Maven의 공용설정이 담긴 setting.xml 파일이 있다. 여기에 들어가는 server 섹션에는 배포를 위해서 필요로하는 서버의 인증정보들이 보통 담겨져 있다. 문제는 암호화 되지 않은 단순 텍스트로 저장된다는 것. 보안상 위험을 초래할 수 있는 대표적인 취약점이다. 배포 서버의 계정 비밀번호등이 노출된다는 것은 결코 바람직하지 않다.

이를 위해서 2.1 에서는 엔코딩된 비밀번호를 넣을 수 있는 기능이 추가되었다.

이제는 다음처럼 암호화된 비밀번호를 settings.xml에 담아놓고 사용할 수 있는 기능이 추가되었다.

<server> 
    <id>my.server</id>  
    <username>foo</username>
    <password>{COQLCE6DU6GtcS5P=}</password>
</server>

자세한 내용은 New Feature: Maven Settings Password Encryption에 나와 있다.

문제는 언제 나올지 모르는, 이제 겨우 M2-SNAPSHOT 버전인 2.1에만 적용됐다는 점이다.

Related posts:

  1. Maven 다중 리포지토리와 버전 범위를 사용할 때의 주의점
  2. Nexus Maven Repository 1.0 출시
  3. Maven 3.0과 버전 포맷 문제
  4. Maven POM에 attribute 사용하기 (2)
  5. Maven POM에 attribute 사용하기 (1)
  6. Spring 2.0의 XML확장기능 (1)
  7. Spring 2.0 XML확장기능 (3)
  8. Spring 2.0의 XML확장기능 (2)
  9. 스프링 3.1 (6) web.xml의 활성 프로파일 설정
  10. Spring 3.0 (58) Static Class를 XML없이 빈으로 등록하기
  11. Maven 재도전기 (1)
  12. Maven 의존관계 수렁에 빠지다
  13. Spring 3.0 (34) R-941 스프링의 Maven 지원정책은?
  14. Ruby on Maven
  15. Maven: The Definitive Guide 사라지다

Facebook comments:

to “Maven settings.xml의 비밀번호 암호화”

  1. below youll find the link to some internet sites that we feel you should visit

  2. please check out the web sites we stick to, which includes this one particular, as it represents our picks in the web

  3. coronavirus tennessee
    http://chloroquine-treatmentforcoronavirus.com/# – chloroquine online
    coronavirus 99 ranch irvine
    chloroquine phosphate 250 mg
    – coronavirus 9gag
    coronavirus from what animal

  4. coronavirus 1000 bed hospital
    http://chloroquine-treatmentforcoronavirus.com/# – chloroquine phosphate 250mg
    coronavirus 2020 update
    chloroquine for coronavirus
    – is sars a coronavirus
    coronavirus qingdao

  5. we came across a cool internet site that you simply could possibly delight in. Take a search when you want

  6. although internet websites we backlink to below are considerably not connected to ours, we really feel they may be basically worth a go as a result of, so have a look

  7. the time to read or stop by the material or internet sites we have linked to beneath the

  8. check beneath, are some totally unrelated websites to ours, even so, they are most trustworthy sources that we use

  9. May I just say what a relief to find an individual who actually knows what they’re talking about on the internet. You certainly realize how to bring a problem to light and make it important. A lot more people need to look at this and understand this side of your story. I was surprised that you’re not more popular because you most certainly have the gift.

  10. Spot on with this write-up, I absolutely think this site needs a great deal more attention. I’ll probably be returning to see more, thanks for the information!

  11. Good post. I’m facing some of these issues as well..

  12. I needed to compose you the bit of word to help say thanks the moment again for these pretty techniques you’ve shared at this time. It is so shockingly generous with you to provide easily all a lot of folks would’ve made available as an e-book in order to make some money for their own end, notably seeing that you could possibly have tried it in case you decided. The solutions in addition acted like the fantastic way to recognize that other individuals have the same zeal just as my own to know way more with regards to this problem. I am sure there are lots of more pleasant instances up front for individuals who read carefully your blog post.

  13. we came across a cool site that you might get pleasure from. Take a appear when you want

  14. Your style is unique in comparison to other people I’ve read stuff from. Thanks for posting when you’ve got the opportunity, Guess I will just bookmark this blog.

  15. please stop by the websites we follow, which includes this one, as it represents our picks from the web

  16. You ought to take part in a contest for one of the best blogs on the web. I most certainly will recommend this site!

  17. here are some hyperlinks to web pages that we link to since we believe they’re really worth visiting

  18. Here are a number of the web-sites we recommend for our visitors

  19. Ycirrf bghsidusdyui, [url=http://iatzfauskxqq.com/]iatzfauskxqq[/url], [link=http://lcuzqoyrtean.com/]lcuzqoyrtean[/link], http://vbqmcgntnxvs.com/

  20. that could be the end of this post. Here you will find some web-sites that we believe you will enjoy, just click the hyperlinks over

  21. please visit the web-sites we follow, such as this a single, because it represents our picks from the web

Leave a Reply

(required)

(required)

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

© 2017 Toby's Epril Suffusion theme by Sayontan Sinha