In this Knowledge Base article, we will be discussing the greyed-out behavior of anonymous users for projects.
From Artifactory version 7.66.x, the feature of adding an anonymous user inside a project has been enhanced and made as an option (which is by default disabled)because it is not recommended to provide such access. In the below screenshot, we can see the option is greyed out.
JFrog does not recommend allowing anonymous access. When you allow non-logged-in users access to your system, we could potentially be giving unauthorized access to users to any existing local, remote, or virtual repositories. For more details, you can refer to the link here which explains everything in detail.
To enable anonymous access at the project level, we need to modify the access.config.latest.yml file and restart the Artifactory server. Below are the steps that need to be followed:-
1. Navigate to the /opt/jfrog/artifactory/var/etc/access directory.
2. Add the below configuration in the access.config.latest.yml file.
security: allow-anonymous-in-projects: true3. Rename the file to access.config.import.yml
4. Perform a restart of the Artifactory server.
The above changes will enable the anonymous user for projects and we can add the user based on the requirements. Below is the screenshot after adding the property
For more details on the access-related configuration files, please refer to this documentation.