When using 'bundle install' and setting our local Artifactory as source, we do see the following behaviour:
1) using the url provided by the 'Set Me Up' Wizzard:
2) using a slightly other URL:
bundle install fails to verify the integrity of the file.
bundle install expects a MD5 checksum in the 'etag' Header field - Artifactory provides the SHA-1 checksum in the 'etag' field.
since the integrity check is failing, bundle install then builds its own index, checking more than 4000 files for its versions. This takes up a huge amount of time.
Since we are using Artifactory as a Remote Repository Cache in conjuction with ephemeral Gitlab Runners, this occurs quite often and is an impediment to our workflow.
Currently there doesn't seem to be a way to tell Artifactory how to provide the correct checksum to bundle install.
Artifactory should provide a correct checksum, so that the functionality of the bundle install versions file gets restored.