From 278f50954d39f7d1e79d5902cd49cf4d486b012e Mon Sep 17 00:00:00 2001
From: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
Date: Tue, 11 Feb 2020 10:09:04 -0500
Subject: [PATCH] Use HTTPS instead of HTTP to resolve dependencies

This fixes a security vulnerability in this project where the `pom.xml`
files were configuring Maven to resolve dependencies over HTTP instead of
HTTPS.

Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>
---
 osgi/pom.xml | 2 +-
 pom.xml      | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/osgi/pom.xml b/osgi/pom.xml
index bc1a101ed4..5e42d110de 100644
--- a/osgi/pom.xml
+++ b/osgi/pom.xml
@@ -8,7 +8,7 @@
 		<repository>
 			<id>notes</id>
 			<layout>p2</layout>
-			<url>http://dubgsa.ibm.com/gsa/dubgsa/home/l/o/lorenzob/web/public/updateSite/notes900/</url>
+			<url>https://dubgsa.ibm.com/gsa/dubgsa/home/l/o/lorenzob/web/public/updateSite/notes900/</url>
 		</repository>
 	</repositories>
 	
diff --git a/pom.xml b/pom.xml
index 66e5dcb56e..d5e7eb5662 100644
--- a/pom.xml
+++ b/pom.xml
@@ -80,7 +80,7 @@ Source code is available at https://github.com/OpenNTF/SocialSDK
 		<repository>
 			<id>eclipse</id>
 			<layout>p2</layout>
-			<url>http://download.eclipse.org/releases/juno/</url>
+			<url>https://download.eclipse.org/releases/juno/</url>
 		</repository>
 	</repositories>
 
@@ -172,7 +172,7 @@ Source code is available at https://github.com/OpenNTF/SocialSDK
 					<source>
 						<!-- source repositories to mirror from -->
 						<repository>
-							<url>http://download.eclipse.org/releases/juno/</url>
+							<url>https://download.eclipse.org/releases/juno/</url>
 							<layout>p2</layout>
 							<!-- supported layouts are "p2-metadata", "p2-artifacts", and "p2" 
 								(for joint repositories; default) -->