Priority: 4 - Normal
Affects Version/s: 6.20.0
Fix Version/s: None
The non UI auth cache (https://www.jfrog.com/confluence/display/JFROG/LDAP#LDAP-Non-UIAuthenticationCache) doesn't work for docker requests when using basic auth.
The issue occurs for all docker requests, whether it be for the manifest or the layers. This is due to caching being enabled only with requests that are based off a docker token. The docker client (or a smart remote repo with token based auth enabled) always goes to v2/token as a first request, upon every command (pull,push,etc) and then uses the retrieved token for all subsequent requests to artifactory for the same purpose (i.e all layers pulled by the same docker pull request).
What is the expected behavior?
-all docker API authentication requests are cached all the time
Steps to reproduce:
-enable ldap debug logs
-try to resolve the manifest/layer via curl multiple times: RESTRICTED_URL'S
-notice in ldap debug logs that there is a cached key entry, yet it still reaches out to ldap. Behavior occurs for both internal and LDAP users