Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
[Feature] Dockerfile verdaccio 4.2.2 with verdaccio-ldap example
See original GitHub issueCongratulation everyone who tested, contributed to Verdaccio 🎉 v4 ! 🎈
I am creating this ticket to help others, its aims to provide information to people whiling to use Verdaccio v4.2.2 and verdaccio-ldap with 🐳 Docker.
Dockerfile
FROM verdaccio/verdaccio:4.2.2
USER root
RUN npm i && npm i verdaccio-ldap
USER verdaccio
Note: you need to switch to root user in order to use npm.
Testing
Status: in progress
Authentication
plugin
- it should work with
verdaccio-htaccesswhenverdaccio-ldapis not installed. ✔️ - it should work with
verdaccio-htaccesswhenauth.ldapis disabled andverdaccio-ldapis installed. ✔️ - it should work with one
verdaccio-ldap. ✔️ - it should work with
verdaccio-htaccessand fallback toverdaccio-ldapthrough web. ✔️ - it should work with
verdaccio-htaccessand fallback toverdaccio-ldapthrough npm. ❌ Either useverdaccio-htaccessorverdaccio-ldap, it is useless to use both, even if the web work with the two, thenpm --add-usercommand will fail.
npm
-
npm --addusershould work with different users. ✔️ -
npm --addusershould fail with wrong user/password. ✔️ - it should auth with JWT and the
verdaccio-ldapplugin. ✔️ - it should auth with legacy and the
verdaccio-ldapplugin. ✔️ -
npm iin CI that download from the registry should spam the LDAP with authentication requests with legaxy. ✔️ -
npm iin CI that download from the registry should not spam the LDAP with authentication requests with JWT. ✔️
Web
The new design with material-UI is super nice btw.
- it should authenticate with different users. ✔️
- it should fail to authenticate with different users and wrong password. ✔️
- it should show packages to users with
accesspermissions. ✔️ - it should hide packages to users without
accesspermissions. ✔️
Packages permissions
-
accessshould work with a user with perms. ✔️ -
accessshould fail with a user without perms… ✔️ -
accessshould work with a user in ldap group with perms. ✔️ -
accessshould fail with a user not in ldap group with perms. ✔️ -
publishshould work with a user with perms. ✔️ -
publishshould work with a user in ldap group with perms. ✔️ For this, I add to configure the environmentVERDACCIO_USER_UIDto be as my host account (within docker you can’t chown/chmod), and from my host I had to givechmod -R 777to thestoragedirectory, otherwise I was having404withhttp <-- 404, user: dka(127.0.0.1), req: 'PUT /@scope%2fdocx2latex', error: no such package available -
publishshould fail with a user not in ldap group without perms. ✔️ -
unpublishshould work with a user with perms. ✔️ -
unpublishshould fail with a user without perms. ✔️ -
unpublishshould work with a ldap group with perms. ✔️ For this one:I’d like to know if users with permissions can unpublish a package that is one year’s old, or there is a limit of time like in npm registry to unpublish @juanpicado? -
unpublishshould fail with a user not in ldap group with perms. ✔️
Issue Analytics
- State:
- Created 4 years ago
- Comments:5 (2 by maintainers)
Top Results From Across the Web
Upgrade from v3.x to verdaccio 4.x with LDAP and Docker
A running LDAP database (such as OpenLDAP). Docker installed. Goal. Update Verdaccio from v3.x to v4.x. Configure LDAP.
Read more >docker-compose Verdaccio LDAP - npm - Stack Overflow
First of all, it depends how you are deploying Verdaccio, but, I'll assume you are using Docker. There there is a full example...
Read more >verdaccio-ldap - npm
A detailed example of the verdaccio-ldap plugin + OpenLDAP server packed in Docker for v3 is available here and for v4 here.
Read more >ZDMP: Zero Defects Manufacturing Platform WP1: Management
4.2.2. Planned Activities . ... The features provided by WP6 components represent the basic elements to create a ... for calling ZDMP APIs...
Read more >unRaid App List - GitHub Pages
It's inspired by SUI and has all the same features as SUI, such as simple customization ... Verdaccio comes out of the box...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
Thanks, I will do my best to write something soon while it is still fresh in my head.
hi @kopax, thanks for the kind words. Since I see you are in action again, I’d recommend the following:
For me, a ticket means either an issue or a feature request. I still allow questions due the low traffic, but, the better is pick one of options above rather pollute this ticket.
LDAP is out of my scope, since is not part our organization I cannot help, that’s the plugin author responsibility, about, the web.logo issue you are reporting, if is a bug, then, the better is create a ticket with full information on it and put it in the queue, eventually will be fixed.
This format seems not fully fine, sometimes you will need to deal with permissions and compilers.Never-mind, I did not read it correctly.Docker permissions was a common issue, there are plenty of references in our database, se an example https://github.com/verdaccio/docker-examples/blob/master/amazon-s3-docker-example/v4/s3Plugin/Dockerfile