Hi all,
I have been working on the challenge of executing the customBuild ant
script via a web interface. There have been some barriers due to file
permissions and maven settings defaults.
I have made considerable progress on modifying the build.xml to run a
custom script calling Maven, and have posted some thoughts, a script
file and a new patch at http://issues.fluidproject.org/browse/FLUID-2937
I have recorded some of my concerns in the JIRA. In particular, I had to
open up execute permissions to all users on the custom script, and write
permissions to all users in the .m2 directory and the infusion
directory. I'm pretty sure I'm opening up security holes that we would
prefer not to have...and would appreciate some advice on ways to lock
things down better.
In addition, I am not sure what concerns we may have about multiple
users attempting to access ant, maven and the script at the same time.
This is more of a unix thing that I don't know that much about yet - can
multiple users execute the same commands via the web page safely?? I'm
sure someone on this list knows but I'm not clear on it.
Would appreciate some feedback from Colin and Jamon and anyone else who
has thoughts.
Laurel
begin:vcard
fn:Laurel A. Williams
n:Williams;Laurel
org:Faculty of Information, University of Toronto;Adaptive Technology Resource Centre (ATRC)
email;internet:[email protected]
title:Accessibility Software Designer
x-mozilla-html:TRUE
version:2.1
end:vcard
_______________________________________________________
fluid-work mailing list - [email protected]
To unsubscribe, change settings or access archives,
see http://fluidproject.org/mailman/listinfo/fluid-work
