +215,10 @@ cd open-payments-java
 
 - Complete unit test implementations
 - Performance optimization
-- Maven Central publication
+- Maven Central publication (see [MAVEN_CENTRAL_PUBLISHING.md](MAVEN_CENTRAL_PUBLISHING.md))
 - Version 1.0 release
 
-**Version**: 0.1.0-SNAPSHOT | **Target Release**: 1.0.0 | **Java**: 25+
+**Version**: 1.0.0-SNAPSHOT | **Target Release**: 1.0.0 | **Java**: 25+
 
 See [PROJECT_STATUS.md](PROJECT_STATUS.md) for detailed roadmap.