Fix authentication with JFrog artifactories

astral-sh · Mar 21, 2024 · 4e05ed8 · 4e05ed8
1 parent 2375008
commit 4e05ed8
Show file tree

Hide file tree

Showing 3 changed files with 9 additions and 1 deletion.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/crates/uv-auth/Cargo.toml b/crates/uv-auth/Cargo.toml
@@ -14,6 +14,7 @@ task-local-extensions = { workspace = true }
 thiserror = { workspace = true }
 tracing = { workspace = true }
 url = { workspace = true }
+urlencoding = { workspace = true }
 once_cell = { workspace = true }
 
 [dev-dependencies]

diff --git a/crates/uv-auth/src/store.rs b/crates/uv-auth/src/store.rs
@@ -100,7 +100,13 @@ impl AuthenticationStore {
             return;
         }
         let auth = UrlAuthData {
-            username: url.username().to_string(),
+            // Using the encoded username can break authentication when `@` is converted to `%40`
+            // so we decode it for storage; RFC7617 does not explicitly say that authentication should
+            // not be percent-encoded, but the omission of percent-encoding from all encoding discussion
+            // indicates that it probably should not be done.
+            username: urlencoding::decode(url.username())
+                .expect("An encoded username should always decode")
+                .into_owned(),
             password: url.password().map(str::to_string),
         };
         credentials.insert(netloc, Some(Credential::UrlEncoded(auth)));