Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-12022

Allow preemptive authentication for maven proxy repositories

    XMLWordPrintable

    Details

    • Notability:
      4

      Description

      Background
      Preemptive auth in general is bad (this is why clients like Maven does not do them by default). Still, there are valid user cases when it would be perfectly acceptable to have proxy repository outbound requests which are known to require authentication to use pre-emptive auth.

      • the remote is a known internal endpoint that is implicitly trusted
      • the remote is known to ALWAYS require auth, instead of for just some URLs
      • the connection is over a https connection
      • bandwidth needs to be conserved, this type of auth only sends one request with credentials instead of sending two,
      • Load (network, disk, CPU) can be reduced
      • outbound request logging is reduced ( 1 instead of 2)
      • latency to resolve the incoming request is reduced

      Acceptance

      • Admins have a way of enabling pre-emptive authentication for maven proxy repositories
      • Pre-emptive auth requires an HTTPS remote URL; this is enforced by validation for both UI and REST repo definition/configuration

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              dsawa Dawid Sawa
              Reporter:
              plynch Peter Lynch
              Last Updated By:
              Cuong Tran Cuong Tran
              Team:
              NXRM - Groot
              Votes:
              9 Vote for this issue
              Watchers:
              26 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Date of First Response:

                  tigCommentSecurity.panel-title