NotificationsYou must be signed in to change notification settings
Fork0
Star0

Commit5fb0b09

committed

feat: Support legacy authentication

1 parent187b823 commit5fb0b09Copy full SHA for 5fb0b09

File tree

6 files changed

+37

-17

lines changed

6 files changed

+37

-17

lines changed

`‎README.md‎`

Lines changed: 21 additions & 3 deletions

Original file line number	Diff line number	Diff line change
@@ -20,11 +20,26 @@ Publish the package on the `npm` registry.
`20`	`20`
`21`	`21`	`##Configuration`
`22`	`22`
`23`		-For each plugin, the`npm` authentication token has to be configured with the environment variable`NPM_TOKEN`.
	`23`	`+###Environment variables`
`24`	`24`
`25`		-All the plugins are based on`npm`and will use theconfigurationfrom`.npmrc`. Any parameter returned by`npm config list` willbeused by each plugin.
	`25`	+The`npm`authenticationconfigurationisrequired and canbeset via environment variables.
`26`	`26`
`27`		-The registry and dist-tag can be configured in the`package.json` and will take precedence on the configuration in`.npmrc`:
	`27`	+Both the[token](https://docs.npmjs.com/getting-started/working_with_tokens) and the legacy (`username`,`password` and`email`) authentication are supported. It is recommended to use the[token](https://docs.npmjs.com/getting-started/working_with_tokens) authentication. The legacy authentication is supported as the alternative npm registries[Artifactory](https://www.jfrog.com/open-source/#os-arti) and[npm-registry-couchapp](https://github.com/npm/npm-registry-couchapp) only supports that form of authentication at this point.
	`28`	`+`
	`29`	`+\| Variable \| Description`
	`30`	`+\| --------------\| -----------------------------------------------------------------------------------------------------------------------------\|`
	`31`	+\|`NPM_TOKEN`\| Npm token created via[npm token create](https://docs.npmjs.com/getting-started/working_with_tokens#how-to-create-new-tokens)\|
	`32`	+\|`NPM_USERNAME`\| Npm username created via[npm adduser](https://docs.npmjs.com/cli/adduser) or on[npmjs.com](https://www.npmjs.com)\|
	`33`	+\|`NPM_PASSWORD`\| Password of the npm user.\|
	`34`	+\|`NPM_EMAIL`\| Email address associated with the npm user\|
	`35`	`+`
	`36`	+Use either`NPM_TOKEN` for token authentication or`NPM_USERNAME`,`NPM_PASSWORD` and`NPM_EMAIL` for legacy authentication
	`37`	`+`
	`38`	`+###Options`
	`39`	`+`
	`40`	+The plugins are based on`npm` and will use the configuration from[`.npmrc`](https://docs.npmjs.com/files/npmrc). See[npm config](https://docs.npmjs.com/misc/config) for the option list.
	`41`	`+`
	`42`	+The[`registry`](https://docs.npmjs.com/misc/registry) and[`dist-tag`](https://docs.npmjs.com/cli/dist-tag) can be configured in the`package.json` and will take precedence over the configuration in`.npmrc`:
`28`	`43`	```json
`29`	`44`	`{`
`30`	`45`	`"publishConfig": {`
@@ -33,6 +48,9 @@ The registry and dist-tag can be configured in the `package.json` and will take
`33`	`48`	`}`
`34`	`49`	`}`
`35`	`50`	```
	`51`	`+`
	`52`	`+###Usage`
	`53`	`+`
`36`	`54`	`The plugins are used by default by[semantic-release](https://github.com/semantic-release/semantic-release) so no specific configuration is requiered to use them.`
`37`	`55`
`38`	`56`	Each individual plugin can be disabled, replaced or used with other plugins in the`package.json`:

`‎index.js‎`

Lines changed: 4 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -1,3 +1,4 @@`
	`1`	`+constsetLegacyToken=require('./lib/set-legacy-token');`
`1`	`2`	`constgetPkg=require('./lib/get-pkg');`
`2`	`3`	`constverifyNpm=require('./lib/verify');`
`3`	`4`	`constpublishNpm=require('./lib/publish');`
`@@ -6,12 +7,14 @@ const getLastReleaseNpm = require('./lib/get-last-release');`
`6`	`7`	`letverified;`
`7`	`8`
`8`	`9`	`asyncfunctionverifyConditions(pluginConfig,{logger}){`
	`10`	`+setLegacyToken();`
`9`	`11`	`constpkg=awaitgetPkg();`
`10`	`12`	`awaitverifyNpm(pkg,logger);`
`11`	`13`	`verified=true;`
`12`	`14`	`}`
`13`	`15`
`14`	`16`	`asyncfunctiongetLastRelease(pluginConfig,{logger}){`
	`17`	`+setLegacyToken();`
`15`	`18`	`// Reload package.json in case a previous external step updated it`
`16`	`19`	`constpkg=awaitgetPkg();`
`17`	`20`	`if(!verified){`
`@@ -22,6 +25,7 @@ async function getLastRelease(pluginConfig, {logger}) {`
`22`	`25`	`}`
`23`	`26`
`24`	`27`	`asyncfunctionpublish(pluginConfig,{nextRelease:{version}, logger}){`
	`28`	`+setLegacyToken();`
`25`	`29`	`// Reload package.json in case a previous external step updated it`
`26`	`30`	`constpkg=awaitgetPkg();`
`27`	`31`	`if(!verified){`

`‎lib/set-legacy-token.js‎`

Lines changed: 8 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,8 @@`
	`1`	`+module.exports=()=>{`
	`2`	+// Set the environment variable `LEGACY_TOKEN` when user use the legacy auth, so it can be resolved by npm CLI
	`3`	`+if(process.env.NPM_USERNAME&&process.env.NPM_PASSWORD&&process.env.NPM_EMAIL){`
	`4`	+process.env.LEGACY_TOKEN=Buffer.from(`${process.env.NPM_USERNAME}:${process.env.NPM_PASSWORD}`,'utf8').toString(
	`5`	`+'base64'`
	`6`	`+);`
	`7`	`+}`
	`8`	`+};`

`‎lib/set-npmrc-auth.js‎`

Lines changed: 1 addition & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -11,12 +11,7 @@ module.exports = async (registry, logger) => {`
`11`	`11`	`return;`
`12`	`12`	`}`
`13`	`13`	`if(NPM_USERNAME&&NPM_PASSWORD&&NPM_EMAIL){`
`14`		`-// Using the old auth token format is not considered part of the public API`
`15`		`-// This might go away anytime (i.e. once we have a better testing strategy)`
`16`		`-awaitappendFile(`
`17`		`-'./.npmrc',`
`18`		-`\n_auth =${Buffer.from(`${NPM_USERNAME}:${NPM_PASSWORD}`,'utf8').toString('base64')}\nemail = \${NPM_EMAIL}`
`19`		`-);`
	`14`	+awaitappendFile('./.npmrc',`\n_auth =${Buffer.from(`\${LEGACY_TOKEN}\nemail = \${NPM_EMAIL}`)}`);
`20`	`15`	`logger.log('Wrote NPM_USERNAME, NPM_PASSWORD and NPM_EMAIL to .npmrc.');`
`21`	`16`	`}elseif(NPM_TOKEN){`
`22`	`17`	awaitappendFile('./.npmrc',`\n${nerfDart(registry)}:_authToken = \${NPM_TOKEN}`);

`‎test/integration.test.js‎`

Lines changed: 2 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -11,11 +11,11 @@ let processStderr;`
`11`	`11`	`letprocessStdout;`
`12`	`12`
`13`	`13`	`test.before(async()=>{`
`14`		`-// Start the local NPM registry`
`15`		`-awaitnpmRegistry.start();`
`16`	`14`	`// Disable npm logger during tests`
`17`	`15`	`processStderr=stub(process.stderr,'write');`
`18`	`16`	`processStdout=stub(process.stdout,'write');`
	`17`	`+// Start the local NPM registry`
	`18`	`+awaitnpmRegistry.start();`
`19`	`19`	`});`
`20`	`20`
`21`	`21`	`test.beforeEach(t=>{`

`‎test/set-npmrc-auth.test.js‎`

Lines changed: 1 addition & 6 deletions

Original file line number	Diff line number	Diff line change
`@@ -45,12 +45,7 @@ test.serial('Set auth with "NPM_USERNAME", "NPM_PASSWORD" and "NPM_EMAIL"', asyn`
`45`	`45`	`awaitsetNpmrcAuth('http://custom.registry.com',t.context.logger);`
`46`	`46`
`47`	`47`	`constnpmrc=(awaitreadFile('.npmrc')).toString();`
`48`		`-t.regex(`
`49`		`-npmrc,`
`50`		`-newRegExp(`
`51`		-`_auth =${Buffer.from('npm_username:npm_pasword','utf8').toString('base64')}\\W+email = \\\${NPM_EMAIL}`
`52`		`-)`
`53`		`-);`
	`48`	+t.is(npmrc,`\n_auth = \${LEGACY_TOKEN}\nemail = \${NPM_EMAIL}`);
`54`	`49`
`55`	`50`	`t.true(t.context.log.calledWith('Wrote NPM_USERNAME, NPM_PASSWORD and NPM_EMAIL to .npmrc.'));`
`56`	`51`	`});`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit5fb0b09

File tree

6 files changed

6 files changed

`‎README.md‎`

`‎index.js‎`

`‎lib/set-legacy-token.js‎`

`‎lib/set-npmrc-auth.js‎`

`‎test/integration.test.js‎`

`‎test/set-npmrc-auth.test.js‎`

0 commit comments