pip >=19.2 cannot install packages via custom URLs with "one element" auth #6796
Labels
auto-locked
Outdated issues that have been locked by automation
type: bug
A confirmed bug or unintended behavior
Comments
triage-new-issues
bot
added
the
S: needs triage
triage-new-issues
bot
removed
the
S: needs triage
|
Another bummer with this bug is that pipenv automatically uses the latest pip when instantiating new venv, hence people keep bumping into this. |
|
Nope. Looks like #6795 fixes the problem 👍 |
|
Released pip 19.2.2 containing a fix for this issue. :) |
lock
bot
added
the
auto-locked
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Environment
Description
When trying to install a package from a custom URL that requires authentication (e.g. from GitHub private repo releases), pip doesn't properly handle parsing of "one element" auth info e.g. GitHub access tokens (i.e. without
:like the usualuser:passwordauth info).Expected behavior
I want to be able to install my package from a private GitHub repo with an Auth Token like this:
this works fine with
pip==19.1.1How to Reproduce
pip>=19.2like in the section above.The output should mention a successful download of the package and a "
setup.pynot found" error message (if the release was empty).Workaround
As a workaround one can put
:before or after the access token so the URL looks like:Output
Instead of installing the package, pip fails with "ERROR: HTTP error 404 while getting https://...".
I've created an empty private repo, with an empty release to test that. The output for
pip install -vvv ...can be found here:setup.pynot found error).The issue/difference can be observed around
Starting new HTTPS connection (1): github.com:443.Cause
I've run a
git bisectsession for this issue and it pointed to this commit c63ee61This issue was also discussed at #6775 (see #6775 (comment) and #6775 (comment)).
The text was updated successfully, but these errors were encountered: