feature: access to the repository only to members

[strausmann]

Hello,

Is there a way to allow only deposited users access to the repository via username and password or a token? If possible, these users / tokens should be managed by means of an API request.

Thanks

Regards
Bjoern

[tyler-sommer]

This feature was actually added in 3.2.

Specify secure_satis: true in your config.yml and users will be required to login with the username and password (also configured in config.yml) to see or download any packages.

Excerpt example from config.yml:

#... other config items

packages:
  # If set, username and password will be required when attempting to access
  # Satis-generated files.
  secure_satis:  false # Change this to true

I'm closing this issue. Please open a new one if you have any other problems.

Thanks again for using Packages!

[strausmann]

Hello Tyler,

thank you for the answer. I have now enabled this feature secure_satis: true and has the problem that has nothing changed.
only after i am clear the folder cache and satis and run /bin/console satis:build finished the securing for satis.

now composer asks to username and password, how can i now manage this users?
the managed user are not working

And now i see that the /packages URI is protected too.
Can i would like to change it separat, please. Can you change this ?

Thank you,

Regards,

Bjoern