jfrog-cli icon indicating copy to clipboard operation
jfrog-cli copied to clipboard
verified publisher icon jfrog

JFrog CLI version 2.52.9 creating refreshable tokens in contradiction with --help

Open StephenWithPH opened this issue 1 year ago • 2 comments

Describe the bug

I am using JFrog CLI version 2.52.9 installed as part of the GitHub Action jfrog/setup-jfrog-cli@v4. Authentication of JFrog CLI with GitHub is handled via OIDC per https://jfrog.com/help/r/jfrog-platform-administration-documentation/configure-an-oidc-integration .

Running either of:

jf rt atc --expiry=300

jf rt atc --expiry=300 --refreshable=false

... results in a refreshable access token:

Screenshot 2024-02-25 at 11 30 36 AM

Per the cli docs:

  --refreshable             [Default: false] Set to true if you'd like the token to be refreshable. A refresh token will also be returned in order to be used to generate a new token once it expires.

Current behavior

See above.

Reproduction steps

See above.

Expected behavior

A non-refreshable token is generated.

JFrog CLI version

2.52.9

Operating system type and version

Ubuntu 22.04.4 LTS

JFrog Artifactory version

cloud

JFrog Xray version

cloud

StephenWithPH avatar Feb 25 '24 19:02 StephenWithPH

@StephenWithPH Thanks for using the JFrog CLI. You're currently using the outdated command to create access tokens. Could you give jf atc a try instead of jf rt atc, and inform us if it worked for you?

yahavi avatar Mar 13 '24 16:03 yahavi

jf atc properly defaults to non-refreshable tokens.

StephenWithPH avatar Mar 14 '24 02:03 StephenWithPH