通过 Nuke.Common/NuGet.CommandLine 部署 NuGet 包时如何通过 Azure Auth
How to pass Azure Auth when Deploying NuGet Package via Nuke.Common/NuGet.CommandLine
我正在尝试通过 Nuke 和 CI/CD 在 Azure DevOps 上自动更新 NuGet 包。一切都在构建中,但在 PushNuGet 步骤中,该过程尝试通过弹出窗口 window 向 Azure 进行身份验证,这显然从未呈现 [在 devops] 或回答
class Build : NukeBuild
{
/// Support plugins are available for:
/// - JetBrains ReSharper https://nuke.build/resharper
/// - JetBrains Rider https://nuke.build/rider
/// - Microsoft VisualStudio https://nuke.build/visualstudio
/// - Microsoft VSCode https://nuke.build/vscode
public static int Main () => Execute<Build>(x => x.PushNuGet);
[Parameter("Configuration to build - Default is 'Debug' (local) or 'Release' (server)")]
readonly Configuration Configuration = IsLocalBuild ? Configuration.Debug : Configuration.Release;
[Solution] readonly Solution Solution;
[GitRepository] readonly GitRepository GitRepository;
AbsolutePath SourceDirectory => RootDirectory / "src";
AbsolutePath TestsDirectory => RootDirectory / "tests";
AbsolutePath ArtifactsDirectory => RootDirectory / "artifacts";
string VersionNumber = "1.0.2";
Target Clean => _ => _
.Executes(() =>
{
SourceDirectory.GlobDirectories("**/bin", "**/obj").ForEach(DeleteDirectory);
TestsDirectory.GlobDirectories("**/bin", "**/obj").ForEach(DeleteDirectory);
EnsureCleanDirectory(ArtifactsDirectory);
});
Target Restore => _ => _
.DependsOn(Clean)
.Executes(() =>
{
DotNetRestore(s => s
.SetProjectFile(Solution));
});
Target Compile => _ => _
.DependsOn(Restore)
.Executes(() =>
{
DotNetBuild(s => s
.SetProjectFile(Solution)
.SetConfiguration(Configuration)
.EnableNoRestore());
});
Target Pack => _ => _
.DependsOn(Compile)
.Executes(() =>
{
DotNetPack(s => s
.SetProject(RootDirectory + "\Fuze.Models\Fuze.Models.csproj")
.SetNoBuild(true)
.SetConfiguration(Configuration)
.SetVersion(VersionNumber)
);
});
Target AddSource => _ => _
.DependsOn(Pack)
.Executes(() =>
{
var sourceUrl = "https://pkgs.dev.azure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json";
var sourceName = "DataFuzionHCM";
var sources = NuGetTasks.NuGetSourcesList();
if(sources.Any(source => source.Text.Contains(sourceName)))
{
NuGetTasks.NuGetSourcesRemove(s => s.SetName(sourceName));
}
NuGetTasks.NuGetSourcesAdd(s => s
.SetName(sourceName)
.SetSource(sourceUrl)
.SetUserName("NuGet Feed Token")
.SetPassword("fakepassword")
);
});
Target PushNuGet => _ => _
.DependsOn(AddSource)
.Executes(() =>
{
NuGetTasks.NuGetPush(s => s
.SetSource("DataFuzionHCM")
.SetApiKey("az")
.SetTargetPath(RootDirectory + $"/FUZE.Models/bin/debug/Fuze.Models.{VersionNumber}.nupkg")
);
});
}
在 Azure Build Pipeline 上,在最后一步中,可以在作业日志中看到它卡在了某些 auth window with azure。
Using credentials from config. UserName: NuGet Feed Token
[CredentialProvider]Using the ADAL UI flow for uri https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json. User sign-in required in a pop-up authentication window.
[CredentialProvider]Using the ADAL UI flow for uri https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json. User sign-in required in a pop-up authentication window.
[CredentialProvider]Using the ADAL UI flow for uri https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json. User sign-in required in a pop-up authentication window.
##[error]Unable to load the service index for source https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json.
##[error] The HTTP request to 'GET https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json' has timed out after 100000ms.
##[error]Process 'NuGet.exe' exited with code 1.
是否有一种方法可以通过 Azure 以编程方式进行身份验证,这样它就不会在弹出身份验证时挂起和超时?
事实证明,NuGet feed 的密码已过期,因此当 auth 失败时,它提示进行 auth 而不是抛出 auth 错误。
我进入 DevOps 并更新了密码的到期日期,然后一切正常。
我确实觉得很奇怪,它没有抛出身份验证错误,而是在单独的 window 上要求本地用户输入密码。在设计用于更新 NuGet 包的 API 时,可能没有考虑到自动化。
我正在尝试通过 Nuke 和 CI/CD 在 Azure DevOps 上自动更新 NuGet 包。一切都在构建中,但在 PushNuGet 步骤中,该过程尝试通过弹出窗口 window 向 Azure 进行身份验证,这显然从未呈现 [在 devops] 或回答
class Build : NukeBuild
{
/// Support plugins are available for:
/// - JetBrains ReSharper https://nuke.build/resharper
/// - JetBrains Rider https://nuke.build/rider
/// - Microsoft VisualStudio https://nuke.build/visualstudio
/// - Microsoft VSCode https://nuke.build/vscode
public static int Main () => Execute<Build>(x => x.PushNuGet);
[Parameter("Configuration to build - Default is 'Debug' (local) or 'Release' (server)")]
readonly Configuration Configuration = IsLocalBuild ? Configuration.Debug : Configuration.Release;
[Solution] readonly Solution Solution;
[GitRepository] readonly GitRepository GitRepository;
AbsolutePath SourceDirectory => RootDirectory / "src";
AbsolutePath TestsDirectory => RootDirectory / "tests";
AbsolutePath ArtifactsDirectory => RootDirectory / "artifacts";
string VersionNumber = "1.0.2";
Target Clean => _ => _
.Executes(() =>
{
SourceDirectory.GlobDirectories("**/bin", "**/obj").ForEach(DeleteDirectory);
TestsDirectory.GlobDirectories("**/bin", "**/obj").ForEach(DeleteDirectory);
EnsureCleanDirectory(ArtifactsDirectory);
});
Target Restore => _ => _
.DependsOn(Clean)
.Executes(() =>
{
DotNetRestore(s => s
.SetProjectFile(Solution));
});
Target Compile => _ => _
.DependsOn(Restore)
.Executes(() =>
{
DotNetBuild(s => s
.SetProjectFile(Solution)
.SetConfiguration(Configuration)
.EnableNoRestore());
});
Target Pack => _ => _
.DependsOn(Compile)
.Executes(() =>
{
DotNetPack(s => s
.SetProject(RootDirectory + "\Fuze.Models\Fuze.Models.csproj")
.SetNoBuild(true)
.SetConfiguration(Configuration)
.SetVersion(VersionNumber)
);
});
Target AddSource => _ => _
.DependsOn(Pack)
.Executes(() =>
{
var sourceUrl = "https://pkgs.dev.azure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json";
var sourceName = "DataFuzionHCM";
var sources = NuGetTasks.NuGetSourcesList();
if(sources.Any(source => source.Text.Contains(sourceName)))
{
NuGetTasks.NuGetSourcesRemove(s => s.SetName(sourceName));
}
NuGetTasks.NuGetSourcesAdd(s => s
.SetName(sourceName)
.SetSource(sourceUrl)
.SetUserName("NuGet Feed Token")
.SetPassword("fakepassword")
);
});
Target PushNuGet => _ => _
.DependsOn(AddSource)
.Executes(() =>
{
NuGetTasks.NuGetPush(s => s
.SetSource("DataFuzionHCM")
.SetApiKey("az")
.SetTargetPath(RootDirectory + $"/FUZE.Models/bin/debug/Fuze.Models.{VersionNumber}.nupkg")
);
});
}
在 Azure Build Pipeline 上,在最后一步中,可以在作业日志中看到它卡在了某些 auth window with azure。
Using credentials from config. UserName: NuGet Feed Token
[CredentialProvider]Using the ADAL UI flow for uri https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json. User sign-in required in a pop-up authentication window.
[CredentialProvider]Using the ADAL UI flow for uri https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json. User sign-in required in a pop-up authentication window.
[CredentialProvider]Using the ADAL UI flow for uri https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json. User sign-in required in a pop-up authentication window.
##[error]Unable to load the service index for source https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json.
##[error] The HTTP request to 'GET https://pkgs.dev.[hidden]ure.com/DataFuzionHCM/_packaging/DataFuzionHCM/nuget/v3/index.json' has timed out after 100000ms.
##[error]Process 'NuGet.exe' exited with code 1.
是否有一种方法可以通过 Azure 以编程方式进行身份验证,这样它就不会在弹出身份验证时挂起和超时?
事实证明,NuGet feed 的密码已过期,因此当 auth 失败时,它提示进行 auth 而不是抛出 auth 错误。 我进入 DevOps 并更新了密码的到期日期,然后一切正常。
我确实觉得很奇怪,它没有抛出身份验证错误,而是在单独的 window 上要求本地用户输入密码。在设计用于更新 NuGet 包的 API 时,可能没有考虑到自动化。