Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-16460

Non-admin users can create access tokens with 0 (unlimited) expiry

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: High
    • Resolution: Fixed
    • Affects Version/s: 5.10.3
    • Fix Version/s: 5.11.1, 6.0.2
    • Component/s: None
    • Labels:
      None

      Description

      According to our documentation at https://www.jfrog.com/confluence/display/RTF/Artifactory+REST+API#ArtifactoryRESTAPI-CreateToken,  Non-admin can only set a value that is equal to or less than the default 3600, with 0 being never expires. However, never expires would logically be greater than 3600. 
      This is not the desired behaviour, and should be changed.

        Attachments

          Activity

            People

            • Assignee:
              galba Gal Ben Ami
              Reporter:
              mattheww Matthew Wang
              Assigned QA:
              Konstantin Shenderov
            • Votes:
              2 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: