Disable Maven Password Encryption for AWS CodeArtifact Integration Inside of Intellij

Question

We are attempting to integrate Maven with AWS' CodeArtifact.

I believe that we have properly followed the "Use CodeArtifact with mvn" directions.

However, when I attempt to perform a mvn clean compile from inside of Intellij we get the following exception:

[DEBUG] Failed to decrypt password for server codeartifact: org.sonatype.plexus.components.sec.dispatcher.SecDispatcherException: java.io.FileNotFoundException: /Users/hooknc/.m2/settings-security.xml (No such file or directory)
org.sonatype.plexus.components.sec.dispatcher.SecDispatcherException: org.sonatype.plexus.components.sec.dispatcher.SecDispatcherException: java.io.FileNotFoundException: /Users/nhook/.m2/settings-security.xml (No such file or directory)
    at org.sonatype.plexus.components.sec.dispatcher.DefaultSecDispatcher.decrypt (DefaultSecDispatcher.java:121)
    at org.apache.maven.settings.crypto.DefaultSettingsDecrypter.decrypt (DefaultSettingsDecrypter.java:114)
    at org.apache.maven.settings.crypto.DefaultSettingsDecrypter.decrypt (DefaultSettingsDecrypter.java:70)
    at org.apache.maven.internal.aether.DefaultRepositorySystemSessionFactory.newRepositorySession (DefaultRepositorySystemSessionFactory.java:167)
    at org.apache.maven.DefaultMaven.newRepositorySession (DefaultMaven.java:350)
    at org.apache.maven.DefaultMaven.doExecute (DefaultMaven.java:185)
    at org.apache.maven.DefaultMaven.execute (DefaultMaven.java:105)
    at org.apache.maven.cli.MavenCli.execute (MavenCli.java:957)
    at org.apache.maven.cli.MavenCli.doMain (MavenCli.java:289)
    at org.apache.maven.cli.MavenCli.main (MavenCli.java:193)
    at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:62)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke (Method.java:498)
    at org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced (Launcher.java:282)
    at org.codehaus.plexus.classworlds.launcher.Launcher.launch (Launcher.java:225)
    at org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode (Launcher.java:406)
    at org.codehaus.plexus.classworlds.launcher.Launcher.main (Launcher.java:347)
    at org.codehaus.classworlds.Launcher.main (Launcher.java:47)
Caused by: org.sonatype.plexus.components.sec.dispatcher.SecDispatcherException: java.io.FileNotFoundException: /Users/hooknc/.m2/settings-security.xml (No such file or directory)
    at org.sonatype.plexus.components.sec.dispatcher.SecUtil.read (SecUtil.java:69)
    at org.sonatype.plexus.components.sec.dispatcher.DefaultSecDispatcher.getSec (DefaultSecDispatcher.java:206)
    at org.sonatype.plexus.components.sec.dispatcher.DefaultSecDispatcher.decrypt (DefaultSecDispatcher.java:90)
    at org.apache.maven.settings.crypto.DefaultSettingsDecrypter.decrypt (DefaultSettingsDecrypter.java:114)
    at org.apache.maven.settings.crypto.DefaultSettingsDecrypter.decrypt (DefaultSettingsDecrypter.java:70)
    at org.apache.maven.internal.aether.DefaultRepositorySystemSessionFactory.newRepositorySession (DefaultRepositorySystemSessionFactory.java:167)
    at org.apache.maven.DefaultMaven.newRepositorySession (DefaultMaven.java:350)
    at org.apache.maven.DefaultMaven.doExecute (DefaultMaven.java:185)
    at org.apache.maven.DefaultMaven.execute (DefaultMaven.java:105)
    at org.apache.maven.cli.MavenCli.execute (MavenCli.java:957)
    at org.apache.maven.cli.MavenCli.doMain (MavenCli.java:289)
    at org.apache.maven.cli.MavenCli.main (MavenCli.java:193)
    at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:62)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke (Method.java:498)
    at org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced (Launcher.java:282)
    at org.codehaus.plexus.classworlds.launcher.Launcher.launch (Launcher.java:225)
    at org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode (Launcher.java:406)
    at org.codehaus.plexus.classworlds.launcher.Launcher.main (Launcher.java:347)
    at org.codehaus.classworlds.Launcher.main (Launcher.java:47)
Caused by: java.io.FileNotFoundException: /Users/hooknc/.m2/settings-security.xml (No such file or directory)
    at java.io.FileInputStream.open0 (Native Method)
    at java.io.FileInputStream.open (FileInputStream.java:195)
    at java.io.FileInputStream.<init> (FileInputStream.java:138)
    at org.sonatype.plexus.components.sec.dispatcher.SecUtil.toStream (SecUtil.java:100)
    at org.sonatype.plexus.components.sec.dispatcher.SecUtil.read (SecUtil.java:56)
    at org.sonatype.plexus.components.sec.dispatcher.DefaultSecDispatcher.getSec (DefaultSecDispatcher.java:206)
    at org.sonatype.plexus.components.sec.dispatcher.DefaultSecDispatcher.decrypt (DefaultSecDispatcher.java:90)
    at org.apache.maven.settings.crypto.DefaultSettingsDecrypter.decrypt (DefaultSettingsDecrypter.java:114)
    at org.apache.maven.settings.crypto.DefaultSettingsDecrypter.decrypt (DefaultSettingsDecrypter.java:70)
    at org.apache.maven.internal.aether.DefaultRepositorySystemSessionFactory.newRepositorySession (DefaultRepositorySystemSessionFactory.java:167)
    at org.apache.maven.DefaultMaven.newRepositorySession (DefaultMaven.java:350)
    at org.apache.maven.DefaultMaven.doExecute (DefaultMaven.java:185)
    at org.apache.maven.DefaultMaven.execute (DefaultMaven.java:105)
    at org.apache.maven.cli.MavenCli.execute (MavenCli.java:957)
    at org.apache.maven.cli.MavenCli.doMain (MavenCli.java:289)
    at org.apache.maven.cli.MavenCli.main (MavenCli.java:193)
    at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke (NativeMethodAccessorImpl.java:62)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke (DelegatingMethodAccessorImpl.java:43)
    at java.lang.reflect.Method.invoke (Method.java:498)
    at org.codehaus.plexus.classworlds.launcher.Launcher.launchEnhanced (Launcher.java:282)
    at org.codehaus.plexus.classworlds.launcher.Launcher.launch (Launcher.java:225)
    at org.codehaus.plexus.classworlds.launcher.Launcher.mainWithExitCode (Launcher.java:406)
    at org.codehaus.plexus.classworlds.launcher.Launcher.main (Launcher.java:347)
    at org.codehaus.classworlds.Launcher.main (Launcher.java:47)

With the final cause being Caused by: java.io.FileNotFoundException: /Users/hooknc/.m2/settings-security.xml (No such file or directory)

Here is the contents of a settings.xml file that is stored in ~/.m2/:

<settings xmlns="http://maven.apache.org/SETTINGS/1.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
      xsi:schemaLocation="http://maven.apache.org/SETTINGS/1.0.0 https://maven.apache.org/xsd/settings-1.0.0.xsd">
    <localRepository/>
    <interactiveMode/>
    <offline/>
    <pluginGroups/>
    <servers>
      <server>
        <id>codeartifact</id>
        <username>aws</username>
        <password>${env.CODEARTIFACT_AUTH_TOKEN}</password>
      </server>
    </servers>
    <mirrors>
      <mirror>
        <id>codeartifact</id>
        <name>domain--repository</name>
        <url>https://domain-<secret_number>.d.codeartifact.us-west-2.amazonaws.com/maven/repository/</url>
        <mirrorOf>*</mirrorOf>
      </mirror>
    </mirrors>
    <proxies/>
    <profiles>
      <profile>
        <id>codeartifact</id>
        <activation>
          <activeByDefault>true</activeByDefault>
        </activation>
        <repositories>
          <repository>
            <id>codeartifact</id>
            <url>https://domain-<secret_number>.d.codeartifact.us-west-2.amazonaws.com/maven/repository/</url>
          </repository>
        </repositories>
      </profile>
    </profiles>
    <activeProfiles/>
</settings>

We then run the AWS command to get a token to access CodeArtifact:

export CODEARTIFACT_AUTH_TOKEN=`aws codeartifact get-authorization-token --profile hooknc --domain domain --domain-owner <secret_number> --query authorizationToken --output text`

Which should set the environment variable CODEARTIFACT_AUTH_TOKEN, which should get picked up by the settings.xml value ${env.CODEARTIFACT_AUTH_TOKEN}

So, my question is, how do I disable the usage of Maven's Password Encryption while using Intillij?

Thank you for your time.

Answer 1

@hooknc in your question, you correctly use backticks:

export CODEARTIFACT_AUTH_TOKEN=`aws codeartifact get-authorization-token ...`

but in your comment you're using single quotes:

export CODEARTIFACT_AUTH_TOKEN='aws codeartifact get-authorization-token ...'

my guess is that the former is a copy-paste from the docs to SO but the latter was erroneously copied by hand into your editor.

I suggest replacing the backticks with the modern notation of "$(...)" notation to reduce confusion (plus it supports nesting):

export CODEARTIFACT_AUTH_TOKEN="$(aws codeartifact get-authorization-token ...)"

Answer 2

The problem here it's a know bug on IntelliJ IDEA that Maven plugin cannot resolve environment variables.

Try to export the token from the command line and run "mvn clean compile" at this terminal, outside IntelliJ and it works.

Know bugs:

https://youtrack.jetbrains.com/issue/IDEA-205484/IDE-does-not-evaluate-environment-variables-from-Maven-user-settings-file

https://youtrack.jetbrains.com/issue/IDEA-96358