[RTFACT-9276] Docker login gets 401 when using encrypted password - JFrog JIRA

XML

Word

Printable

Details

Type: Bug
Status: Done
Resolution: Done
Affects Version/s: 4.4.3
Fix Version/s: 4.5.0
Component/s: Docker
Labels:
None

Severity:
Critical

Description

This happens only on an upgraded 4.4.3 version.
When the 'Password Encryption Policy' is set to 'REQUIRED' , if you try to docker login to Artifactory using an encrypted password, you will get a 401 unauthorised:

Error response from daemon: no successful auth challenge for https://itamarb.com/v2/ - errors: [token auth attempt for registry https://itamarb.com/v2/: https://itamarb.com:443//api/docker/docker-local-v2/v2/token?account=dockertest&service=itamarb.com%3A443 request failed with status: 401 Unauthorized]

request.log shows:

20160209145936|45|REQUEST|127.0.0.1|dockertest|GET|/api/docker/docker-local-v2/v2/token|HTTP/1.0|200|0
20160209145936|8|REQUEST|127.0.0.1|non_authenticated_user|GET|/api/docker/docker-local-v2/v2/|HTTP/1.0|401|0

If you change the policy to 'supported' it works.

Steps to reproduce:

1. Install Artifactory <4.4.3
2. Create local repo 'docker-local-v2'
3. Create user
4. Give user read permissions on 'docker-local-v2'
5. Set password policy to 'Required'
6. Get user's encrypted password
7. Docker login - see that it works
8. Upgrade to 4.4.3
9. Docker login - see that it fails
10. Change policy to 'Supported'
11. Docker login now works

Attachments

Issue Links

relates to

RTFACT-10325 Anonymous docker operations won't work if Password Encryption Policy is set to REQUIRED

Done

Activity

People

Assignee:: Shay Yaakov (Inactive)

Reporter:: Itamar Berman-Eshel

Votes:: 1 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 09/Feb/16 11:58 PM

Updated:: 07/Mar/21 9:35 AM

Resolved:: 11/Feb/16 7:49 AM

Sync Status

Connection: RTFACT Sync

RTMID-9276 -
SYNCHRONIZED

Last Sync Date: