[ http://jira.codehaus.org/browse/MJAR-33?page=all ]
Mike Perham closed MJAR-33:
---------------------------
Assign To: Mike Perham
Resolution: Fixed
Fix Version: 2.1
Password is now replaced with "******" before logging.
> Jarsigner shows password on command line
> ----------------------------------------
>
> Key: MJAR-33
> URL: http://jira.codehaus.org/browse/MJAR-33
> Project: Maven 2.x Jar Plugin
> Type: Bug
> Versions: 2.1
> Reporter: Hes Siemelink
> Assignee: Mike Perham
> Fix For: 2.1
>
>
> When I sign a jar I see the password of the keystore in the debug output:
> [debug] jarsigner executable=[C:\Program
> Files\Java\jdk1.5.0_05\jre\..\bin\jarsigner.exe]
> [debug] Executing: "C:\Program
> Files\Java\jdk1.5.0_05\jre\..\bin\jarsigner.exe" -keystore my-keystore.pfx
> -storepas
> s SECRET_PASSPHRASE!! -storetype PKCS12
> E:\Temp\jbossall-client-jboss-4.0.3.jar mykey
> It would be nice if this could be masked.
> I get this using the webstart plugin.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see:
http://www.atlassian.com/software/jira
