Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-16460

Non-admin users can create access tokens with 0 (unlimited) expiry

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Done
    • Priority: 3 - High
    • Resolution: Done
    • Affects Version/s: 5.10.3
    • Fix Version/s: 5.11.1, 6.0.2
    • Component/s: None
    • Labels:
      None
    • Severity:
      High

      Description

      According to our documentation at https://www.jfrog.com/confluence/display/RTF/Artifactory+REST+API#ArtifactoryRESTAPI-CreateToken,  Non-admin can only set a value that is equal to or less than the default 3600, with 0 being never expires. However, never expires would logically be greater than 3600. 
      This is not the desired behaviour, and should be changed.

        Attachments

          Activity

            People

            Assignee:
            galba Gal Ben Ami
            Reporter:
            mattheww Matthew Wang
            Votes:
            2 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Sync Status

                Connection: RTFACT Sync
                RTMID-16460 -
                SYNCHRONIZED
                • Last Sync Date: