|

»

»

Artifactory-Users

security problem with 1.3.0 beta 2

View: New views

3 Messages — Rating Filter: Alert me

	security problem with 1.3.0 beta 2 by Jettro Coenradie-3 :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hai All, I have recently started using artifactory. I like the simplicity a lot. There is however one thing that is not working for me. I need to be able to prevent people from accessing the repositories without credentials. This is all working for me, I disabled the anonymous access and gave reader rights to a user. However, this does not work. It seems I have to give the user Deployer rights on the cache repositories. This does not seem to be logical. If anybody has a clue what it happening than please help me out, thanks -- Jettro Coenradie http://www.gridshore.nl http://www.osgisamples.com ------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08 _______________________________________________ Artifactory-users mailing list Artifactory-users@... https://lists.sourceforge.net/lists/listinfo/artifactory-users
	Re: security problem with 1.3.0 beta 2 by Yoav Landman :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Hi, Actually, currently this is the only way to control who can populate caches and who can only retrieve pre-downloaded artifacts. When the anonymous user is active, we assume anyone can populate caches, but when access is restricted to authenticated users only, we assume that you need to specifically allow users to pull in artifacts into local cache storage (while other users that are not allowed to populate caches can only used already cached artifacts). We are aware that this is a bit confusing, and this is a temporary arrangement. Yoav On Mon, Jul 7, 2008 at 1:04 PM, Jettro Coenradie <jettro.coenradie@...> wrote: Hai All, I have recently started using artifactory. I like the simplicity a lot. There is however one thing that is not working for me. I need to be able to prevent people from accessing the repositories without credentials. This is all working for me, I disabled the anonymous access and gave reader rights to a user. However, this does not work. It seems I have to give the user Deployer rights on the cache repositories. This does not seem to be logical. If anybody has a clue what it happening than please help me out, thanks -- Jettro Coenradie http://www.gridshore.nl http://www.osgisamples.com ------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08 _______________________________________________ Artifactory-users mailing list Artifactory-users@... https://lists.sourceforge.net/lists/listinfo/artifactory-users ------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08 _______________________________________________ Artifactory-users mailing list Artifactory-users@... https://lists.sourceforge.net/lists/listinfo/artifactory-users
	Re: security problem with 1.3.0 beta 2 by Jettro Coenradie-3 :: Rate this Message: Reply to Author \| View Threaded \| Show Only this Message Some parts of this message have been removed. Learn more about Nabble's security policy. Oke, good to know, thanks for the quick response. On 7/7/08, Yoav Landman <ylandman@...> wrote: Hi, Actually, currently this is the only way to control who can populate caches and who can only retrieve pre-downloaded artifacts. When the anonymous user is active, we assume anyone can populate caches, but when access is restricted to authenticated users only, we assume that you need to specifically allow users to pull in artifacts into local cache storage (while other users that are not allowed to populate caches can only used already cached artifacts). We are aware that this is a bit confusing, and this is a temporary arrangement. Yoav On Mon, Jul 7, 2008 at 1:04 PM, Jettro Coenradie <jettro.coenradie@...> wrote: Hai All, I have recently started using artifactory. I like the simplicity a lot. There is however one thing that is not working for me. I need to be able to prevent people from accessing the repositories without credentials. This is all working for me, I disabled the anonymous access and gave reader rights to a user. However, this does not work. It seems I have to give the user Deployer rights on the cache repositories. This does not seem to be logical. If anybody has a clue what it happening than please help me out, thanks -- Jettro Coenradie http://www.gridshore.nl http://www.osgisamples.com ------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08 _______________________________________________ Artifactory-users mailing list Artifactory-users@... https://lists.sourceforge.net/lists/listinfo/artifactory-users ------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08 _______________________________________________ Artifactory-users mailing list Artifactory-users@... https://lists.sourceforge.net/lists/listinfo/artifactory-users -- Jettro Coenradie http://www.gridshore.nl http://www.osgisamples.com ------------------------------------------------------------------------- Sponsored by: SourceForge.net Community Choice Awards: VOTE NOW! Studies have shown that voting for your favorite open source project, along with a healthy diet, reduces your potential for chronic lameness and boredom. Vote Now at http://www.sourceforge.net/community/cca08 _______________________________________________ Artifactory-users mailing list Artifactory-users@... https://lists.sourceforge.net/lists/listinfo/artifactory-users

LightInTheBox - Buy quality products at wholesale price