Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-14231

add option for preemptively sending auth to an HTTP proxy server

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: New
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 3.5.1
    • Fix Version/s: None
    • Component/s: Transport
    • Labels:
      None

      Description

      While NEXUS-8306 and NEXUS-12022 cover sending preemptive auth to remote proxy repositories, this issue covers the case for doing this to the HTTP proxy servers configured under HTTP settings in Nexus 3.

      Nexus 2, we have no plans to consider this improvement.

      The use case is that when the HTTP proxy server is configured with credentials, the credentials are always expected to be needed for a CONNECT request - so Nexus should always send these and not wait for a 407.

      While this is a security risk, some people are willing to accept that risk in exchange for less HTTP traffic through their proxy server.

        Attachments

          Issue Links

          is related to

          Improvement - An improvement or enhancement to an existing feature or task. NEXUS-8306 Pre-emptive authentication for remote proxy HTTP requests

          • Major - Major loss of function.
          • Closed

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. NEXUS-12022 Allow preemptive authentication for maven proxy repositories

          • Major - Major loss of function.
          • Done

            Activity

              People

              Assignee:
              Unassigned Unassigned
              Reporter:
              plynch Peter Lynch
              Last Updated By:
              Peter Lynch Peter Lynch
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:

                  tigCommentSecurity.panel-title