maven-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Stefan Wendelmann (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (MCHANGES-395) JIRA password security
Date Thu, 06 Sep 2018 19:07:00 GMT

    [ https://issues.apache.org/jira/browse/MCHANGES-395?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16606277#comment-16606277
] 

Stefan Wendelmann commented on MCHANGES-395:
--------------------------------------------

[~michael-o] Thanks a lot, that was the one i was looking for 

[https://stackoverflow.com/a/32808020/696632]

Storing my password in symetric encryption is better then nothing, :) A good way to get not
let your colleagues sneak out your password to easy :D

> JIRA password security
> ----------------------
>
>                 Key: MCHANGES-395
>                 URL: https://issues.apache.org/jira/browse/MCHANGES-395
>             Project: Maven Changes Plugin
>          Issue Type: Improvement
>          Components: jira
>    Affects Versions: 2.12.1
>            Reporter: Stefan Wendelmann
>            Priority: Major
>
> May it be possible to encrypt the Jira password or to ask for it from the console?
>  
> AFAIK a there is no option in Jira to create a "special" User out of the licence for
REST Calls so we have to use a real persons Account with his/her original password.
> And is the pom.xml with password saved into the jar in META-INF ? So anyone with winrar
i.e. can read your Jira password in plaintext ? 
>  
> thanks in advance!



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message