Martin Formanko created MNG-6433:
------------------------------------
Summary: Maven does not authenticate
Key: MNG-6433
URL: https://issues.apache.org/jira/browse/MNG-6433
Project: Maven
Issue Type: Bug
Affects Versions: 3.5.4
Environment: Windows 10, JFrog artifactory
Reporter: Martin Formanko
I have set the username and password in settings.xml (encrypted and also
plain-text the same behaviour). In debug logs I also see the following:
{code:java}
[DEBUG] Using connector BasicRepositoryConnector with priority 0.0 for
http://deheremap6392:8082/artifactory/repo with username=[censored],
password=***
Downloading from repo:
http://[censored]/artifactory/repo/com/[censored].pom{code}
but maven itself does not authenticate, from what I see in network dump:
{code:java}
GET /artifactory/[censored].pom HTTP/1.1
Cache-control: no-cache
Cache-store: no-store
Pragma: no-cache
Expires: 0
Accept-Encoding: gzip
User-Agent: Apache-Maven/3.5.4 (Java 1.8.0_161; Windows 10 10.0)
Host: [censored]
Connection: Keep-Alive
HTTP/1.1 404 Not Found
Server: Artifactory/5.11.1
X-Artifactory-Id: [censored]c:-8000
Content-Type: application/json;charset=ISO-8859-1
Content-Length: 74
Date: Mon, 25 Jun 2018 14:28:17 GMT
{code}
So... then I am getting
{code:java}
[FATAL] Non-resolvable parent POM for [censored]: Could not find artifact{code}
Because Maven is awaiting maybe 407 authentication required or some similar
status code. Is this correct behaviour? Should our artifactory request the
username/password? Because what it does, is that it replies with 404 when
authentication is not done.
My settings.xml are not important I think, because as you can see in the log,
there is BasicConnector which is using already the username/password, so the
settings are correct, but maven simply does not use any credentials at all and
tries to grab artifact directly.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
