After a long and interesting discussion last August
(http://docs.codehaus.org/display/MAVEN/Secured+Passwords) and several
meetings with users, I felt it's overdue to do the actual implementation.
I massaged my old, vintage 2007 code and put it into 2.1.x trunk.
How it all works - more detailed explanation is in [MNG-553], here is
the digest of it:
Process is now manual, I will automate it later on: plugin exists - need
to test it first.
* user encrypts a master password with CLI and stores it in ~/.m2/sec.xml
** there is an option to store it on a removable drive and reference
that from ~/.m2/sec.xml
* user encrypts server password with CLI ans stores it in settings.xml
* Maven decrypts the password in memory and everything works like it was
before
** help:effective-settings (tested) and other tools (did not test
though) still show encrypted passwords
Thanks,
Oleg
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
