Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

unearth asks for the username whereas provided in the index url #72

Closed
deronnax opened this issue Sep 22, 2023 · 1 comment · Fixed by #75
Closed

unearth asks for the username whereas provided in the index url #72

deronnax opened this issue Sep 22, 2023 · 1 comment · Fixed by #75

Comments

@deronnax
Copy link
Contributor

Describe the bug

unearth asks for the login whereas it's provided in the index url:

./venv/bin/python -m unearth  --index-url 'https://__token__@gitlab.privaterepo.net/api/v4/projects/privateproject/p
ackages/pypi/simple' privatepackage --verbose
DEBUG: Collecting links from https://***@gitlab.privaterepo.net/api/v4/projects/privateproject/packages/pypi/simple/privatepackage/
DEBUG: Found index url https://__token__@gitlab.privaterepo.net/api/v4/projects/privateproject/packages/pypi/simple
DEBUG: Found index url https://__token__@gitlab.privaterepo.net/api/v4/projects/privateproject/packages/pypi/simple
User for gitlab.privaterepo.net:

We found out the root cause, see additional context

To Reproduce

Expected behavior
unearth should not ask for the login and use the provided username

Screenshots
If applicable, add screenshots to help explain your problem.

System (please complete the following information):

irrelevant

Additional context

We found out why it happens: At first, _get_new_credentials is called, with allow_netrc and allow_keyring set to false. Then unearth will receive a 401, and retry in handle_400s, but getting the url from the Response object, from which the username will have been stripped away from the url (see foot note). We found out that changing the first call to _get_new_credentials to set allow_netrc/allow_keyring to True works as expected (the username is extracted from the netrc/keyring and the query succeed without prompting the user).
So, possible fixes are :

  • either _get_new_credetials should be called first with allow_netrc/allow_keyring set to True
  • either check if a user was set in the url in handle_400s and if so get it back

unearth/src/unearth/auth.py

Line 238 in 66b32c9

username, password = self._get_new_credentials(original_url)

@frostming
Copy link
Owner

First, the credentials in the URL are provided incorrectly and unearth rejects them, you should include a : to split username and password, even any part is empty.

And if the credentials in the URL are not valid, there is no need to extract them from the URL again, that's why it is OK to use resp.url with the auth part stripped.

  • either _get_new_credetials should be called first with allow_netrc/allow_keyring set to True

Yes, that is done in #75

@frostming frostming linked a pull request Oct 10, 2023 that will close this issue
fix: revert the handling of 403 and 404 #75
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: revert the handling of 403 and 404 frostming/unearth
2 participants
@deronnax @frostming