Disable authentication when uploading to local pypi server
I'm using pypiserver to start up a local server to host and serve python packages for development inside a sandbox. Is it possible to disable password authentication? The documentation here says
Currently only password-protected uploads are supported!
But further down it also says:
It is also possible to disable authentication even for uploads. To avoid lazy security decisions, read help for -P and -a options
I would like to not have to use a password if the tool supports such a feature since this is only for iterative development. Does anyone know if that's possible?
I would recommend using devpi-server. Related command devpi allows entering user credentials via login subcomamand. The login is then valid for 10 hours and can be stopped by devpi logout.
There are other nice features of devpi-server worth using - e.g. if your uploaded package contains tox.ini, you can call devpi test <packagename>, it will download it, install in temporary virtualenv, run tox in it and push to the devpi server results of the test.
from the documentation: https://pypi.python.org/pypi/pypiserver#detailed-usage
"-P, --passwords PASSWORD_FILE use apache htpasswd file PASSWORD_FILE to set usernames & passwords when authenticating certain actions (see -a option). If you want to allow un-authorized access, set this option and -a explicitly to empty (either '.' or''). "
Based on this you would need to start your server like this:
./pypi-server -p 8080 -P -a
Actually I face the same problem but I'm running it under mod_wsgi. How do you disable authentication there?