我正在尝试使用Poetry设置Azure Devops,以发布到PyPI feed。
我知道关于Twine身份验证和将凭据存储到Azure Key Vault。但是否有更简单直接的方法?类似这样:
- script: |
source .venv/bin/activate
poetry build
displayName: Build wheel
- script: |
source .venv/bin/activate
poetry publish -u USER -p PASS
displayName: Publish wheel
可以的。在Azure DevOps网页界面中:
username和password的秘密管线变量,其值为PyPI凭据(Pipelines > Edit > Variables > New variable > Keep this value secret > OK)。azure-pipelines.yml CI文件:trigger:
- master
pool:
vmImage: ubuntu-latest
steps:
- task: UsePythonVersion@0
inputs:
versionSpec: 3.7
displayName: Install Python
- script: |
python -m pip install -U pip
pip install poetry
poetry install
displayName: Install software
- script: |
poetry run python -m unittest discover tests/ -v
displayName: Test software
- script: |
poetry build
displayName: Package software
- script: |
poetry config repositories.azure https://pkgs.dev.azure.com/{your organization}/_packaging/{your feed}/pypi/upload
poetry config http-basic.azure $(username) $(password)
poetry publish -r azure
exit 0
displayName: Publish software
我们考虑使用 poetry 构建项目,并使用 twine 发布,这样我们就可以利用 Azure 的 TwineAuthenticate 了:
steps:
- task: UsePythonVersion@0
inputs:
versionSpec: '$(python.version)'
displayName: 'Use Python $(python.version)'
- script: |
python -m pip install --upgrade pip
pip install poetry
pip install twine
poetry install --no-dev
displayName: 'Install dependencies'
- script: |
poetry build
displayName: 'Build package'
- task: TwineAuthenticate@1
inputs:
artifactFeed: 'repo-name/feed-name'
- script: |
twine upload -r repo-name --config-file $(PYPIRC_PATH) dist/*.whl
displayName: Upload package to Azure Artifact
您可能需要使用$(System.AccessToken)变量:
- task: Bash@3
inputs:
targetType: 'inline'
script: |
poetry config repositories.myazurepypi https://myorg.pkgs.visualstudio.com/123415462134546/_packaging/lcp-tools/pypi/upload/
poetry publish -r myazurepypi -u a -p $(System.AccessToken)
azure-pipelines.yml文件中以明文形式编写你的凭据(因为你要求一个简单直接的解决方案)。 - Géry Ogam