You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@maven.apache.org by swapnil barwat <sw...@gmail.com> on 2016/08/09 17:26:39 UTC
Fwd: Artifactory pro abstract credentials in settings.xml
Hi,
I am using artifactory pro and integrating with Jenkins. We are also using
artifactory maven plugin to publish artifacts. For this plugin
configuration regarding artifactory (username, password, context url) needs
to go in project pom.xml. Which gives our security teams creeps (since it
has plain text password).
Before this we were using default maven deploy plugin which had all of this
information in settings.xml.
So my question is - is there a way we can leverage username/password
(server stanza) from settings.xml and pass it to artifactory maven plugin
to read from?
Any help would be highly appreciated.
--
regards..
Swapnil Barwat
--
regards..
Swapnil Barwat
RE: Artifactory pro abstract credentials in settings.xml
Posted by co...@wellsfargo.com.
You don't need to use the Artifactory pro plugin to publish to Artifactory from Maven. The maven-release-plugin should provide all the functionality you need.
Cody Fyler
CLT – APMS
G=Lending Grid Builds
(515) – 441 - 0814
-----Original Message-----
From: swapnil barwat [mailto:swapnilbarwat@gmail.com]
Sent: Tuesday, August 09, 2016 12:27 PM
To: users@maven.apache.org
Subject: Fwd: Artifactory pro abstract credentials in settings.xml
Hi,
I am using artifactory pro and integrating with Jenkins. We are also using artifactory maven plugin to publish artifacts. For this plugin configuration regarding artifactory (username, password, context url) needs to go in project pom.xml. Which gives our security teams creeps (since it has plain text password).
Before this we were using default maven deploy plugin which had all of this information in settings.xml.
So my question is - is there a way we can leverage username/password (server stanza) from settings.xml and pass it to artifactory maven plugin to read from?
Any help would be highly appreciated.
--
regards..
Swapnil Barwat
--
regards..
Swapnil Barwat
Re: Artifactory pro abstract credentials in settings.xml
Posted by swapnil barwat <sw...@gmail.com>.
Thanks guys for the reply. I was able to solve using environment variable.
I set two environment variable and use it in pom.xml. Artifactory maven
plugin by default doesn't support read credentials from settings.xml.
I appreciate the help!
On Tue, Aug 9, 2016 at 2:36 PM, Martin Gainty <mg...@hotmail.com> wrote:
> think of JFROG key/password as a 2 door authentication process(master)key
> will open the first doorsupply password generated by master key will open
> second door
> the location of artifactory.security.master.key must be known a-priori by
> setting property e.g.artifactory.security.master.key=<other
> location>/artifactory.key
> https://www.jfrog.com/confluence/display/RTF/Master+Key+Encryption#
> MasterKeyEncryption-EncryptingPasswords
> since Jfrog has its own repository you can disable default central and
> snapshot repositories from mavenhttps://www.jfrog.com/
> confluence/display/RTF20/Configuring+Artifacts+Resolution
> you can now have direct access to Artifactory Repo by
> supplying<host>:<port>/artifactory/repo
> *Cody's link was correct BTW*Martin
> > From: swapnilbarwat@gmail.com
> > Date: Tue, 9 Aug 2016 13:51:40 -0400
> > Subject: Re: Artifactory pro abstract credentials in settings.xml
> > To: users@maven.apache.org
> >
> > Thanks Cody. May be I haven't explained well. My problem is not an
> > encryption. What I am looking for is the way where you can put password
> > (could be in plain text) in settings.xml and leverage it in artifactory
> > maven plugin. If you look at the documentation -
> > https://www.jfrog.com/confluence/display/RTF/Maven+Artifactory+Plugin it
> > needs password to put into <publisher> </publisher> block. I want to use
> > that from settings.xml (from <server> </server> block).
> >
> > I again appreciate the reply.
> >
> > On Tue, Aug 9, 2016 at 1:37 PM, <co...@wellsfargo.com> wrote:
> >
> > > I googled it for you.
> > >
> > > https://maven.apache.org/guides/mini/guide-encryption.html
> > >
> > >
> > > Cody Fyler
> > > CLT – APMS
> > > G=Lending Grid Builds
> > > (515) – 441 - 0814
> > >
> > > -----Original Message-----
> > > From: swapnil barwat [mailto:swapnilbarwat@gmail.com]
> > > Sent: Tuesday, August 09, 2016 12:27 PM
> > > To: users@maven.apache.org
> > > Subject: Fwd: Artifactory pro abstract credentials in settings.xml
> > >
> > > Hi,
> > >
> > > I am using artifactory pro and integrating with Jenkins. We are also
> using
> > > artifactory maven plugin to publish artifacts. For this plugin
> > > configuration regarding artifactory (username, password, context url)
> needs
> > > to go in project pom.xml. Which gives our security teams creeps (since
> it
> > > has plain text password).
> > > Before this we were using default maven deploy plugin which had all of
> > > this information in settings.xml.
> > > So my question is - is there a way we can leverage username/password
> > > (server stanza) from settings.xml and pass it to artifactory maven
> plugin
> > > to read from?
> > >
> > > Any help would be highly appreciated.
> > >
> > > --
> > > regards..
> > > Swapnil Barwat
> > >
> > >
> > >
> > > --
> > > regards..
> > > Swapnil Barwat
> > >
> >
> >
> >
> > --
> > regards..
> > Swapnil Barwat
>
>
--
regards..
Swapnil Barwat
RE: Artifactory pro abstract credentials in settings.xml
Posted by Martin Gainty <mg...@hotmail.com>.
think of JFROG key/password as a 2 door authentication process(master)key will open the first doorsupply password generated by master key will open second door
the location of artifactory.security.master.key must be known a-priori by setting property e.g.artifactory.security.master.key=<other location>/artifactory.key
https://www.jfrog.com/confluence/display/RTF/Master+Key+Encryption#MasterKeyEncryption-EncryptingPasswords
since Jfrog has its own repository you can disable default central and snapshot repositories from mavenhttps://www.jfrog.com/confluence/display/RTF20/Configuring+Artifacts+Resolution
you can now have direct access to Artifactory Repo by supplying<host>:<port>/artifactory/repo
*Cody's link was correct BTW*Martin
> From: swapnilbarwat@gmail.com
> Date: Tue, 9 Aug 2016 13:51:40 -0400
> Subject: Re: Artifactory pro abstract credentials in settings.xml
> To: users@maven.apache.org
>
> Thanks Cody. May be I haven't explained well. My problem is not an
> encryption. What I am looking for is the way where you can put password
> (could be in plain text) in settings.xml and leverage it in artifactory
> maven plugin. If you look at the documentation -
> https://www.jfrog.com/confluence/display/RTF/Maven+Artifactory+Plugin it
> needs password to put into <publisher> </publisher> block. I want to use
> that from settings.xml (from <server> </server> block).
>
> I again appreciate the reply.
>
> On Tue, Aug 9, 2016 at 1:37 PM, <co...@wellsfargo.com> wrote:
>
> > I googled it for you.
> >
> > https://maven.apache.org/guides/mini/guide-encryption.html
> >
> >
> > Cody Fyler
> > CLT – APMS
> > G=Lending Grid Builds
> > (515) – 441 - 0814
> >
> > -----Original Message-----
> > From: swapnil barwat [mailto:swapnilbarwat@gmail.com]
> > Sent: Tuesday, August 09, 2016 12:27 PM
> > To: users@maven.apache.org
> > Subject: Fwd: Artifactory pro abstract credentials in settings.xml
> >
> > Hi,
> >
> > I am using artifactory pro and integrating with Jenkins. We are also using
> > artifactory maven plugin to publish artifacts. For this plugin
> > configuration regarding artifactory (username, password, context url) needs
> > to go in project pom.xml. Which gives our security teams creeps (since it
> > has plain text password).
> > Before this we were using default maven deploy plugin which had all of
> > this information in settings.xml.
> > So my question is - is there a way we can leverage username/password
> > (server stanza) from settings.xml and pass it to artifactory maven plugin
> > to read from?
> >
> > Any help would be highly appreciated.
> >
> > --
> > regards..
> > Swapnil Barwat
> >
> >
> >
> > --
> > regards..
> > Swapnil Barwat
> >
>
>
>
> --
> regards..
> Swapnil Barwat
Re: Artifactory pro abstract credentials in settings.xml
Posted by swapnil barwat <sw...@gmail.com>.
Thanks Cody. May be I haven't explained well. My problem is not an
encryption. What I am looking for is the way where you can put password
(could be in plain text) in settings.xml and leverage it in artifactory
maven plugin. If you look at the documentation -
https://www.jfrog.com/confluence/display/RTF/Maven+Artifactory+Plugin it
needs password to put into <publisher> </publisher> block. I want to use
that from settings.xml (from <server> </server> block).
I again appreciate the reply.
On Tue, Aug 9, 2016 at 1:37 PM, <co...@wellsfargo.com> wrote:
> I googled it for you.
>
> https://maven.apache.org/guides/mini/guide-encryption.html
>
>
> Cody Fyler
> CLT – APMS
> G=Lending Grid Builds
> (515) – 441 - 0814
>
> -----Original Message-----
> From: swapnil barwat [mailto:swapnilbarwat@gmail.com]
> Sent: Tuesday, August 09, 2016 12:27 PM
> To: users@maven.apache.org
> Subject: Fwd: Artifactory pro abstract credentials in settings.xml
>
> Hi,
>
> I am using artifactory pro and integrating with Jenkins. We are also using
> artifactory maven plugin to publish artifacts. For this plugin
> configuration regarding artifactory (username, password, context url) needs
> to go in project pom.xml. Which gives our security teams creeps (since it
> has plain text password).
> Before this we were using default maven deploy plugin which had all of
> this information in settings.xml.
> So my question is - is there a way we can leverage username/password
> (server stanza) from settings.xml and pass it to artifactory maven plugin
> to read from?
>
> Any help would be highly appreciated.
>
> --
> regards..
> Swapnil Barwat
>
>
>
> --
> regards..
> Swapnil Barwat
>
--
regards..
Swapnil Barwat
RE: Artifactory pro abstract credentials in settings.xml
Posted by co...@wellsfargo.com.
I googled it for you.
https://maven.apache.org/guides/mini/guide-encryption.html
Cody Fyler
CLT – APMS
G=Lending Grid Builds
(515) – 441 - 0814
-----Original Message-----
From: swapnil barwat [mailto:swapnilbarwat@gmail.com]
Sent: Tuesday, August 09, 2016 12:27 PM
To: users@maven.apache.org
Subject: Fwd: Artifactory pro abstract credentials in settings.xml
Hi,
I am using artifactory pro and integrating with Jenkins. We are also using artifactory maven plugin to publish artifacts. For this plugin configuration regarding artifactory (username, password, context url) needs to go in project pom.xml. Which gives our security teams creeps (since it has plain text password).
Before this we were using default maven deploy plugin which had all of this information in settings.xml.
So my question is - is there a way we can leverage username/password (server stanza) from settings.xml and pass it to artifactory maven plugin to read from?
Any help would be highly appreciated.
--
regards..
Swapnil Barwat
--
regards..
Swapnil Barwat