From fb8f5a8ee9d909e7364fba8084c8460d50af8647 Mon Sep 17 00:00:00 2001
From: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
Date: Tue, 11 Feb 2020 11:36:29 -0500
Subject: [PATCH] Use HTTPS instead of HTTP to resolve dependencies

This fixes a security vulnerability in this project where the `pom.xml`
files were configuring Maven to resolve dependencies over HTTP instead of
HTTPS.

Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
---
 modules/integration/service-samples/pom.xml      |  8 ++++----
 .../StarbucksServicePlatform/artifacts/pom.xml   |  4 ++--
 .../StarbucksServicePlatform/builder/pom.xml     |  4 ++--
 pom.xml                                          | 16 ++++++++--------
 4 files changed, 16 insertions(+), 16 deletions(-)

diff --git a/modules/integration/service-samples/pom.xml b/modules/integration/service-samples/pom.xml
index e030ee143..05ed7c23b 100644
--- a/modules/integration/service-samples/pom.xml
+++ b/modules/integration/service-samples/pom.xml
@@ -16,13 +16,13 @@
     <repositories>
         <repository>
             <id>maven2-repository.dev.java.net</id>
-            <url>http://download.java.net/maven/2/</url>
+            <url>https://download.java.net/maven/2/</url>
         </repository>
 
         <repository>
             <id>wso2-nexus</id>
             <name>WSO2 internal Repository</name>
-            <url>http://maven.wso2.org/nexus/content/groups/wso2-public/</url>
+            <url>https://maven.wso2.org/nexus/content/groups/wso2-public/</url>
             <releases>
                 <enabled>true</enabled>
                 <updatePolicy>daily</updatePolicy>
@@ -32,7 +32,7 @@
         <repository>
             <id>wso2-maven2-repository</id>
             <name>WSO2 Maven2 Repository</name>
-            <url>http://dist.wso2.org/maven2</url>
+            <url>https://dist.wso2.org/maven2</url>
             <snapshots>
                 <enabled>false</enabled>
             </snapshots>
@@ -46,7 +46,7 @@
         <repository>
             <id>maven2-repository-jococo</id>
             <name>Maven2 Repository</name>
-            <url>http://repo1.maven.org/maven2/</url>
+            <url>https://repo1.maven.org/maven2/</url>
         </repository>
         <repository>
             <id>saucelabs-repository</id>
diff --git a/modules/samples/integration-scenarios/starbucks_sample/StarbucksServicePlatform/artifacts/pom.xml b/modules/samples/integration-scenarios/starbucks_sample/StarbucksServicePlatform/artifacts/pom.xml
index 8db65cfd4..7f4e74318 100644
--- a/modules/samples/integration-scenarios/starbucks_sample/StarbucksServicePlatform/artifacts/pom.xml
+++ b/modules/samples/integration-scenarios/starbucks_sample/StarbucksServicePlatform/artifacts/pom.xml
@@ -26,13 +26,13 @@
   <repositories>
     <repository>
       <id>wso2-maven2-repository-1</id>
-      <url>http://dist.wso2.org/maven2</url>
+      <url>https://dist.wso2.org/maven2</url>
     </repository>
   </repositories>
   <pluginRepositories>
     <pluginRepository>
       <id>wso2-maven2-plugin-repository-1</id>
-      <url>http://dist.wso2.org/maven2</url>
+      <url>https://dist.wso2.org/maven2</url>
     </pluginRepository>
   </pluginRepositories>
   <build>
diff --git a/modules/samples/integration-scenarios/starbucks_sample/StarbucksServicePlatform/builder/pom.xml b/modules/samples/integration-scenarios/starbucks_sample/StarbucksServicePlatform/builder/pom.xml
index afdf72c21..288eccc90 100644
--- a/modules/samples/integration-scenarios/starbucks_sample/StarbucksServicePlatform/builder/pom.xml
+++ b/modules/samples/integration-scenarios/starbucks_sample/StarbucksServicePlatform/builder/pom.xml
@@ -15,13 +15,13 @@
   <repositories>
     <repository>
       <id>wso2-maven2-repository-1</id>
-      <url>http://dist.wso2.org/maven2</url>
+      <url>https://dist.wso2.org/maven2</url>
     </repository>
   </repositories>
   <pluginRepositories>
     <pluginRepository>
       <id>wso2-maven2-repository-1</id>
-      <url>http://dist.wso2.org/maven2</url>
+      <url>https://dist.wso2.org/maven2</url>
     </pluginRepository>
   </pluginRepositories>
   <build>
diff --git a/pom.xml b/pom.xml
index 1bed83aa0..9ee564f6b 100755
--- a/pom.xml
+++ b/pom.xml
@@ -1211,7 +1211,7 @@
         <pluginRepository>
             <id>wso2.releases</id>
             <name>WSO2 internal Repository</name>
-            <url>http://maven.wso2.org/nexus/content/repositories/releases/</url>
+            <url>https://maven.wso2.org/nexus/content/repositories/releases/</url>
             <releases>
                 <enabled>true</enabled>
                 <updatePolicy>daily</updatePolicy>
@@ -1221,7 +1221,7 @@
         <pluginRepository>
             <id>wso2.snapshots</id>
             <name>Apache Snapshot Repository</name>
-            <url>http://maven.wso2.org/nexus/content/repositories/snapshots/</url>
+            <url>https://maven.wso2.org/nexus/content/repositories/snapshots/</url>
             <snapshots>
                 <enabled>true</enabled>
                 <updatePolicy>daily</updatePolicy>
@@ -1233,7 +1233,7 @@
         <pluginRepository>
             <id>wso2-nexus</id>
             <name>WSO2 internal Repository</name>
-            <url>http://maven.wso2.org/nexus/content/groups/wso2-public/</url>
+            <url>https://maven.wso2.org/nexus/content/groups/wso2-public/</url>
             <releases>
                 <enabled>true</enabled>
                 <updatePolicy>daily</updatePolicy>
@@ -1245,7 +1245,7 @@
         <repository>
             <id>wso2-nexus</id>
             <name>WSO2 internal Repository</name>
-            <url>http://maven.wso2.org/nexus/content/groups/wso2-public/</url>
+            <url>https://maven.wso2.org/nexus/content/groups/wso2-public/</url>
             <releases>
                 <enabled>true</enabled>
                 <updatePolicy>daily</updatePolicy>
@@ -1255,7 +1255,7 @@
         <repository>
             <id>wso2.releases</id>
             <name>WSO2 internal Repository</name>
-            <url>http://maven.wso2.org/nexus/content/repositories/releases/</url>
+            <url>https://maven.wso2.org/nexus/content/repositories/releases/</url>
             <releases>
                 <enabled>true</enabled>
                 <updatePolicy>daily</updatePolicy>
@@ -1265,7 +1265,7 @@
         <repository>
             <id>wso2.snapshots</id>
             <name>Apache Snapshot Repository</name>
-            <url>http://maven.wso2.org/nexus/content/repositories/snapshots/</url>
+            <url>https://maven.wso2.org/nexus/content/repositories/snapshots/</url>
             <snapshots>
                 <enabled>true</enabled>
                 <updatePolicy>daily</updatePolicy>
@@ -1279,12 +1279,12 @@
         <repository>
             <id>nexus-releases</id>
             <name>WSO2 Release Distribution Repository</name>
-            <url>http://maven.wso2.org/nexus/service/local/staging/deploy/maven2/</url>
+            <url>https://maven.wso2.org/nexus/service/local/staging/deploy/maven2/</url>
         </repository>
         <snapshotRepository>
             <id>wso2.snapshots</id>
             <name>Apache Snapshot Repository</name>
-            <url>http://maven.wso2.org/nexus/content/repositories/snapshots/</url>
+            <url>https://maven.wso2.org/nexus/content/repositories/snapshots/</url>
         </snapshotRepository>
     </distributionManagement>
 </project>