ansaurus

Question

Ant build.xml requires user input, but Eclipse has no tty

Answer 1

+2 A:

You could set up your /etc/sudoers file so that it specifies NOPASSWD: for the user under which Eclipse is running, and for the command you're using to move the libs. Using the visudo command, you could add this to the end of /etc/sudoers:

eclipseuser ALL = NOPASSWD: /bin/cp

Be aware that this does present a security risk as the eclipseuser would then have the power to overwrite any file on the system.

Brian Showalter 2010-03-25 19:03:50

Thanks for the suggestion. At home I'd be fine with this but at work anyone could use this computer so it seems unwise.

Yuvi Masory 2010-03-25 19:08:16

+1 for Brian's comment. Other sudo options *requires* a tty for password input and since eclipse terminal is not tty, looks like we are out of luck. @disown also has some good suggestion.

ring bearer 2010-03-25 19:46:55

Are you saying that anyone could log into your account on that work computer? I have a few more ideas but need to know a bit more about how your system is set up and used.

Brian Showalter 2010-03-26 14:33:15

I'm saying I don't always lock out of my computer when I go to get lunch/coffee. I don't want anyone who sits at my computer and opens a terminal to have sudo. Thanks again Brian.

Yuvi Masory 2010-03-26 18:00:02

Answer 2

A:

Perhaps a stupid 'solution', but why not make the deploy a separate step? Have the build make an packaging artifact: DEP, RPM or something.

disown 2010-03-25 19:32:46

That's what I have now. The deploy step packages the libraries into an .app/.exe installer/.deb depending on the platform. The ant task that moves libraries to system path is strictly for development, so I can run the Java code normally through Eclipse (or through java -jar) and get better feedback than a Java jar packaged inside an app/exe can provide. (For example, terminal output is routed normally not requiring a special log viewer).

Yuvi Masory 2010-03-25 20:47:04

Answer 3

+1 A:

Set up a separate account, e.g. deployer. Modify /etc/sudoers to include aliases that allow deployer to execute a single command, e.g. deploy, as root. Make deployer NOEXEC:. Store the deployer password in an invisible file, e.g. .deployconf having user-only access: e.g. 400 or 600. Load the password in ant, and use as required:

<loadfile srcfile="${user.home}/.deployconf" property="deployconf"/>

This works well with <signjar/>, but I've not tried it with <exec/>. Some effort may be required to keep linefeeds out of .deployconf.

trashgod 2010-03-25 20:12:10

I'm choosing this one because it's the safest, but it doesn't seem like there's really a fantastic way to do what I was hoping.

Yuvi Masory 2010-04-02 04:26:07

I share your wariness. This is akin to hiding a spare key in the house. You might also use group permissions to limit the scope of _deployer_ actions.

trashgod 2010-04-02 05:49:43

ansaurus

tags:

views:

answers:

Ant build.xml requires user input, but Eclipse has no tty

related questions