[jira] [Updated] (MNG-8416) Regression: settings-security.xml doesn't trim master password

Tamas Cservenak (Jira) Mon, 09 Dec 2024 12:41:55 -0800


     [ 
https://issues.apache.org/jira/browse/MNG-8416?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Tamas Cservenak updated MNG-8416:
---------------------------------
    Fix Version/s: 4.0.0-rc-2

> Regression: settings-security.xml doesn't trim master password
> --------------------------------------------------------------
>
>                 Key: MNG-8416
>                 URL: https://issues.apache.org/jira/browse/MNG-8416
>             Project: Maven
>          Issue Type: Bug
>    Affects Versions: 4.0.0-beta-5, 4.0.0-rc-1
>            Reporter: Lenny Primak
>            Priority: Critical
>             Fix For: 4.0.0-rc-2
>
>
> In earlier versions, the following syntax would work in settings-security.xml:
> {code:java}
> <settingsSecurity>
>   <master>
>     {XXXXX}
>   </master>
> </settingsSecurity> {code}
> However, in the new security mechanism, whitespace around the curly braces 
> isn't trimmed, resulting in all encrypted passwords failing to decrypt



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Updated] (MNG-8416) Regression: settings-security.xml doesn't trim master password

Reply via email to