maven-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Stefan Wendelmann (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (MCHANGES-395) JIRA password security
Date Mon, 10 Sep 2018 15:29:00 GMT

    [ https://issues.apache.org/jira/browse/MCHANGES-395?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16609390#comment-16609390
] 

Stefan Wendelmann commented on MCHANGES-395:
--------------------------------------------

Sadly it wont work with a maven encrypted password in the settings.xml

When i store it plain it works.

 

I have other passwords in my settings.xml like the distribution server wich works just fine.

 

Does the plugin support maven encrypted passwords ?

> JIRA password security
> ----------------------
>
>                 Key: MCHANGES-395
>                 URL: https://issues.apache.org/jira/browse/MCHANGES-395
>             Project: Maven Changes Plugin
>          Issue Type: Improvement
>          Components: jira
>    Affects Versions: 2.12.1
>            Reporter: Stefan Wendelmann
>            Priority: Major
>
> May it be possible to encrypt the Jira password or to ask for it from the console?
>  
> AFAIK a there is no option in Jira to create a "special" User out of the licence for
REST Calls so we have to use a real persons Account with his/her original password.
> And is the pom.xml with password saved into the jar in META-INF ? So anyone with winrar
i.e. can read your Jira password in plaintext ? 
>  
> thanks in advance!



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message