Hi! Does this mean that Artifactory prevents this scheme:
1) let anonymous downloads 2) let users with credentional deploy to caches when artifact is found missing I mean, I would like to let anonymous to "read" any repositories but if Artifactory encounters that the desired artifact was not cached yet, it should challenge Maven to authenticate and if Maven succeeds and user has deploy permissiong let the cache be populated? Obviously, letting anyone populate your caches is a bad security practice as anyone will be able to blow your storage off :( ... Or am I mistaken / missing the point / not knowing how to configure the security better? Best, Jakub Gemrot -- View this message in context: http://forums.jfrog.org/Maven-using-anonymous-user-even-though-artifactory-server-setup-in-the-settings-xml-tp4634521p6051613.html Sent from the Artifactory - Users mailing list archive at Nabble.com. ------------------------------------------------------------------------------ Index, Search & Analyze Logs and other IT data in Real-Time with Splunk Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. Free Software Download: http://p.sf.net/sfu/splunk-dev2dev _______________________________________________ Artifactory-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/artifactory-users
