Enable TLS for other Products in JFrog Platform

JFrog Installation & Setup Documentation
Content Type
Installation & Setup
ft:sourceType
Paligo

As all JFrog products utilize Router, enabling TLS for any JFrog product is similar.

We will use Xray as an example.

  1. Add the following configuration in Xray’s values.yaml to allow Router to bypass initial TLS verification and pull the certificate.

    router:
  serviceRegistry:
    insecure: true

  2. Once configured, a certificate will be generated under /opt/jfrog/xray/var/data/router/keys, and Router will only accept HTTPS requests.

  3. Ensure that Kubernetes probes communicate with Router over HTTPS by setting router.tlsEnabled=true.

    router:
  serviceRegistry:
    insecure: true
  tlsEnabled: true

  4. Modify the jfrogUrl manually to be the name of the Artifactory service. The following is an example with the service name as jfrog-platform-artifactory and uses HTTPS.

    xray:
  jfrogUrl: https://jfrog-platform-artifactory:8082
router:
  serviceRegistry:
    insecure: true
  tlsEnabled: true

    When using the JFrog Platform Chart, which is the recommended approach for utilizing multiple JFrog products, we can employ templating to avoid a hardcoded value for the jfrogUrl, as demonstrated in the example below.