Authentication against artifactory

eise · January 13, 2016, 10:53am

Hi,
we use gradle to build our projects and use JFrog Artifactory as jar cache an for the build results.

For security reasons we have anonymous access disabled on some local stored jars in Artifactory.
Remote an local repositories are summarized in a virtual repo on Artifactory.
In the artifactory log we see the rejected requests even though the credentials are stored in the gradel config.

Example:

gradle.properties

#Artifactory properties
artifactory_user=xxxxxxx
artifactory_password=XXXXXXXXXXX
artifactory_contextUrl=http://xxxx.xxxxxx.xx/artifactory/virtual-repo

artifactory request log

access free:

20160113103818|5|REQUEST|192.xx.xx.xx|anonymous|GET|/virtual-repo/org/codehaus/woodstox/stax2-api/3.1.4/stax2-api-3.1.4.pom|HTTP/1.1|200|5498

access only with authentication:

0160113103819|4|REQUEST|192.xx.xx.xx|non_authenticated_user|GET|/virtual-repo/args4j/args4j/2.32/args4j-2.32.jar|HTTP/1.1|403|0

It looks like there is no authentication against artifactory to login for that requests.

When i access the files via browser i got an authentication dialog.

Is this a bug, or I have something misconfigured?

Thanks

mark_vieira · January 13, 2016, 6:54pm

Are you using the Artifactory plugin? In any case, I don’t believe it reads credentials from gradle.properties. You’ll have to configure this using the DSL, or at least refer to these properties in your build script.

eise · January 14, 2016, 7:50am

Hi,
yes we use the Artifactory plugin in our central Atlassian Bamboo system (only to upload the results, the build process is an gradlew system call),
but we also use gradlew on our local dev systems an the problem is also there.

eise · January 25, 2016, 2:30pm

Hi,
just for clarification, of course we make use of the
gradle.proerties by means oft the Gradle DSL, i.e.

allprojects { /*....*/ 
   repositories {
        maven {
            credentials {
                username artifactory_user
                password artifactory_password
            }
            url    System.getProperty('ARTIFACTORY_CONTEXT_URL',artifactory_contextUrl)
       }
   }
}

If the properties won’t be taken into account, we won’t
see an access to the artifactory server at all. It seems to be, that anonymous
access takes precedence over authenticated access and that access failures
during an anonymous access cause to abort the retrieval. Please could someone
double-check whether this could be an issue.

mark_vieira · January 25, 2016, 5:20pm

If you configure credentials we will attempt to authenticate when challenged. If you are getting a 403 that usually means you are authenticated, but don’t have the correct permissions. You can potentially use --debug to troubleshoot what is going on on the Gradle side. You should be able to confirm that we are indeed sending credentials.

Topic		Replies	Views
Gradle unable to properly authenticate against Artifactory Help/Discuss	8	23963	October 31, 2023
How can you upload to an Artifactory with a Gradle Task? Old Forum Archive	5	7118	October 11, 2011
Artifactory plugin in Gradle Help/Discuss	6	3434	September 1, 2015
Gradle 1.9 cannot access artifactory repository that is protected by Basic Authentication Old Forum Archive	4	2282	November 28, 2013
Can I get plugins from an Artifactory which requires HTTP basic auth? Help/Discuss	3	2337	July 28, 2017

Authentication against artifactory

Related topics