Gmaven + Jasypt + BouncyCastle to encrypt / decrypt properties?
30 views
Skip to first unread message
James Collings
Oct 11, 2013, 7:32:35 PM10/11/13
to gmave...@googlegroups.com
Pursuant to this question on Stack Overflow:
http://stackoverflow.com/questions/19325332/how-to-get-gmaven-jasypt-bouncycastle-to-decrypt-properties
One problem with Maven that GMaven can solve is Maven's poor encryption support. In my case, I need to encrypt some values into properties in settings.xml for later use and then decrypt them when I want to use them. These are handed off to another script so I cannot use maven's <server> functionality as it only decrypts when handed off to a know server type. Problem is that I can't work out what the proper settings should be in java.policy / java.security to get the script working because I don't know where the problem is. I'll take any clue I can get. I'm sure that others would be interested in having some additional strong encryption options available.
Jim C.
http://stackoverflow.com/questions/19325332/how-to-get-gmaven-jasypt-bouncycastle-to-decrypt-properties
One problem with Maven that GMaven can solve is Maven's poor encryption support. In my case, I need to encrypt some values into properties in settings.xml for later use and then decrypt them when I want to use them. These are handed off to another script so I cannot use maven's <server> functionality as it only decrypts when handed off to a know server type. Problem is that I can't work out what the proper settings should be in java.policy / java.security to get the script working because I don't know where the problem is. I'll take any clue I can get. I'm sure that others would be interested in having some additional strong encryption options available.
Jim C.
Jason Dillon
Oct 12, 2013, 1:16:45 PM10/12/13
to gmave...@googlegroups.com, James Collings
What policy settings are you trying to apply?
--jason
--
You received this message because you are subscribed to the Google Groups "gmaven-user" group.
To unsubscribe from this group and stop receiving emails from it, send an email to gmaven-user...@googlegroups.com.
For more options, visit https://groups.google.com/groups/opt_out.
James Collings
Oct 12, 2013, 6:00:54 PM10/12/13
to gmave...@googlegroups.com
I was trying to give global permissions to maven, Groovy and Java in order to narrow down where the problem was. I figured then I could tighten em back down to just those required. What ever it is, it must pertain to the "Strong Encryption" stuff. It worked fine before I added BouncyCastle and tried to use it. Unfortunately, I don't think we can back down to the lesser encryption. IMHO I don't think it wise to store configuration or creds in your build. It should be maintained separately, perhaps as a different build, by CM.
planet57
Oct 15, 2013, 5:41:53 PM10/15/13
to gmave...@googlegroups.com, James Collings
Sorry, but when it comes to java security policy stuff I'm a bit less clueful than I'd like. The only thing I can think of is too look to see what the code-source is, which I believe pays part in how you identify what to apply policy too:
--jason
Reply all
Reply to author
Forward
0 new messages