PSModule doesn't support Nuget packages with authentification (HTTPS)

Question

PSModule doesn't support Nuget packages with authentification (HTTPS)

Opened this issue 9 years ago · 11 comments

Prerequisites:

Setup some HTTPS Nuget server which requires authentication
Update your PackageManager to 1.0.0.1 version with Win November Update (it used to work in 1.0.0.0)

Scenario:

Check that Nuget.exe can install packages from your Nuget server
Try to register it as PSRepository:
Register-PSRepository -Name MyNuget -SourceLocation https://my-nuget/api/v2

You will got error like this:
Register-PSRepository : The specified Uri 'https://my-nuget/api/v2' for parameter 'SourceLocation' is an invalid Web Uri. Please ensure that it meets the Web Uri requirements.

Root cause:
Function Ping-Module from PSModule.psm1 not passing credentials to request.

Fix is not simple
To fix Ping-Module you need simple one-liner: you need to add following line to $WebRequestcmd script inside Ping-Module function:

$request.Credentials = [System.Net.CredentialCache]::DefaultNetworkCredentials

But after that fix I'm getting following warning:

WARNING: Unable to resolve package source 'https://my-nuget/api/v2'.

So source is registered but remains unusable.

Please feel free to contact me for any additional details or reproduction.

Answer 1 · 2016-07-06T20:19:04.000Z

I've come across the same error after deploying an instance of the PSPrivateGallery to azure.

The default PowerShellGallery is registered over https, which is interesting.

Answer 2 · 2016-07-06T20:28:19.000Z

Hey Michael, there is temporary workaround available for this issue : http://stackoverflow.com/a/35296483

Answer 3 · 2016-07-06T22:05:57.000Z

Unfortunately, that work around requires me to distribute it to everyone in our shop who might use the PowerShell repo. Definitely need a longer term solution. I'll check to see if that workaround gets it done for me, but I'll still have to make it available over http for now either way.

Answer 4 · 2016-10-14T19:10:49.000Z

Any movement on this? I'm hitting this now.

Answer 5 · 2017-02-01T18:25:22.000Z

Would also like to see a fix for this. Just hit it, too.

The temporary work-around posted by @anpur is working for me right now, but it's awfully janky to need to do that.

Answer 6 · 2017-11-08T13:52:35.000Z

Hey, was there a fix to this? I am running into it in current Powershell, but I notice this issue is logged under testbuild. Bit confused with the whole oneget, powershellget, powershellgallery and packagemanagement modules and terminology, seems like a bit of a stuff up, but not being able to register an https package source seems like a fundamental issue.

Answer 7 · 2017-12-01T15:21:18.000Z

I've heard there was a fix for this in the latest Win10 build @Ben-Shirley

Answer 8 · 2018-01-22T22:30:17.000Z

@TheIncorrigible1 yeah it works in Windows 10. Frustratingly, the version numbers of both the PowerShellGet and PackageManagement modules are the same down to the last digit (1.0.0.1) on systems where it works and where it doesn't. It's unbelievably ridiculous; I can't even test for this on a given platform without trying it.

Answer 9 · 2018-04-14T16:13:16.000Z

Is there a fix for this on Win7 now?

Answer 10 · 2018-05-03T19:42:55.000Z

Just chipping in here. As I hope this can be usefull to someone.

This could also happen when the HTTPS endpoint us protected by a non-matching certificate. The endpoint name does not match the name used in the URI.

Answer 11 · 2018-08-30T17:54:44.000Z

Open for almost 3 years and still no fix. Where's the hustle?