diff --git a/src/pages/download/index.jsx b/src/pages/download/index.jsx index fe085a9a1..4ca66d52d 100644 --- a/src/pages/download/index.jsx +++ b/src/pages/download/index.jsx @@ -15,12 +15,14 @@ export default function () { const archived = downloadDataSource.slice(1, downloadDataSource.length) return ( -
+

{dataSource.download}

{dataSource.downloadDesc1} -
  • apache-streampark_2.11-2.1.5-incubating-bin.tar.gz
    • -
  • apache-streampark_2.12-2.1.5-incubating-bin.tar.gz
    • +
  • apache-streampark_2.11-2.1.5-incubating-bin.tar.gz +
    • +
  • apache-streampark_2.12-2.1.5-incubating-bin.tar.gz +
    • {dataSource.downloadDesc2}

    {dataSource.latestVersion}

    @@ -29,8 +31,8 @@ export default function () {

    {dataSource.archived}

    - -

    Note

    + +

    Note

    • {dataSource.note}
      • @@ -38,16 +40,40 @@ export default function () {
    +

    {dataSource.verifyReleases}

    +

    + {dataSource.verifyDesc} +

    +

    + + {dataSource.downloadText} PGP KEYS {dataSource.verifyDesc1} : + + +

  • {dataSource.verifyStep1}
    • + 
     gpg --import KEYS
    + +
  • {dataSource.verifyStep2}
    • + 
    +            gpg --verify apache-streampark-***.asc apache-streampark-***.tar.gz
+
    + +
  • {dataSource.verifyStep2}
    • + 
    +            sha512sum --check apache-streampark-***.sha512
+
    +

    +

    License

    The software is licensed under the Apache License 2.0 - . - -

    -
    + . + +

    +
    ); diff --git a/src/pages/download/languages.json b/src/pages/download/languages.json index 83585097c..3c5248419 100644 --- a/src/pages/download/languages.json +++ b/src/pages/download/languages.json @@ -15,7 +15,14 @@ "binary": "二进制包", "releaseNotes": "发布记录" }, - "releaseNotes": "发布记录" + "releaseNotes": "发布记录", + "verifyReleases": "验证发版", + "verifyDesc": "你需要使用 PGP 或 SHA 签名验证下载文件的完整性,请下载 KEYS 以及 .asc/.sha512 签名文件以供相关验证,下载文件后,你应该验证相关签名,并确保它与我们的签名一致。", + "downloadText": "下载", + "verifyDesc1": "以及带有 .asc 签名的文件,然后按照下面的步骤进行验证", + "verifyStep1": "将 KEYS 文件导入到你的 GPG 密钥:", + "verifyStep2": "使用以下命令验证发布文件的签名:", + "verifyStep3": "你需要下载发布文件和该文件的 .sha512 文件。然后通过以下命令进行验证:" }, "en": { "download": "Download Apache StreamPark (incubating)", @@ -33,6 +40,13 @@ "binary": "Binary", "releaseNotes": "Release notes" }, - "releaseNotes": "release notes" + "releaseNotes": "release notes", + "verifyReleases": "Verify the releases", + "verifyDesc": "It is essential that you verify the integrity of the downloaded files using the PGP or SHA signatures. Please download the KEYS as well as the .asc/.sha512 signature files for relevant distribution. After you download the file, you should calculate a checksum for your download, and make sure it is the same as ours.", + "downloadText": "Download", + "verifyDesc1": "and the release with its .asc signature file. And then", + "verifyStep1": "Import the KEYS file to your GPG keyring:", + "verifyStep2": "Verify the signature of the release artifact using the following command:", + "verifyStep3": "You will need to download both the release artifact and the .sha512 checksum file for that artifact. Then verify the checksum by:" } }