Remove standard http ports from registry URL when writing authToken #62
Conversation
|
out of curiosity, what happens if the npm registry is running on a non-standard port like |
|
I think this might be the relevant commit npm/npm-registry-fetch@cc11cc1 |
I'm testing this against Artifactory with a reverse proxy in front, which for some reason is very opinionated about the use of port 443 when resolving dependencies in package-lock.json files, so I explicitly add the port to the registry URL for resolving and publishing.
You're quite right that the issue relates to use of standard ports. I started a container with
I would assume that port 80 results in the same issue. So it seems the Node URL parsing and token URL matching is not the same for all ports. I'll update this PR to account for port 80 and 443 to match the NPM 8 client behaviour. |
rhiaxion
changed the title
|
Thanks for verifying @rhiaxion ! If @bradrydzewski is happy I think this is good to go. |
The latest release of this plugin included an update of the NPM client from v6 to v8, which changed the authentication behaviour of the client.
If a private registry URL contains standard http port 80 or 443 when performing an
npm login / addusercommand the port number is removed when writing the authToken to the .npmrc file. If the port remains in the authToken registry URL then the token is ignored when running commands likenpm whoamiornpm publishand results in an error asking to runnpm adduser.Because this plugin writes the .npmrc file directly we need to remove the port from the registry URL before writing.
Example:
Invalid
.npmrcauthTokenValid
.npmrcauthToken