Chapter 11 - Public Maven Repos? #62
Comments
|
Another interesting and valid approach, thank you. The two aren't mutually-exclusive, and each have their own benefits and Nonetheless, I agree that yours is the preferable approach if a private (You earned yourself an Arquillian T-Shirt) |
ghost
assigned 
|
I can back up that claim. Not uncommon that central is even blocked in firewalls. |
|
Yep, I've heard of people blocking the external repos from developer's workstations. Depends on how well the company understands maven and decides to block it. Right now, we're not blocking access to the repos (simply because searching in that repo is easier than searching through the corp one). We do have a forced override in our maven settings that forces all traffic in to our artifactory instance, and created a special "public repository" that aggregates all the good stuff together (filters things out like beta's and external snapshots). When implemented properly, the two are mutually exclusive. No one, not even the build server, would have access to that extra repository if mirrorOf is populated (which it typically is). I see many instances where developers are using the repository, and may not even be aware of it. I definitely wouldn't remove what you have in there, but a note makes the most sense. (can one win one t-shirt per issue? I want to be able to outfit myself for a week in arquillian) |
|
My mutually-exclusive comment was in reference to the necessity for both |
|
I see, you were playing loose and fast with mutually exclusive. If I had to guess, 50% of developers will simply take the EAP maven repo and unzip it into ~/.m2/repository for prototyping. 40% of developers will ignore it and use the default maven artifacts (since the EAP bundle isn't publicly available and carries with it an LGPL v2.1 license; and you may not want to be tied to a redhat branded JAR file) |
|
Oh no, a large majority absolutely don't install the EAP repo at all, Fast and loose? Surely we've determined that both approaches require
|
Like most enterprise developers, I have a global maven repo available at work which we mount all of our dependencies on. This includes the EAP binaries and the repo that is provided (which is just uploaded as a zip to our Artifactory instance). So easy a caveman could do it.
With public tools like bintray from jfrog, would it be useful to talk about how to use those to manage your repositories? It seems like overkill needing to configure Jenkins on your cloudbees instance to point to this directory. Plus this sets some bad precendence that you should manually upload the repo to your build machine. Most cases it should be uploaded to your corporate repo host for use. Plus you now have two copies of the binaries floating around. If any of them need to be updated, you now need to update two locations.
The text was updated successfully, but these errors were encountered: