Where communities thrive


  • Join over 1.5M+ people
  • Join over 100K+ communities
  • Free without limits
  • Create your own community
People
Repo info
Activity
    Ben Johnson
    @cbj4074
    @mazurva Have you tried removing and then re-adding the dependency?
    I know you have to do that when changing the version constraint, so it's possible the same is true when you change the effective repository.
    Vadim Mazur
    @mazurva
    @cbj4074 Nothing has changed.
    Vadim Mazur
    @mazurva
    Thanks, anyway.
    Doqnach
    @Doqnach
      Repository "0" ({"packagist":false}) must have a type defined
    How can you supply packagist=false on composer init? I am using:
    composer init --repository="{\"packagist\":false}" but this obviously isn't working...
    Doqnach
    @Doqnach
    discussion going in composer/composer#8210
    Michael Skenderian
    @mskenderian_twitter
    i have a private repo "repositories": { "wpsa/options": { "type": "vcs", "url": "https://my.domain.com/wpsa/options.git" }
    when composer installs it, it asked for username and password, which is what i expect. but then i get the message A token will be created and stored in "/home/vagrant/.composer/auth.json", your password will never be stored
    checking that file, it has stored my username and password.
    JonasWijne
    @JonasWijne
    hi, would it be possible to have the same repo multiple times in composer.json but with diffrent login credentials?
    Doqnach
    @Doqnach
    exactly the same? (host + path)
    JonasWijne
    @JonasWijne
    yes
    Doqnach
    @Doqnach
    because then I don't think so, unless you do it via http(s) and basic auth plain text in composer.json
    and even then, it will lookup the package in each and every repo you mention, so if it exists in both/all it will pick I think the first one it finds?
    but I might be wrong here
    JonasWijne
    @JonasWijne
    Reason is that, the packages in the repo are based on the login credentials given (kinda weird but hey )
    Doqnach
    @Doqnach
    that does sound weird to me yeah :-P
    well, the only way I know how to do it is the above
    which I feel is terrible
    JonasWijne
    @JonasWijne
    @Doqnach, i tried with the basic auth in plaintext, and it worked
    Doqnach
    @Doqnach
    Have fun with credentials plain text in VCS :-P
    JonasWijne
    @JonasWijne
    yeah, my toughts exacly
    gonne make a script which will replace the username and password based on some env variables
    thx for the idea / help
    Kristiyan Katsarov
    @katsar0v
    Hello guys! I just joined the composer - Community in Gitter :)
    Kristiyan Katsarov
    @katsar0v
    I wanted to ask: does composer make sum check of required dependencies? When defining custom packages, then a hashsum may be defined, but what about dependencies from packagist or wpackagist? Would love to hear from anyone! Thanks in advance!
    Rob
    @alcohol
    yes
    packagist adds a checksum
    Kristiyan Katsarov
    @katsar0v
    @alcohol how is this prooved? Or should I reverse-engineer the code
    Marcin Maruszewski
    @marcinmaruszewski
    Hi, can I somehow alter the type of package hosted on packagist? For example, there is https://packagist.org/packages/moxiecode/plupload package. In composer.json its type is a library, and I'd like to change it to drupal-library. How can I do that?
    Ben Johnson
    @cbj4074
    @marcinmaruszewski Is it your own package?? If so, then yeah, you just change it in the composer.json, commit and push.
    Marcin Maruszewski
    @marcinmaruszewski
    nope, it's somebody else
    Sunny
    @sunnyagain
    you can submit PR to owner
    Kristiyan Katsarov
    @katsar0v
    Hi guys. Why can't composer install parallel dependencies from vcs? I have 10 dependencies and even with https://github.com/hirak/prestissimo it is super slow
    Doqnach
    @Doqnach
    @katsar0v do you have a github token in your auth.json? if not the connection will be throttled somewhat
    Kristiyan Katsarov
    @katsar0v
    it is not github, it is a ssh key for bitbucket @Doqnach
    Kristiyan Katsarov
    @katsar0v
    Can somebody assist here? :) hirak/prestissimo#200
    JonasWijne
    @JonasWijne
    hi, i have a question, i have a conflict with symfony/console
    Package a needs ~4.1.0 and package b needs ^4.2
    i wanne use version 4.1.12 how can i fix this in my composer.json ?
    Ben Johnson
    @cbj4074
    @JonasWijne I think you'd need to use an inline version alias, e.g., as described in https://stackoverflow.com/questions/21052831/how-to-solve-two-packages-requirements-conflicts-when-running-composer-install
    JonasWijne
    @JonasWijne
    @cbj4074 thanks for your advice
    Ben Johnson
    @cbj4074
    @JonasWijne You're welcome, hopefully you can solve the conflict. Let us know if you do!
    sdxv
    @sdxv
    Hello,
    I have two projects. I would like to utilize the functionality of one of them (imgsvc) in the other (cartwheel), so I have set up my composer.json files with a path repository like so: https://hastebin.com/raw/ulokohedum
    This works well, except I now have two definitions of any dependencies that both projects (the slim framework for example) require https://i.imgur.com/WoU8RtK.png
    Is there a way to tell composer to not look at transitive dependencies?
    Doqnach
    @Doqnach
    anyone any idea why composer require psr/log-implementation is not working?
    composer/composer#7603
    bash-5.0# composer require psr/log-implementation
    
      [InvalidArgumentException]                      
      Could not find package psr/log-implementation.  
    
      Did you mean one of these?                      
          psr/log-implementation                      
          xxnoobmanxx/psrlogger
    sdxv
    @sdxv
    Hi again. I am still hoping to find a solution to my issue mentioned just above (on Nov 24th) If anyone is able to take a look it would be greatly appreciated. Thanks.
    FlexICE
    @fl3xice
    guys do you know what that is https://packagist.com/ ?
    FlexICE
    @fl3xice
    for what ?
    Ben Johnson
    @cbj4074
    @fl3xice It's just what it sounds like: Packagist but for private (as opposed to public) access.
    FlexICE
    @fl3xice
    @cbj4074 thanks
    Ben Johnson
    @cbj4074

    @fl3xice :thumbsup:

    I think the goal is to provide for businesses and organizations whose source code cannot be made public for whatever reason the same powerful features that packagist.org offers for public, FOSS repositories.