Private npm - What can you do with your own npm registry

Transcript

1. PRIVATE NPM What can you do with your own npm

   registry

2. HELLO I'm Szabolcs Szabolcsi-Toth Senior Front-end Engineer @ Ustream @_Nec

3. NPM

4. NPM Public and open ecosystem of open source modules Has

   several public mirrors

5. NPM IS GREAT but "what if" you want to do

   sensitive stuff you want to do proprietary stuff you want to use npm, but internally distribute modules you don’t trust availability

6. PRIVATE NPM REGISTRY

7. “Don’t run your own registry, use ours” Laurie Voss

8. PRIVATE NPM REGISTRIES Full mirror Caching GBytes of data Only

   what needed

9. OUR USECASE AT USTREAM

10. SYSOP REQUIREMENT “what happens when an npm install dies during

    a major deployment?” “we're f**ked”

11. SINOPIA github.com/rlidwka/sinopia

12. SINOPIA caching registry use with chef/docker simple storage

13. WORKING WITH SINOPIA

14. AUTHENTICATION simple adduser publisher/reader rights since npm 1.5-alpha (v2.0.0) users

    can scope credentials to different registries

15. PER-PROJECT CONFIGURATION .npmrc per project registry configuration since v1.4.11 package.json

    use ‘publishConfig’

16. PUBLISH - UNPUBLISH n p m p u b l

    i s h - - r e g i s t r y h t t p : / / y o u r - o w n . r e g i s t r y . u r l m o d u l e n a m e n p m u n p u b l i s h - - f o r c e - - r e g i s t r y h t t p : / / y o u r - o w n . r e g i s t r y . u r l m o d u l e n a m e

17. SECURITY Ours only accessible from a well defined domain /

    ip pool

18. USECASES

19. YOU CAN DO... private modules (obviously)

20. YOU CAN DO... Versioned modules for deployment Configuration management and

    distribution

21. YOU CAN DO... Not just backend modules Front-end module registry

22. YOU CAN... Prepare for the open source world Test, use,

    then go open source Get used to the tools, workflow and mindset

23. EXAMPLES

24. CONFIGURATION MANAGEMENT AND DISTRIBUTION This is how we distribute configurations

    for our node apps

25. BUILD & DEPLOYMENT GIT FEATURE BETA LIVE FEATURE BETA LIVE

26. BUILD & DEPLOYMENT GIT NPM FEATURE BETA LIVE FEATURE BETA

    LIVE MODULE v0.2.4 MODULE v0.1.2 MODULE v0.2.1 MODULE v0.1.1

27. BUILD & DEPLOYMENT GIT NPM FEATURE BETA LIVE FEATURE BETA

    LIVE MODULE v0.2.4 MODULE v0.1.2 MODULE v0.2.1 MODULE v0.1.1

28. BUILD & DEPLOYMENT GIT NPM FEATURE BETA LIVE FEATURE BETA

    LIVE MODULE v0.2.4 MODULE v0.1.2 MODULE v0.2.1 MODULE v0.1.1

29. BUILD & DEPLOYMENT GIT NPM FEATURE BETA LIVE FEATURE BETA

    LIVE MODULE v0.2.4 MODULE v0.1.2 MODULE v0.2.1 MODULE v0.1.1

30. BUILD & DEPLOYMENT GIT NPM FEATURE BETA LIVE FEATURE BETA

    LIVE MODULE v0.2.4 MODULE v0.1.2 MODULE v0.2.1 MODULE v0.1.1

31. BUILD & DEPLOYMENT GIT NPM FEATURE BETA LIVE FEATURE BETA

    LIVE MODULE v0.2.4 MODULE v0.1.2 MODULE v0.2.1 MODULE v0.1.1

32. CONFIGURATION MANAGEMENT AND DISTRIBUTION Works with Modules, or even better:

    Configurations

33. FRONT-END MODULES Internal ‘bower’ using our private npm registry Flat

    dep tree cli, or package.json This is also a problem at npm

34. FINALLY

35. DRAWBACKS Feature lag Deal with securing and hosting and backup

36. THE FUTURE npm is working on this! scoped packages (prefixed

    with your org)

37. NPME npme (as enterprise) use it like npm you host

    it selective mirror OAuth2, more is coming developed by npm - no feature lag still in trial

38. NPME It's not free Support npm, use a good solution

    no price information yet

39. THANK YOU! @_Nec