Pipenv workflow for private authenticated package indexes like Artifactory
See original GitHub issueHi there, I’m looking to switch from plain old pip to pipenv but I’m having trouble finding a comparable workflow for private package indexes that require HTTP Basic Auth specified in the index URL.
With plain old pip (9.0.1), it’s quite easy to point to a package index with basic auth using ~/.pip/pip.conf
or $VIRTUAL_ENV/pip.conf
:
[global]
index-url = https://MY_USERNAME:MY_PASSWORD@some.artifactory.mycorp.com/artifactory/api/pypi/python/simple
Because of the basic auth in the URL, it’s actually beneficial that this is kept separate from our dependencies. We track our requirements in git; meanwhile the creds are kept in an untracked config file that varies for each member of our team (since they’ll all have their own personal creds).
Can pipenv support a workflow like this?
FWIW I tried removing the [[sources]]
section in hopes that it would fall back to pip.conf
, but no such luck. At least for us, this would be quite amenable as every package is expected to be pulled from our single private index anyway.
Thanks!
Describe your environment
- OSX 10.12
- Python version: 3.6.2
- Pipenv version: 9.0.3
Issue Analytics
- State:
- Created 6 years ago
- Reactions:6
- Comments:5 (2 by maintainers)
Top GitHub Comments
+1’d OP as this has become something very needed for those of us in more secured environments where an internal “proxy”
pip
(like Artifactory) is the only way to get external pip packages.Thanks @techalchemy - I see the way to accomplish this now. https://docs.pipenv.org/advanced/#specifying-package-indexes