-
Notifications
You must be signed in to change notification settings - Fork 2.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Using private repos in addition to the official PyPI #607
Comments
Ugh. Just updated to from 0.12.5 to 0.12.6 and now get
The error goes away when I remove
Edit: Fixed by installing poetry git master. |
Ugh! Specifying the official PyPI is messing with dependency resolution. Try
Now
The first file will pull in the packages |
@madig Did you work around this? |
Yes, with the last snippet on my last comment. This messes with dependency resolving unfortunately, i.e. optional dependencies specified by |
Please also support One use case is that, we need to use If |
Official docs as well require http auth I need one package from it, how can I achieve it? Something like this wiould be cool (same as pip -i):
|
@sdispater sorry to poke you, but can you provide some insight into this? The problem as I see it is that we need a precedence order for source repositories, with the capability to override the order per-dependency. I uploaded my own package to Test PyPI that transitively depends on Related issues: |
If I update to Poetry 1.0.0a3, then I get this error trying to install
|
@thejohnfreeman See #1163 which seems to be caused by 694bef2 |
Did you have any luck with this? Causing a big issue with my packaging at the moment. Poetry passes |
I'm seeing the same issue I believe with |
There has been a lot of improvement in private indices management (see #908). This is available in the latest beta release. |
It werks! Thanks for working on this to everyone involved 😃 |
If anyone comes across this later: here are the docs for controlling package repos. (permalink in the repo if they move) |
Hrm, I have to take my last post back. If I use a private repository and list a package from there as a dependency, transient dependencies such as |
This specific issue can be addressed if a direct download link for the package is available. For example, at the time of this writing poetry add "https://files.pythonhosted.org/packages/f9/dd/b6ba82de8c075d1a795670ae16952a4c1cb21398b4330d8cfb51241e32d7/poetry-1.1.4-py2.py3-none-any.whl" Currently, this results in a [tool.poetry.dependencies]
python = "^3.9"
poetry = {url = "https://files.pythonhosted.org/packages/f9/dd/b6ba82de8c075d1a795670ae16952a4c1cb21398b4330d8cfb51241e32d7/poetry-1.1.4-py2.py3-none-any.whl"} This is mentioned in the docs. In case that changes, here is where that documentation exists in this repository. Unfortunately, if instead the correct version needs to be selected automatically, |
This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs. |
I think this question has been skimmed in other issues, but not dealt with explicitly.
Question
What is the official way to source dependencies both from the public PyPI and from a private repository? I have:
and it seems to work, but is there are "more official" way to say that I use the official PyPI but if a package is missing there, it should be looked up on "private"? Like
pip install --index-url official_pypi --extra-index-url private ...
?The text was updated successfully, but these errors were encountered: