From f2be42ceab9575e14c5413f3f03736fced3324e9 Mon Sep 17 00:00:00 2001 From: Joakim Erdfelt Date: Tue, 7 Nov 2006 18:22:24 +0000 Subject: [PATCH] Updates to the application.xml for security bits. git-svn-id: https://svn.apache.org/repos/asf/maven/archiva/trunk@472189 13f79535-47bb-0310-9956-ffa450edef68 --- archiva-webapp/pom.xml | 11 +- .../resources/META-INF/plexus/application.xml | 157 +++--------------- .../apache/maven/archiva/security.properties | 33 ++++ 3 files changed, 58 insertions(+), 143 deletions(-) create mode 100644 archiva-webapp/src/main/resources/org/apache/maven/archiva/security.properties diff --git a/archiva-webapp/pom.xml b/archiva-webapp/pom.xml index 7103e4654..bac07b40f 100644 --- a/archiva-webapp/pom.xml +++ b/archiva-webapp/pom.xml @@ -58,6 +58,11 @@ plexus-log4j-logging 1.1-alpha-2 + + commons-logging + commons-logging + 1.0.4 + org.apache.maven.wagon wagon-http-lightweight @@ -133,6 +138,7 @@ org.codehaus.plexus.security plexus-security-ui-web war + runtime org.codehaus.plexus.security @@ -190,11 +196,6 @@ plexus-utils 1.2 - - org.codehaus.plexus - plexus-mail-sender-javamail - 1.0-alpha-3 - org.apache.derby derby diff --git a/archiva-webapp/src/main/resources/META-INF/plexus/application.xml b/archiva-webapp/src/main/resources/META-INF/plexus/application.xml index d19eda1c2..a8da86775 100644 --- a/archiva-webapp/src/main/resources/META-INF/plexus/application.xml +++ b/archiva-webapp/src/main/resources/META-INF/plexus/application.xml @@ -17,6 +17,19 @@ + + + org.codehaus.plexus.security.configuration.UserConfiguration + org.codehaus.plexus.security.configuration.UserConfiguration + + + ${user.home}/.m2/security.properties + ${user.home}/.m2/archiva.properties + /org/apache/maven/archiva/security.properties + + + + @@ -141,29 +154,6 @@ - - org.codehaus.plexus.security.system.ApplicationDetails - org.codehaus.plexus.security.system.DefaultApplicationDetails - DefaultApplicationDetails - - Unconfigured Application Name - - http://localhost:9090 - EEE, d MMM yyyy HH:mm:ss Z - - - - - org.codehaus.plexus.security.system.EmailSettings - org.codehaus.plexus.security.system.DefaultEmailSettings - DefaultEmailSettings - - /feedback.action - security@unconfigured.com - Unconfigured Username - - - org.codehaus.plexus.security.system.SecuritySystem org.codehaus.plexus.security.system.DefaultSecuritySystem @@ -194,16 +184,9 @@ default policy - - org.codehaus.plexus.security.system.ApplicationDetails - applicationDetails - - - org.codehaus.plexus.security.system.EmailSettings - emailSettings - + org.codehaus.plexus.security.authorization.Authorizer rbac @@ -224,69 +207,17 @@ - - org.codehaus.plexus.security.policy.PasswordRule - character-length - org.codehaus.plexus.security.policy.rules.CharacterLengthPasswordRule - Basic Password Rule, Checks for non-empty passwords that have between {@link - #setMinimumCharacters(int)} and {@link #setMaximumCharacters(int)} characters in length. - - - true - 1 - 8 - - - - org.codehaus.plexus.security.policy.PasswordRule - reuse - org.codehaus.plexus.security.policy.rules.ReusePasswordRule - Password Rule, Checks supplied password found at {@link User#getPassword()} against the {@link - User#getPreviousEncodedPasswords()} to ensure that a password is not reused. - - - true - - - - org.codehaus.plexus.security.policy.PasswordRule - numerical-count - org.codehaus.plexus.security.policy.rules.NumericalPasswordRule - Basic Password Rule, Checks for non-empty passwords that have at least {@link #setMinimumCount(int)} - of numerical characters contained within. - - - true - 1 - - - - org.codehaus.plexus.security.policy.PasswordRule - must-have - org.codehaus.plexus.security.policy.rules.MustHavePasswordRule - Basic Password Rule, Checks for non-empty Passwords in non guest users. - - true - - - - org.codehaus.plexus.security.policy.PasswordRule - alpha-count - org.codehaus.plexus.security.policy.rules.AlphaPasswordRule - Basic Password Rule, Checks for non-empty passwords that have at least {@link #setMinimumCount(int)} - of alpha characters contained within. - - - true - 1 - - + org.codehaus.plexus.security.policy.UserSecurityPolicy default org.codehaus.plexus.security.policy.DefaultUserSecurityPolicy User Security Policy. + + org.codehaus.plexus.security.configuration.UserConfiguration + config + org.codehaus.plexus.security.policy.PasswordEncoder sha256 @@ -309,57 +240,7 @@ singleSignOnSettings - - 6 - 3 - 90 - - - org.codehaus.plexus.security.policy.RememberMeSettings - org.codehaus.plexus.security.policy.DefaultRememberMeSettings - DefaultRememberMeSettings - - true - 525600 - - - - org.codehaus.plexus.security.policy.SingleSignOnSettings - org.codehaus.plexus.security.policy.DefaultSingleSignOnSettings - DefaultSingleSignOnSettings - - true - 30 - - - - org.codehaus.plexus.security.policy.UserValidationSettings - org.codehaus.plexus.security.policy.DefaultUserValidationSettings - DefaultUserValidationSettings - - true - - 2880 - /security/login!login.action - Unconfigured Subject Line - - - - org.codehaus.plexus.mailsender.MailSender - org.codehaus.plexus.mailsender.javamail.JavamailMailSender - - localhost - 25 - com.sun.net.ssl.internal.ssl.Provider - - - - org.codehaus.plexus.jdo.JdoFactory diff --git a/archiva-webapp/src/main/resources/org/apache/maven/archiva/security.properties b/archiva-webapp/src/main/resources/org/apache/maven/archiva/security.properties new file mode 100644 index 000000000..ff157a8ed --- /dev/null +++ b/archiva-webapp/src/main/resources/org/apache/maven/archiva/security.properties @@ -0,0 +1,33 @@ +# +# Copyright 2006 The Apache Software Foundation +# +# Licensed under the Apache License, Version 2.0 (the "License"); +# you may not use this file except in compliance with the License. +# You may obtain a copy of the License at +# +# http://www.apache.org/licenses/LICENSE-2.0 +# +# Unless required by applicable law or agreed to in writing, software +# distributed under the License is distributed on an "AS IS" BASIS, +# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +# See the License for the specific language governing permissions and +# limitations under the License. +# + +# -------------------------------------------------------------------- +# Application Configuration + +application.name=Maven Archiva +# NOTE: do not include trailing slash on application.url +application.url=http://localhost +application.timestamp=EEE, d MMM yyyy HH:mm:ss Z + +# -------------------------------------------------------------------- +# Email Settings + +# All emails sent by the system will be from the following user name (used in conjunction with address) +email.from.name=Unconfigured Archiva Admin Username + +# The subject line for the email message. +email.validation.subject=Welcome to Maven Archiva + -- 2.39.5