Add latest changes from gitlab-org/gitlab@master

author: GitLab Bot <gitlab-bot@gitlab.com> 2022-04-13 18:08:33 +0000
committer: GitLab Bot <gitlab-bot@gitlab.com> 2022-04-13 18:08:33 +0000
commit: 953eb09e086c8f2842512a62e56e32223b5bf974 (patch)
tree: 3915a57e930263b7c31a1b5e819db50f7d3a609f /doc/user/packages
parent: 907fd5d94ecec19ff7de4986e83e75e6fa082558 (diff)
download: gitlab-ce-953eb09e086c8f2842512a62e56e32223b5bf974.tar.gz
1 files changed, 8 insertions, 0 deletions
diff --git a/doc/user/packages/dependency_proxy/index.md b/doc/user/packages/dependency_proxy/index.md
index 735932642a7..5e66c8ed7a5 100644
--- a/doc/user/packages/dependency_proxy/index.md
+++ b/doc/user/packages/dependency_proxy/index.md
@@ -96,6 +96,14 @@ You can authenticate using:
 Users accessing the Dependency Proxy with a personal access token or username and password must
 have at least the Guest role for the group they pull images from.
 
+The Dependency Proxy follows the [Docker v2 token authentication flow](https://docs.docker.com/registry/spec/auth/token/),
+issuing the client a JWT to use for the pull requests. The JWT issued as a result of authenticating
+expires after some time. When the token expires, most Docker clients store your credentials and
+automatically request a new token without further action.
+
+The token expiration time is a [configurable setting](../../../administration/packages/dependency_proxy.md#changing-the-jwt-expiration).
+On GitLab.com, the expiration time is 15 minutes.
+
 #### SAML SSO
 
 When [SSO enforcement](../../group/saml_sso/index.md#sso-enforcement)
author	GitLab Bot <gitlab-bot@gitlab.com>	2022-04-13 18:08:33 +0000
committer	GitLab Bot <gitlab-bot@gitlab.com>	2022-04-13 18:08:33 +0000
commit	953eb09e086c8f2842512a62e56e32223b5bf974 (patch)
tree	3915a57e930263b7c31a1b5e819db50f7d3a609f /doc/user/packages
parent	907fd5d94ecec19ff7de4986e83e75e6fa082558 (diff)
download	gitlab-ce-953eb09e086c8f2842512a62e56e32223b5bf974.tar.gz