Uploaded image for project: 'Dev - Nexus'
  1. Dev - Nexus
  2. NEXUS-12073

Pulling from Docker group generates error unless read access assigned directly to member

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.2.0
    • Fix Version/s: 3.2.1
    • Component/s: Docker
    • Labels:
    • Story Points:
      2
    • Release Note:
      Yes
    • Sprint:
      Sprint 87

      Description

      Create a docker group repository, and put a docker hub proxy repository in this group.

      Disable anonymous access in Nexus 3. Then create a test user, and grant them read access to the docker group repository, but not to the docker hub proxy repository.

      They will not be able to pull any docker images through the group, they'll get a 404 response every time. If you grant them direct read access to the docker hub proxy then requests through the docker group repository will start working.

      I also tested this scenario with Maven repositories, and for those transitive privileges worked.

      I've attached a support zip file with my setup.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                jtom Joe Tom
                Reporter:
                rseddon Rich Seddon
                Last Updated By:
                Dulani Wallace
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Date of First Response: