Released: 25 July, 2024
Highlights
Known Issue in this Version
Upgrading self-hosted deployments from version 7.71 directly to 7.90 or higher fails due to a problematic Artifactory revision number in 7.71 causing converters not to run. For more information, see Artifactory 7.71. To avoid this issue, upgrade to Artifactory version 7.90.7 or above.
New Platform Navigation
JFrog is launching the new platform UI navigation for Self-Hosted instances.
This will be the default experience when using version number 7.90.x.
To find out more about this change, see JFrog Platform Navigation.
Classic UI Navigation Sunset
Classic UI navigation is planned to be deprecated with the Self-Hosted release of October 2024.
For more information, see JFrog Platform Deprecations.
Individual JVM for Access Service
The Access service will now run on a dedicated Java Virtual Machine (JVM), separated from the main Artifactory JVM. While the Access JVM will utilize additional resources, this change is anticipated to decrease the memory usage of the Artifactory JVM. Additional configuration steps might be required for customers using the Derby database. For more information, see Individual JVM for Access Service
Security Hardening for Artifactory Container Images
As part of JFrog's commitment to maintain the security and reliability of our products, JFrog Artifactory container images are now enforced with read-only permission to
webapps
andconf
folders located in theapp/artifactory/tomcat
andapp/access/tomcat
directories.OpenID Connect Integration
OIDC integration in the JFrog Platform allows you to use services including GitHub Actions and Azure with OpenID Connect to work on the JFrog Platform. OpenID Connect Integration now supports Azure.
Major Performance Improvements for Alpine
This version includes up to an 87% improvement in the response time in Alpine-related use cases, such as downloading from a virtual repository.
New Features
Project Admin Scoped Access Token
Now in addition to an API that was released in Artifactory version 7.84, you can also generate project admin access tokens using the JFrog Platform UI. For more information, see Create a Project Admin Scoped Token.
Project Storage Quotas
You can now view and manage project storage quotas. A table view with project details is now the default All Project View, and a new Storage Quota column with a usage bar has been added. You can now perform actions such as Edit Storage to manage and change the storage quota from the table view. For more information, see Manage Storage Quotas.
Support for PyPI Name Normalization and Enforce Layout
Artifactory now supports the PyPI package features name normalization and enforce layout, as specified in PEP-440. These features help you keep a consistent naming method for PyPI packages and avoid issues. For more information, see Use PyPI File Path Name Normalization, Use PyPI Enforce Layout, and Using Both PyPI File Path Naming Normalization and Enforce Layout.
Feature Enhancements
Improved Performance with Storage Summary Queries
A flag was added to the Artifactory System Properties (
artifactory.db.operations.totalSize.mysql.noIndex = true
) that changes the storage summary queries (file count and repository table) to not use indexes in MySQL DB and hence improves query performance.Additional Package Types Now Support Package Archiving
Additional package types have been added to support package archiving. The full list of all package types that now support package archiving is: Docker, Maven, npm, Gradle, YUM, generic, NuGet, Conan, and Helm. For more information on package archiving, see Working with Cold Storage.
Temporary Login Suspension Configuration Moved to Access Service
As part of enhancements to the JFrog Access Service to make it the primary service for Authentication and Authorization, from Artifactory version 7.90, the configuration management for Temporary Login Suspension has moved to the Access Service. For more information, see User Lock and Login Suspension.
Improved User Experience for Helm Installations
Artifactory now supports the following Helm improvements:
The
nginx.artifactoryConf
andnginx.mainConf
fields have been reallocated to the 'files' directory.The
artifactory.openMetrics
field has been renamed asartifactory.metrics
.Added
nginx.hosts
field to use asserver_name
directive on the embedded Nginx instead ofingress.hosts
field.Changed
migration.enabled
flag to false by default. For Artifactory 6.x to 7.x migration, this flag needs to be set totrue
.
Additional synchronized metadata in Federated repositories
It is now possible to synchronize the following artifact metadata with all Federation members:
createdBy: The name of the user who uploaded the artifact to Artifactory (including the suffix '
federated
'.) The name is mirrored to other members even if the user does not exist on those members.deploymentDate: Defines when the artifact was deployed. Synchronizing this metadata is important for features such as the Max Unique Snapshot policy in Maven.
modifiedDate: Defines when the artifact was last modified.
A new Artifactory system property controls the inclusion of this metadata:
artifactory.federated.mirror.events.metadata.enabled
By default, this flag is set to
false
. To mirror this metadata to other Federation members, change the flag setting totrue
on each relevant member. The metadata is mirrored only if the flag is activated on both the source and target JPD.Cleanup Job for Removing Orphaned Cursors
A new job cleans up orphaned cursors from the Federated repository database. This was done to optimize the auto-healing process.
Resolved Issues
JIRA Issue | Component | Severity | Description |
---|---|---|---|
Medium | Medium | Fixed an issue whereby a project admin could not delete a repository associated with a project. | |
RTDEV-44298 | General | Medium | Fixed an issue whereby, from Artifactory version 7.84, AQL searches will undergo throttling, potentially resulting in 429 errors. for more information, see the Known Issues. |
RTDEV-44325 | Repositories | Medium | Fixed an issue related to npm whereby, when performing metadata processing, a connection leak might occur. |
RTDEV-44031 | Packages | Medium | Fixed an issue related to Cargo whereby, updating or creating repository settings through the YAML configuration did not work as expected. |
RTFE-1593 | Repositories | Medium | Fixed an issue related to Helm OCI whereby, the repositories were not displayed on the Repositories page in the JFrog Platform WebUI Administration module as expected. |