[RTFACT-15441] Repo listing request is not accepted (403) with access token Created: 08/Dec/17  Updated: 19/Nov/18  Resolved: 05/Nov/18

Status: Resolved
Project: Artifactory Binary Repository
Component/s: None
Affects Version/s: None
Fix Version/s: 6.6.0

Type: Bug Priority: Normal
Reporter: Ariel Kabov Assignee: Yoaz Menda (Inactive)
Resolution: Fixed Votes: 2
Labels: None

Issue Links:
is duplicated by RTFACT-16369 Access tokens created a for a user ar... Resolved


While there is no issue at all to go to the following path un-authenticated:


Also with cURL:

curl -vvv -L http://localhost:8081/artifactory/jcenter/

results in 200

The following also returns with '200':

curl -uadmin:password -vvv -L http://localhost:8081/artifactory/jcenter/

When using an Access Token as password with basic authentication or putting access token into the header, this returns:

  "errors" : [ {
    "status" : 403,
    "message" : "Request path not allowed"
  } ]

In the request.log I see:


However without the token I get:


Comment by Edd Grant [ 02/May/18 ]

We're hitting this issue too. Would be great if someone from JFrog could comment on any advised workarounds and/ or an rough estimate for when this might be looked at. 

Using Artifactory OSS, Version: 5.10.1, Revision: 51001900

Generated at Mon Jun 01 20:29:18 UTC 2020 using Jira 8.5.3#805003-sha1:b4933e02eaff29a49114274fe59e1f99d9d963d7.