Yarn support #30
Comments
|
This is something I am actively trying to figure out. Seems yarn doesn't pick up the The plan is to create an integration test to fill in these tests so I can start supporting current packager manager CLIs as well as future ones. If you do try out the commands and get the results as per above please do post them as individual issues and we can try and crack on fixing them or finding a way to get it to be compatible. |
|
You're completely right, this is actually Yarn's fault for not reading from my EDIT: Found some relevant issues: |
|
yarn is ignoring authToken for unscoped packages. I have it working okay with other private registry software (sinopia) where we publish all our internal (private) projects with @xxx/name scheme and have all unscoped packages our projects depend on pulled/proxied by this registry as public. There is little you can do on your end to fix this. |
|
Yarn works fine if you manually modify index.json stored in S3 so that the dist.tarball begins with "https://" instead of "http://". Seems like this is a bug with Perhaps a work-around to this problem is to modify put.js so it removes the http: prefix? |
|
...actually it appears that yarn will publish with this field set to registry.yarnpkg.com/... so we might want to blindly overwrite this field (maybe even in the get.js) so that yarn and npm always fetch the tarball from yith. |
|
I was wrong about "//" (no protocol) URLs working in the tarball field. Seems that we always need it to be https://. |
|
Awesome, thanks for taking a look into Will do this as the first fix, great spot! Going to add as a separate feature, the creation of a migration tool for domains so that users can update domains / change them easily. I feel this will become a common use case when you want to add a custom domain and have already published packages on the default API gateway URL. Let me know if you find any other odd behaviour with yarn as would be good to stick a stamp of approval that this project can support it fully. 👍 |
|
This is the change I ended up making to get it to play nice with yarn: diff -r ba95285a8819 yith/src/get.js
--- a/yith/src/get.js Tue Feb 28 14:11:12 2017 -0800
+++ b/yith/src/get.js Wed Mar 01 10:51:21 2017 -0800
@@ -13,11 +13,28 @@
const name = `${decodeURIComponent(event.pathParameters.name)}`;
+ const registryBase =
+ event.headers["X-Forwarded-Proto"] + "://" +
+ event.headers["Host"] + "/" +
+ event.requestContext["stage"] + "/registry/";
try {
const pkgBuffer = await storage.get(`${name}/index.json`);
const json = JSON.parse(pkgBuffer.toString());
json._attachments = {}; // eslint-disable-line no-underscore-dangle
+ if ( json.versions ) {
+ Object.keys(json.versions).forEach((versionName) => {
+ let version = json.versions[versionName];
+ if ( version.dist && version.dist.tarball ) {
+ // Fix tarball to always point back to this install:
+ let components = version.dist.tarball.split('/registry/');
+ if ( components.length > 1 ) {
+ version.dist.tarball = registryBase + components[components.length-1];
+ }
+ }
+ });
+ }
+
return callback(null, {
statusCode: 200,
body: JSON.stringify(json),
diff -r ba95285a8819 yith/src/put.js
--- a/yith/src/put.js Tue Feb 28 14:11:12 2017 -0800
+++ b/yith/src/put.js Wed Mar 01 10:51:21 2017 -0800
@@ -67,8 +67,7 @@
const versionData = pkg.versions[version];
const tarballFilename = encodeURIComponent(versionData.dist.tarball.split('/-/')[1]);
- const tarballBaseUrl = versionData.dist.tarball.split('/registry/')[0];
- versionData.dist.tarball = `${tarballBaseUrl}/registry/${pathParameters.name}/-/${tarballFilename}`;
+ versionData.dist.tarball = `/registry/${pathParameters.name}/-/${tarballFilename}`;
let json = {};The advantage of the above implementation is there is no need to "migrate" existing index.json files, since we process the json in the GET. |
|
Not 100% sure how you resolved the auth issue, I presume you are using scoped packages as @panva mentioned to ensure the auth token gets sent. Having a quick play with yarn has also uncovered a change in regards to the way yarn sets up login, will need to shift OTP for 2FA of GitHub to the password field, it should really be there anyway. Currently I can't quite get it to play nice at all with a scoped registry, GitHub and 2FA. Thanks for the code snippet but would much rather get the root cause resolved. The migration script will have to be done regardless as we already would have a use for it currently. I will also schedule some time to do some more thorough testing with yarn to see what other amends need to be done other than the OTP. |
|
@jonsharratt no need to use scoped packages. The latest yarn version 0.21.3 worked out-of-the box for me. I did not use 2FA, but here is how I set-up things: [a] I deployed yith 0.9.0 with the above patch. [b] In my local dev box I updated to yarn version 0.21.3. [c] I ran (npm version 4.0.5): npm set registry https://XXX.execute-api.us-west-2.amazonaws.com/STAGE/registry/
npm loginNote that ~/.yarnrc is pretty much empty, and ~/.npmrc just has the registry and auth token. Not sure about scoped registries, as I simply ran |
|
So to further to this, having done a bit of testing with #48 as @panva mentioned it will work with scoped packages as yarn will send the auth token. Without scopes it does not appear to, I am on the same version of yarn as yourself. Current investigations mean that:
Need to look into the related issues and look at yarn to understand whether it will ever be possible to support it. |
|
Yikes, I omitted one critical piece of information. You need to add this to the end of your .npmrc for it to work with non-scoped packages: always-auth=true |
|
Amazing @brimworks! Will continue testing tomorrow and then it looks like Thanks for all your assistance on this, so cool to get this on confirmed and working. |
|
@brimworks #30 (comment) great! |
This is a Feature Proposal
Description
I created a
.npmrcin my home folder, then tried to useyarn publishin a project.I got the following in my terminal:
It should have published like
npm publishwould have.Additional Data
The text was updated successfully, but these errors were encountered: