openstack
/
tripleo-image-elements
Code Issues Proposed changes
tripleo-image-elements/elements/pypi-openstack
History
Clint Byrum 6ac6906d6d Document shortcomings of pypi-openstack element 
The element should not be used in production without considering these
facts. Also provide instructions for alternatives.

Change-Id: I2ed6c0ca1487506619128514f44e53738a76a6dc
 		2014-02-03 10:22:56 -08:00
..
post-install.d Add an OpenStack PyPI mirror element. 2013-09-09 00:51:55 +12:00
pre-install.d Add an OpenStack PyPI mirror element. 2013-09-09 00:51:55 +12:00
README.md Document shortcomings of pypi-openstack element 2014-02-03 10:22:56 -08:00

README.md

Configure the OpenStack PyPI mirror globally

Temporarily overwrites /root/.pip.conf and .pydistutils.cfg to use http://pypi.openstack.org.

By policy all tests in the OpenStack CI/CD environment need to use just the OpenStack PyPI mirror and thus should include this element.

Note that when building images with this element, pip uses HTTP, and the OpenStack mirror does not provide a way to verify the contents of the downloaded packages, and thus is vulnerable to a man-in-the-middle attack.

In order to have a secure local mirror which is built in the same way pypi-openstack is, see the diskimage-builder element 'pypi'. If you would like to build an image which hosts such a mirror, see the pypi-mirror element.