[
https://issues.apache.org/jira/browse/MCHANGES-395?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16605877#comment-16605877
]
Stefan Wendelmann commented on MCHANGES-395:
--------------------------------------------
Maybe i understand smth wrong.
I dont wanna store my Jira password in my pom.xml
[https://maven.apache.org/plugins/maven-changes-plugin/jira-report-mojo.html#webPassword]
How can i tell the plugin to look for my password in the settings.xml?
How / under what XML element do i store the password in the settings.xml ? I
know how passwords can be generated.
thanks in advance!
> JIRA password security
> ----------------------
>
> Key: MCHANGES-395
> URL: https://issues.apache.org/jira/browse/MCHANGES-395
> Project: Maven Changes Plugin
> Issue Type: Improvement
> Components: jira
> Affects Versions: 2.12.1
> Reporter: Stefan Wendelmann
> Priority: Major
>
> May it be possible to encrypt the Jira password or to ask for it from the
> console?
>
> AFAIK a there is no option in Jira to create a "special" User out of the
> licence for REST Calls so we have to use a real persons Account with his/her
> original password.
> And is the pom.xml with password saved into the jar in META-INF ? So anyone
> with winrar i.e. can read your Jira password in plaintext ?
>
> thanks in advance!
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
