You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@sling.apache.org by "Stefan Seifert (JIRA)" <ji...@apache.org> on 2016/06/21 16:52:57 UTC
[jira] [Commented] (SLING-2760) org.apache.sling.auth.openid bundle
has dependencies not available on Maven central
[ https://issues.apache.org/jira/browse/SLING-2760?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15342160#comment-15342160 ]
Stefan Seifert commented on SLING-2760:
---------------------------------------
in rev. 1749573 i removed {{contrib/auth/selector}} from the contrib build, because it depends on {{org.apache.sling.auth.openid}}, and the main contrib jenkins build is currently failing due to this missing dyuproject dependencies not available in maven central.
> org.apache.sling.auth.openid bundle has dependencies not available on Maven central
> -----------------------------------------------------------------------------------
>
> Key: SLING-2760
> URL: https://issues.apache.org/jira/browse/SLING-2760
> Project: Sling
> Issue Type: Bug
> Components: Authentication
> Affects Versions: OpenID Authentication 1.0.2
> Reporter: Robert Munteanu
> Priority: Minor
>
> The org.apache.sling.auth.openid bundle includes the following repository definition in its pom.xml file
> {code} <repositories>
> <repository>
> <releases>
> <enabled>true</enabled>
> </releases>
> <id>dyuproject-repo</id>
> <name>dyuproject-repo</name>
> <url>http://dyuproject.googlecode.com/svn/repos/maven2</url>
> </repository>
> </repositories>
> {code}
> and the following dependencies
> {code}
> <dependency>
> <groupId>com.dyuproject</groupId>
> <artifactId>dyuproject-openid</artifactId>
> <version>1.1.7</version>
> </dependency>
> <dependency>
> <groupId>com.dyuproject</groupId>
> <artifactId>dyuproject-util</artifactId>
> <version>1.1.7</version>
> </dependency>
> <dependency>
> <groupId>com.dyuproject</groupId>
> <artifactId>dyuproject-json</artifactId>
> <version>1.1.7</version>
> </dependency>
> {code}
> Since we sync/upload these artifacts to maven central [1] we should consider following the recommendation of not adding repositories to POMs [2] . There is an open request in the dyuproject tracker [3] to upload the openid artifacts to Maven Central, but it's been there for almost two years, and the project hasn't seen much activity ( no commits since June 2011 ).
> I see two ways around this issue:
> - Use the sonatype service for uploading 3rd party bundles to Maven Central [4]
> - Replace the com.dyuproject dependency with something different
> Thoughts?
> [1]: http://search.maven.org/#search|ga|1|org.apache.sling.auth.openid
> [2]: https://docs.sonatype.org/display/Repository/Sonatype+OSS+Maven+Repository+Usage+Guide#SonatypeOSSMavenRepositoryUsageGuide-6.CentralSyncRequirement
> [3]: http://code.google.com/p/dyuproject/issues/detail?id=32
> [4]: https://docs.sonatype.org/display/Repository/Uploading+3rd-party+Artifacts+to+The+Central+Repository
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)