Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-23581

Nexus Repository separation of read and proxy privileges

    Details

    • Type: Improvement
    • Status: New
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 3.22.0
    • Fix Version/s: None
    • Component/s: Security
    • Labels:
      None

      Description

      Adding the nx-repository-view---read privilege grants users permission to both read assets already in the proxy and to proxy new assets that don't currently exist in the proxy.

      We would find it greatly useful if these two permissions were separated, to allow us to control the importing of assets into the environment securely.

      The use case is based around system accounts from gitlab runners, jenkins runners, etc. We do not want these accounts to be able to pull new assets in ot the environment.

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            ajfclark Andrew Clark
            Last Updated By:
            Joe Tom Joe Tom
            Votes:
            3 Vote for this issue
            Watchers:
            6 Start watching this issue

              Dates

              Created:
              Updated:
              Date of First Response:

                tigCommentSecurity.panel-title