tags:

views:

102

answers:

3
+1  Q: 

Maven. What to do with "homeless" jars?

I have some proprietary.jar that I need to include in my project, but I don't wish to install it to the local repository.

What I did initially was to put the jar into version control in my project's lib/ folder, and then specify the Maven dependency as:

<!-- LOCAL DEPENDENCY -->
<dependency>
    <groupId>topsecret</groupId>
    <artifactId>proprietary</artifactId>
    <version>0.0.1</version>
    <scope>system</scope>
    <systemPath>${basedir}/lib/java/proprietary.jar</systemPath>
</dependency>

However, this becomes a big problem when my project becomes someone else's dependency. Maven will not be able to validate this POM because the path is not absolute.

What is the best way to overcome this problem?

+4  A: 

I think the first question that needs to be answered is, why don't you want to install it in the local repository?

Maven follows a convention over configuration philosophy, so the more you fight "The Maven Way" the harder things are going to be for you. Unless you have a compelling reason for not installing the jar to the repository, that seems like the best solution to me.

If you are concerned about unauthorized users gaining access to the proprietary jar, there are alternative solutions such as using a repository manager like Nexus or Archiva.

dbyrne  2010-05-26 21:35:12
I agree. It's not such a crime to have some jars sitting in your local ~/.m2/repository directory that you reference repeatedly in other Maven projects. Especially if you continue to use Maven in day-to-day use, putting jars to be easily accessible in other pom's will make this question less relevant, as you'll be using a convention that's probably simpler than repeating the solution used for this question on every project.
Nick Klauer  2010-05-27 03:30:28
A: 

For third party artefacts, it's cleanest and least pain free to create a separate repository dedicated to 3rd party artefacts. This makes it easy for anyone else in your team to build your project.

For example, I'm using Nexus (community editoin) to manage maven artefacts. When someone has a dependency on a 3rd party lib not in maven central, we add it to the third party repo. This allows everyone else to build without having to manually find and download the artefact.

Nexus supports various authentication strategies, including LDAP, so can guard sensitive artefacts from unauthorized use. Since moving to a repository manager, managing artefacts, particularly 3rd party artefacts has become a whole lot easier.

See

PS: Another plus with Nexus is that you can create a "virtual" repository that is the composition of several repositories "flattened" into one. This puts an end to adding repositories to settings.xml or putting repositories in the project pom. You can dd your own repository, your 3rd party repository, and other popular repositories (central, apache, codehaus, jboss etc...) and set nexus up as a mirror. All requests then go through Nexus, speeding up the build and easing repository configuration.

mdma  2010-05-26 21:39:24
+2  A: 

I described in a previous answer how you can setup a file based repository and avoid the evil system scope when you can't use a corporate repository. Check it out.

Pascal Thivent  2010-05-26 23:29:13

related questions

Best way to access the runtime configuration of a maven plugin from a custom mojo?
How do I get maven to "stamp" a build number into a properties file
Thinking of learning Maven
How do you create automated tests of a Maven plugin using JUnit?
What is the best way to obtain a list of site resources when writing a Maven2 site plugin?
force Maven2 to copy dependencies into target/lib
Maven2 Multiproject Cobertura Reporting Problems During mvn site Build
Maven plugins for javascript
Why does mvn release:prepare fail while tagging?
Maven Jdepend report contains no data
Where can I find a good introduction to maven?
Maven or Ant?
persistence.xml not found during maven testing
Missing aar file in maven2 multi-project build
Can Maven be made less verbose?
Can I add maven repositories in the command line?
jtds No Suitable Driver Exception when running a maven built project
Maven2 Eclipse integration
How to reference javadocs to dependencies in Maven's eclipse plugin when javadoc not attached to dependency
Hudson can't build my Maven 2 project because it says artifacts are missing from the repository? (they aren't)
In Maven 2, how do I know from which dependency comes a transitive dependency ?
How do I tell Maven to use the latest version of a dependency?
How do I profile a Maven Application in Netbeans?
Repository layout for large Maven projects
How can I deploy artifacts from a Maven build to the SourceForge File Release System?