[jira] [Commented] (MGPG-137) Un-deprecate passphraseServerId

Michael Osipov (Jira) Mon, 23 Sep 2024 10:41:17 -0700


    [ 
https://issues.apache.org/jira/browse/MGPG-137?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17883977#comment-17883977
 ]


Michael Osipov commented on MGPG-137:
-------------------------------------

[~cstamas], we should deprecate Plexus Cipher or reduce the amount of feature 
in the midrun.

> Un-deprecate passphraseServerId
> -------------------------------
>
>                 Key: MGPG-137
>                 URL: https://issues.apache.org/jira/browse/MGPG-137
>             Project: Maven GPG Plugin
>          Issue Type: Bug
>    Affects Versions: 3.2.5
>            Reporter: Lenny Primak
>            Priority: Major
>
> IMHO this parameter has been deprecated in error.
> It is used to referenced the "server" field in settings.xml, where 
> passphrases are stored in an encrypted fashion. This is actually safer than 
> setting clear-text passwords in environment variables in practice.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (MGPG-137) Un-deprecate passphraseServerId

Reply via email to