Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-15441

Repo listing request is not accepted (403) with access token

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 6.6.0
    • Component/s: None
    • Labels:
      None

      Description

      While there is no issue at all to go to the following path un-authenticated:

      http://localhost:8081/artifactory/jcenter
      

      Also with cURL:

      curl -vvv -L http://localhost:8081/artifactory/jcenter/
      

      results in 200

      The following also returns with '200':

      curl -uadmin:password -vvv -L http://localhost:8081/artifactory/jcenter/
      

      When using an Access Token as password with basic authentication or putting access token into the header, this returns:

      {
        "errors" : [ {
          "status" : 403,
          "message" : "Request path not allowed"
        } ]
      

      In the request.log I see:

      20171208145035|164|REQUEST|82.81.195.5|token:arielk|GET|/jcenter|HTTP/1.1|302|0
      20171208145035|25|REQUEST|82.81.195.5|token:arielk|GET|/ui/nativeBrowser|HTTP/1.1|403|0
      20171208145035|65|REQUEST|82.81.195.5|non_authenticated_user|GET|/jcenter/|HTTP/1.1|403|0
      

      However without the token I get:

      20171208145758|545|REQUEST|82.81.195.5|arielk|GET|/ui/nativeBrowser|HTTP/1.1|200|0
      20171208145758|592|REQUEST|82.81.195.5|non_authenticated_user|GET|/jcenter/|HTTP/1.1|200|0
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                yoazm Yoaz Menda (Inactive)
                Reporter:
                arielk Ariel Kabov
                Assigned QA:
                Barak Hacham
              • Votes:
                2 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: