keyring backend for GitLab package indexes
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Project description
keyring-gitlab-pypi is a backend for keyring which recognises GitLab package registry URLs.
It is designed for use with uv.
Using it locally
-
Install keyring with this backend
uv tool install keyring --with keyring-gitlab-pypi
-
Create a personal access token with
read_apiscope and add it to~/.config/gitlab-pypi.toml:["https://gitlab.com"] token = "<token>"
-
Configure
keyring-providerin uv:-
using an environment variable:
export UV_KEYRING_PROVIDER=subprocess
-
or in
uv.toml:keyring-provider = "subprocess"
-
or using the option
uv sync --keyring-provider=subprocess
-
-
Configure one or more GitLab package indexes
For example, in
pyproject.toml:[[tool.uv.index]] name = "myindex" url = "https://gitlab.example.com/api/v4/projects/1/packages/pypi/simple" authenticate = "always"
Note
You need
authenticate = "always"for uv to invoke keyring when no username is specified. This option is a good idea anyway!Alternatively, add the username
__token__to the URL, but this is not recommended forpyproject.tomlas you likely want to use a different username in CI, for example. -
Done!
keyring-gitlab-pypiwill return your token for URLs that look like package installs.
Using it in GitLab CI
$CI_JOB_TOKEN will be used automatically as long as the index URL matches the running GitLab instance.
In principle this is all you need:
variables:
UV_KEYRING_PROVIDER: subprocess
test:
image: ghcr.io/astral-sh/uv:python3.13-bookworm
before_script:
- uv tool install keyring --with keyring-gitlab-pypi
- uv sync
This assumes that you haven't set UV_INDEX. (uv tool ignores pyproject.toml so you don't need to worry about indexes configured there).
It's recommended to constrain the versions:
printf '%s\n' keyring keyring-gitlab-pypi > keyring-constraints.in
uv pip compile --universal keyring-constraints.in -o keyring-constraints.txt
variables:
UV_KEYRING_PROVIDER: subprocess
test:
image: ghcr.io/astral-sh/uv:python3.13-bookworm
before_script:
- uv tool install keyring --with keyring-gitlab-pypi -c keyring-constraints.txt
- uv sync
Motivation
- When using multiple GitLab package indexes, it can be cumbersome to configure them with the same token via environment variables or otherwise.
- keyring's keychain backend on macOS does not support
--mode creds - uv will reuse credentials for URLs on the same host, but it feels fragile to just configure one of the indexes and let the credentials cache serve the rest. At the very least,
keyring-gitlab-pypiis set-and-forget across multiple projects.
Project details
Verified details
These details have been verified by PyPIProject links
GitHub Statistics
Maintainers
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file keyring_gitlab_pypi-0.3.tar.gz.
File metadata
- Download URL: keyring_gitlab_pypi-0.3.tar.gz
- Upload date:
- Size: 6.1 kB
- Tags: Source
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.12.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
2c7b3eecf1c259f5999c1665f4694efa3022525d6333f0213ca73b29ebefed38
|
|
| MD5 |
40edf27c10eee823aed14e69beead776
|
|
| BLAKE2b-256 |
ca35d5d14a4efd5dbf7ecf4f588bf5964d106cc0e37d3883bb325f7c09651c9e
|
Provenance
The following attestation bundles were made for keyring_gitlab_pypi-0.3.tar.gz:
Publisher:
python-publish.yml on RazerM/keyring-gitlab-pypi
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
keyring_gitlab_pypi-0.3.tar.gz -
Subject digest:
2c7b3eecf1c259f5999c1665f4694efa3022525d6333f0213ca73b29ebefed38 - Sigstore transparency entry: 198710744
- Sigstore integration time:
-
Permalink:
RazerM/keyring-gitlab-pypi@4f67339b3378ac3e1e879ea1887abe76999fc3ac -
Branch / Tag:
refs/tags/0.3 - Owner: https://github.com/RazerM
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
python-publish.yml@4f67339b3378ac3e1e879ea1887abe76999fc3ac -
Trigger Event:
push
-
Statement type:
File details
Details for the file keyring_gitlab_pypi-0.3-py3-none-any.whl.
File metadata
- Download URL: keyring_gitlab_pypi-0.3-py3-none-any.whl
- Upload date:
- Size: 5.3 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? Yes
- Uploaded via: twine/6.1.0 CPython/3.12.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
6b5fa18b2269e3ef455709bf2f35985b4eba0d74a9836810888fb02aa8d19765
|
|
| MD5 |
f9a8df5d48680deb5ae7bc6d370bd825
|
|
| BLAKE2b-256 |
a00a14911e26601f62e3abb843b59c8c6d7511b2b7bcf095e4811a830af9908c
|
Provenance
The following attestation bundles were made for keyring_gitlab_pypi-0.3-py3-none-any.whl:
Publisher:
python-publish.yml on RazerM/keyring-gitlab-pypi
-
Statement:
-
Statement type:
https://in-toto.io/Statement/v1 -
Predicate type:
https://docs.pypi.org/attestations/publish/v1 -
Subject name:
keyring_gitlab_pypi-0.3-py3-none-any.whl -
Subject digest:
6b5fa18b2269e3ef455709bf2f35985b4eba0d74a9836810888fb02aa8d19765 - Sigstore transparency entry: 198710749
- Sigstore integration time:
-
Permalink:
RazerM/keyring-gitlab-pypi@4f67339b3378ac3e1e879ea1887abe76999fc3ac -
Branch / Tag:
refs/tags/0.3 - Owner: https://github.com/RazerM
-
Access:
public
-
Token Issuer:
https://token.actions.githubusercontent.com -
Runner Environment:
github-hosted -
Publication workflow:
python-publish.yml@4f67339b3378ac3e1e879ea1887abe76999fc3ac -
Trigger Event:
push
-
Statement type:
