Don't sign published artifacts

build.gradle

@@ -28,10 +28,6 @@ ext {
     isReleaseVersion = !isSnapshot
 }
 
-ext."signing.keyId" = project.hasProperty("signing.keyId") ? project.getProperty('signing.keyId') : System.getenv('SIGNING_KEY')
-ext."signing.password" = project.hasProperty("signing.password") ? project.getProperty('signing.password') : System.getenv('SIGNING_PASSPHRASE')
-ext."signing.secretKeyRingFile" = project.hasProperty("signing.secretKeyRingFile") ? project.getProperty('signing.secretKeyRingFile') : "${System.properties['user.home']}${File.separator}.gnupg${File.separator}secring.gpg"
-
 nexusPublishing {
     repositories {
         sonatype {
@@ -112,7 +108,6 @@ subprojects { Project project ->
     if (project.name in publishedProjects && project.name != "spring-security-rest-docs" &&
             project.name != "spring-security-rest-testapp-profile") {
         apply plugin: 'maven-publish'
-        apply plugin: 'signing'
         publishing {
 
             repositories {
@@ -174,15 +169,6 @@ subprojects { Project project ->
                 }
             }
         }
-
-        signing {
-            sign publishing.publications.mavenRelease
-        }
-
-        //do not generate extra load on Nexus with new staging repository if signing fails
-        tasks.withType(io.github.gradlenexus.publishplugin.InitializeNexusStagingRepository).configureEach {
-            shouldRunAfter(tasks.withType(Sign))
-        }
     }
 }