-
-
Notifications
You must be signed in to change notification settings - Fork 15
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Symfony flex endpoint order #73
Comments
Hi, To be honest, I had a discussion with Nicolas Grekas end of 2022 and actually there is no need for custom Fex endpoint for libraries. It only makes sense for biggest project with dilated rules and project requirements. You can safely remove the rules from your |
It appears there is no need to update your contrib recipe. Symfony auto-generates recipe for This is the diff without the custom endpoint vs with it: diff --git a/.env b/.env
index 7c0ef70..76bb759 100644
--- a/.env
+++ b/.env
@@ -22,7 +22,7 @@ APP_SECRET=145bfed3ebfb47b7715715040c5745cb
###> lexik/jwt-authentication-bundle ###
JWT_SECRET_KEY=%kernel.project_dir%/config/jwt/private.pem
JWT_PUBLIC_KEY=%kernel.project_dir%/config/jwt/public.pem
-JWT_PASSPHRASE=3d2dfea4221974a1ec339cc22af1dd1c
+JWT_PASSPHRASE=d5a11ca0514bb159968dc573da2ccc5c
###< lexik/jwt-authentication-bundle ###
###> spomky-labs/lexik-jose-bridge ###
diff --git a/composer.json b/composer.json
index 41c94bd..60b019b 100644
--- a/composer.json
+++ b/composer.json
@@ -61,6 +61,10 @@
"extra": {
"symfony": {
"allow-contrib": false,
+ "endpoint": [
+ "flex://defaults",
+ "https://api.github.com/repos/Spomky-Labs/recipes/contents/index.json?ref=main"
+ ],
"require": "5.4.*"
}
}
diff --git a/composer.lock b/composer.lock
index a75c25f..249ed7c 100644
--- a/composer.lock
+++ b/composer.lock
@@ -4,7 +4,7 @@
"Read more about it at https://getcomposer.org/doc/01-basic-usage.md#installing-dependencies",
"This file is @generated automatically"
],
- "content-hash": "95449eba4563344ccea0718f580e889f",
+ "content-hash": "a5d7b134e67c8748b6738933fa0e5dcd",
"packages": [
{
"name": "brick/math",
diff --git a/symfony.lock b/symfony.lock
index 50e4dcd..876dfff 100644
--- a/symfony.lock
+++ b/symfony.lock
@@ -92,6 +92,12 @@
]
},
"web-token/jwt-bundle": {
- "version": "3.1.6"
+ "version": "3.1",
+ "recipe": {
+ "repo": "github.com/Spomky-Labs/recipes",
+ "branch": "tree",
+ "version": "3.0",
+ "ref": "e9872ca728053c5a09ef09ec4712d430f30895d6"
+ }
}
} Thank you very much for your bundle! |
Version(s) affected: v4.0.0
Description
With the provided installation instructions of adding your flex recipes endpoint, Symfony Flex does not honor
extra.symfony.require
anymore.How to reproduce
composer config --json extra.symfony.endpoint '["https://api.github.com/repos/Spomky-Labs/recipes/contents/index.json?ref=main", "flex://defaults"]'
composer update
-> symfony/* packages are updated to latest 6.2.* versionsPossible Solution
Swap the order of
extra.symfony.endpoint
so thatflex://defaults
is first:composer config --json extra.symfony.endpoint '["flex://defaults", "https://api.github.com/repos/Spomky-Labs/recipes/contents/index.json?ref=main"]'
composer update
-> symfony/* packages are downgraded to latest 5.4.* versions as expectedThis has the disadvantage that the recipe for
spomky-labs/lexik-jose-bridge
will be taken from the recipes contrib repo instead of your custom one. See output aftercomposer req spomky-labs/lexik-jose-bridge
:Additional context
This is probably a bug in Symfony Flex, as their instructions propose the order as used by you. I could file the bug with them if you would confirm this is not caused by your custom flex recipe endpoint somehow.
The text was updated successfully, but these errors were encountered: