Skip to main content

Repository Management

The Repository Firewall license enables access to the Repository Managers hierarchy on the Organizations and Policies section of IQ Server. Similar to managing organizations and applications, from the Repository Management pages administrators may centrally manage policies, access controls, and configuration for Repository Firewall from within the IQ Server.

Tip

The features discussed in this section require a Repository Firewall license.

In this topic, we will use the following terms as they may refer to more than one thing:

  • repository manager - refers to the artifact repository that is connected to the IQ Server (eg. Nexus Repository, JFrog Artifactory)

  • repository - refer to the individual repository configured in a repository manager (eg. maven-central, npm hosted, etc.)

  • proxy/remote - refers to a repository where components are downloaded from public repositories

  • hosted - refers to a repository where components are stored on the repository manager

repo-mgm-configuration.png

Repository Managers overview page

The top-level container listing the repository managers configured with Repository Firewall. After a repository manager has been connected to the IQ Server, it is added here with a unique identifier. See the Repository Firewall Guided Setup for details on connecting a repository manager.

In this view, all the repository managers connected to the IQ Server may be managed at a high level. Here are the options available in this view:

  • Set universal policies and policy inheritance for use on all repository managers and their proxy repositories

  • Assign access to all repository managers

  • Set namespace protection for all repository managers

Repository Managers Overview sections

The overview page has the following sections that may be configured for all repositories:

Configuration

List of repository managers with their configured repositories in a nested table.

  • The repository name and format filters may used to limit the list displayed

  • Selecting a proxy repository will open the repository audit results. See Repository Results for details

  • Selecting a hosted repository will open the hosted repository configuration page

  • Repositories may be removed from the configuration using the trashcan icon for that repository

    (Note: this action will not delete the repository from the repository manager)

Policy

Inherited policies from the root organization and custom policies set for all repository managers.

  • Policy actions may be overridden for all repository managers when enabled at the root organization.

  • Firewall policies can be added for all repository managers. These policies are not scoped to organizations or applications.

Namespace Confusion Protection

List of namespaces protected for all repositories. See Namespace Confusion Protection

Access

Access control for who may view repository audit reports or manage the Firewall configuration.

Edit the repository manager label

The unique identifier for any repository manager may be modified with a human-recognizable name for easier identification. We recommend using a name that is common to users in your organization.

  1. Select the pencil icon on the right of the repository instance to Edit the name.

  2. Edit the Repository Manager Name to a meaningful identifier

  3. Select Update to save

repo-mgm-edit-name.png

Single repository manager view

From the left-hand menu dropdown, you may access the details page for a single repository manager. This view will let you manage configuring for a specific repository manager.

  1. When the complete listing of repository managers is not displayed, selecting the Repository Managers title will drop down the complete listing of repository managers.

  2. Selecting a single repository manager in the list will navigate to this repository manager's view.

repo-mgm-dropdown.png

Single repository manager sections

The single repository manager view has the same sections as the overview page however they are only scoped to the single repository. This provides for more granular access control for to the individual repository manager's configuration as well as allows for policies to be scoped to the single repository manager.

Single repository manager actions

The single repository manager view provides the actions menu that pertains to only this repository manager.

Repository Manager ID to Clipboard

The unique repository manager ID can be used to identify the instance in log files in IQ Server or in Nexus Repository even after the repository manager name has been set to a human-readable name.

Edit Repository Manager Name

Opens the Edit repository manager name dialog as shown above.

Delete [Repository Manager name]

Used to remove the repository manager from the IQ Server configuration.

Screenshot_2024-02-15_at_6_36_45_PM.png