Download the newest release of Apache Gora. Please Note Gora is ONLY released as source code and NOT binary. This is because you will most likely want to recompile various aspects of the codebase during or as a prerequisite to using Gora in your stack.
See the CHANGES file for more information on the list of updates in this release.
Gora is always distributed under the Apache License, version 2.0.
You require Apache Maven to build the Gora source code. Maven can either be downloaded and installed manually or alternatively via command line via your operating system package manager.
N.B. Gora is NOT tested against the Windows platform.
The link in the Mirrors column below should display a default mirror selection based on your inferred location. If (when you browse to it) you do not see that page, try a different browser. The checksum and signature are links to the originals on the main distribution server.
|Version||Mirrors||ASCII Signature||SHA512 Checksum|
|Apache Gora 0.9 (tar.gz)||apache-gora-0.9-src.tar.gz||apache-gora-0.9-src.tar.gz.asc||apache-gora-0.9-src.tar.gz.sha512|
|Apache Gora 0.9 (zip)||apache-gora-0.9-src.zip||apache-gora-0.9-src.zip.asc||apache-gora-0.9-src.zip.sha512|
It is essential that you verify the integrity of the downloaded files using the PGP and SHA512 signatures. published with every Gora release.
Please read Verifying Apache HTTP Server Releases for more information on why you should verify our releases.
We strongly recommend you verify your downloads with at least both PGP Signature and SHA512 Checksum. Guidance for doing so is provided below.
The PGP signatures can be verified using PGP or GPG. First download the KEYS as well as the asc signature file for the relevant distribution.
N.B.Make sure you get these files from the main distribution directory, rather than from a mirror. Then verify the signatures using the following
$ gpg --import KEYS $ gpg --verify gora-X.Y.Z-src.tar.gz.asc
The files in the most recent release are signed by Kevin Ratnasekera (CODE SIGNING KEY) firstname.lastname@example.org A3E66AC7
Alternatively, you can verify the SHA512 checksum on the files. A unix program called sha512sum is included in many unix distributions.
$ sha512sum apache-gora-X.Y.Z-src.tar.gz
output should match the string in apache-gora-X.Y.Z.tar.gz.sha512
All Apache Gora releases are available under the Apache License, Version 2.0. See the NOTICE.txt file contained in each release artifact for applicable copyright attribution notices.