JFrog Access is the service that manages all aspects of authentication and authorization for all JFrog services under the hood. It stores all users, groups, permissions and Access tokens generated by any connected JFrog service.
As part of the upgrade to the JFrog Platform, several changes were made to the permissions handled by Access. This document provides a detailed explanation of the permission migrations for the JFrog products in the JFrog Platform.
JFrog Artifactory Migration
Permissions for Artifactory in Access did not change in the move from 6.x to 7.x.
JFrog Xray Migration
The following permissions changed in Xray.
The new permissions are created for each resource type (repo, build) on any resource.
The following Xray actions changed.
Read performs the following actions:
Permission to trigger Xray scans on artifacts in repositories, creates and delete custom issues and license
policy_manager role (user/group custom data)
Permission to create , edit and view Policies
The Xray 2.0 Reports functionality was deprecated in 3.0.
The Xray 3.0 Reports, which are new a functionality, require new permissions.
policy_manager role + mxm + read
Permission to create , edit and view Policies, triggers Xray scans + perform the read actions above
JFrog Distribution Migration
The following resource types changed in Distribution.
Old Resource Type
New Resource Type
The following Distribution actions changed.
"r", "w", "x", "d"
JFrog Mission Control Migration
All permissions have been deleted.
In cases of conflicts in the display name, an index (1,2...) will be added to the display name.