Open
Description
Hi, I'm trying to use uv with a private simpleindex server which will conditionally route requests for different packages to different upstream indices.
One of the upstream indices requires auth, which is defined in a ~/.netrc file; when I try to connect directly to that index, uv pip install correctly picks up the defined credentials. However, when I try to connect to simpleindex, the server returns an HTTP 302, and then UV fails to pick up the defined credentials for the redirected host.
Standard pip does correctly include credentials in requests triggered by a 302.
UV Platform: Ubuntu 20.04.6 LTS
UV Version: 0.2.31
Expected flow
- UV makes a request to {{URL 1}}
- {{URL 1}} returns a 302 redirecting to {{URL 2}}
- UV makes a request to {{URL 2}} with basic auth from
~/.netrc
Actual flow
- UV makes a request to {{URL 1}}
- {{URL 1}} returns a 302 redirecting to {{URL 2}}
- UV makes a request to {{URL 2}} with no auth (checked with mitmproxy that the auth header is not present)
The command I'm running is:
env RUST_LOG=trace UV_INDEX_URL="http://127.0.0.1:8085/" uv pip install --dry-run '{{ package in private index}}' --no-cache -vvv(where http://127.0.0.1:8085/ is the simpleindex URL)
Full trace output
0.000030s DEBUG uv uv 0.2.31
uv_requirements::specification::from_source source={{PACKAGE SPECIFIER}}
0.001984s DEBUG uv_python::discovery Searching for Python interpreter in system path
0.002083s TRACE uv_python::interpreter Querying interpreter executable at /home/ubuntu/tmp/simple-index/.venv/bin/python3
0.060733s DEBUG uv_python::discovery Found `cpython-3.11.9-linux-x86_64-gnu` at `/home/ubuntu/tmp/simple-index/.venv/bin/python3` (active virtual environment)
0.060776s DEBUG uv::commands::pip::install Using Python 3.11.9 environment at .venv/bin/python3
0.061281s TRACE uv_fs Checking lock for `.venv`
0.061312s DEBUG uv_fs Acquired lock for `.venv`
0.061996s DEBUG uv::commands::pip::install At least one requirement is not satisfied: {{PACKAGE SPECIFIER}}
uv_client::linehaul::linehaul
0.063217s DEBUG uv_client::base_client Using request timeout of 30s
uv_resolver::flat_index::from_entries
uv_resolver::resolver::solve
0.068887s 0ms DEBUG uv_resolver::resolver Solving with installed Python version: 3.11.9
uv_resolver::resolver::choose_version package=root
uv_resolver::resolver::get_dependencies_forking package=root, version=0a0.dev0
uv_resolver::resolver::get_dependencies package=root, version=0a0.dev0
0.069025s 0ms DEBUG uv_resolver::resolver Adding direct dependency: {{PACKAGE SPECIFIER}}
0.069051s 0ms INFO pubgrub::internal::partial_solution add_decision: root @ 0a0.dev0
uv_resolver::resolver::choose_version package={{PACKAGE NAME}}
uv_resolver::resolver::process_request request=Versions {{PACKAGE NAME}}
uv_client::registry_client::simple_api package={{PACKAGE NAME}}
0.069339s 0ms TRACE uv_client::registry_client Fetching metadata for {{PACKAGE NAME}} from http://127.0.0.1:8085/{{PACKAGE NAME}}/
uv_client::cached_client::get_cacheable
uv_client::cached_client::read_and_parse_cache file=/tmp/.tmpKmpDVH/simple-v10/index/2a5a9429a02c276a/{{PACKAGE NAME}}.rkyv
uv_resolver::resolver::process_request request=Prefetch {{PACKAGE NAME}} ==0.1.0
uv_client::cached_client::from_path_sync path="/tmp/.tmpKmpDVH/simple-v10/index/2a5a9429a02c276a/{{PACKAGE NAME}}.rkyv"
0.069795s 0ms TRACE uv_client::cached_client No cache entry exists for /tmp/.tmpKmpDVH/simple-v10/index/2a5a9429a02c276a/{{PACKAGE NAME}}.rkyv
0.069824s 0ms DEBUG uv_client::cached_client No cache entry for: http://127.0.0.1:8085/{{PACKAGE NAME}}/
uv_client::cached_client::fresh_request url="http://127.0.0.1:8085/{{PACKAGE NAME}}/"
0.069859s 0ms TRACE uv_client::cached_client Sending fresh GET request for http://127.0.0.1:8085/{{PACKAGE NAME}}/
0.069886s 0ms TRACE uv_auth::middleware Handling request for http://127.0.0.1:8085/{{PACKAGE NAME}}/
0.069894s 0ms TRACE uv_auth::middleware Request for http://127.0.0.1:8085/{{PACKAGE NAME}}/ is unauthenticated, checking cache
0.069917s 0ms TRACE uv_auth::cache No credentials in cache for URL http://127.0.0.1:8085/{{PACKAGE NAME}}/
0.069927s 0ms TRACE uv_auth::middleware Attempting unauthenticated request for http://127.0.0.1:8085/{{PACKAGE NAME}}/
0.069969s 0ms TRACE hyper_util::client::legacy::pool checkout waiting for idle connection: ("http", 127.0.0.1:8085)
0.070003s 0ms DEBUG reqwest::connect starting new connection: http://127.0.0.1:8085/
0.070030s 0ms TRACE hyper_util::client::legacy::connect::http Http::connect; scheme=Some("http"), host=Some("127.0.0.1"), port=Some(Port(8085))
0.070046s 0ms DEBUG hyper_util::client::legacy::connect::http connecting to 127.0.0.1:8085
0.070165s 0ms DEBUG hyper_util::client::legacy::connect::http connected to 127.0.0.1:8085
0.070196s 0ms TRACE hyper_util::client::legacy::client http1 handshake complete, spawning background dispatcher task
0.070240s 0ms TRACE hyper_util::client::legacy::pool checkout dropped for ("http", 127.0.0.1:8085)
0.098371s 28ms TRACE hyper_util::client::legacy::pool put; add idle connection for ("http", 127.0.0.1:8085)
0.098415s 28ms DEBUG hyper_util::client::legacy::pool pooling idle connection for ("http", 127.0.0.1:8085)
0.098449s 28ms DEBUG reqwest::async_impl::client redirecting 'http://127.0.0.1:8085/{{PACKAGE NAME}}/' to 'https://{{PASSWORD PROTECTED UPSTREAM}}/{{PACKAGE NAME}}'
0.098479s 28ms TRACE hyper_util::client::legacy::pool checkout waiting for idle connection: ("https", {{PASSWORD PROTECTED UPSTREAM}})
0.098491s 28ms DEBUG reqwest::connect starting new connection: https://{{PASSWORD PROTECTED UPSTREAM}}/
0.098514s 28ms TRACE hyper_util::client::legacy::connect::http Http::connect; scheme=Some("https"), host=Some("{{PASSWORD PROTECTED UPSTREAM}}"), port=None
0.098559s DEBUG hyper_util::client::legacy::connect::dns resolving host="{{PASSWORD PROTECTED UPSTREAM}}"
0.099636s 29ms DEBUG hyper_util::client::legacy::connect::http connecting to 10.200.22.171:443
0.099849s 30ms DEBUG hyper_util::client::legacy::connect::http connected to 10.200.22.171:443
0.101716s 31ms TRACE hyper_util::client::legacy::client http1 handshake complete, spawning background dispatcher task
0.101766s 31ms TRACE hyper_util::client::legacy::pool checkout dropped for ("https", {{PASSWORD PROTECTED UPSTREAM}})
0.104158s 34ms TRACE hyper_util::client::legacy::pool put; add idle connection for ("https", {{PASSWORD PROTECTED UPSTREAM}})
0.104179s 34ms DEBUG hyper_util::client::legacy::pool pooling idle connection for ("https", {{PASSWORD PROTECTED UPSTREAM}})
0.104192s 34ms TRACE uv_auth::middleware Request for http://127.0.0.1:8085/{{PACKAGE NAME}}/ failed with 401 Unauthorized, checking for credentials
0.104207s 34ms TRACE uv_auth::cache No credentials in cache for realm http://127.0.0.1:8085
0.104384s 34ms DEBUG uv_auth::middleware Checking netrc for credentials for http://127.0.0.1:8085/{{PACKAGE NAME}}/
0.104559s TRACE uv_resolver::resolver Received package metadata for: {{PACKAGE NAME}}
0.104617s 35ms DEBUG uv_resolver::resolver Searching for a compatible version of {{PACKAGE NAME}} (==0.1.0)
0.104641s 35ms TRACE uv_resolver::candidate_selector selecting candidate for package {{PACKAGE NAME}} with range Range { segments: [(Included("0.1.0"), Included("0.1.0"))] } with 0 remote versions
0.104657s 35ms DEBUG uv_resolver::resolver No compatible version found for: {{PACKAGE NAME}}
0.104669s 35ms INFO pubgrub::internal::core Start conflict resolution because incompat satisfied:
{{PACKAGE NAME}} ==0.1.0 is forbidden
0.104699s 35ms INFO pubgrub::internal::core prior cause: root ==0a0.dev0 is forbidden
× No solution found when resolving dependencies:
╰─▶ Because {{PACKAGE NAME}} was not found in the package registry and you require
{{PACKAGE SPECIFIER}}, we can conclude that the requirements are unsatisfiable.
Activity