[
https://issues.apache.org/jira/browse/MNG-8372?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17897181#comment-17897181
]
Tamas Cservenak commented on MNG-8372:
--------------------------------------
What I forgot to mention:
* maven4 warns that you use (busted) maven3 encryption, hence the warning
* maven4 is backward compatible to maven3 encryption, but maven3 will not be
able to utilize maven4 encryption.
> [WARNING] Legacy/insecurely encrypted password detected for server - what
> can/shall I do about it?
> --------------------------------------------------------------------------------------------------
>
> Key: MNG-8372
> URL: https://issues.apache.org/jira/browse/MNG-8372
> Project: Maven
> Issue Type: Bug
> Affects Versions: 4.0.0-beta-5
> Reporter: Philipp Ottlinger
> Priority: Major
>
> I ran into above error message and asked myself what to do ....
> the error message does not tell me anything.
> https://maven.apache.org/guides/mini/guide-encryption.html
> is the way I encrypted my password.
> Can someone clarify the implication of this error message? Is there a page
> that tells me how to properly/safely configure my credentials. To my mind it
> would be helpful to have a before/after example to explicitly show where the
> problem is and how to circumvent it.
> Thanks
> $ ./mvnw
> Apache Maven 4.0.0-beta-5 (6e78fcf6f5e76422c0eb358cd11f0c231ecafbad)
> Maven home: /home/me/.m2/wrapper/dists/apache-maven-4.0.0-beta-5/4431294f
> Java version: 21.0.5, vendor: Oracle Corporation, runtime: /home/me/jdk-21.0.5
> Default locale: de_DE, platform encoding: UTF-8
> OS name: "linux", version: "5.15.0-125-generic", arch: "amd64", family: "unix"
> [WARNING] Legacy/insecurely encrypted password detected for server
> srv.snapshots.https
> [WARNING] Legacy/insecurely encrypted password detected for server
> srv.releases.https
> [INFO] Scanning for projects...
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
