Configure and use Yarn with CodeArtifact
After you create a repository, you can use the Yarn client to manage npm packages.
Note
Yarn 1.X reads and uses information from your npm configuration file
(.npmrc), while Yarn 2.X does not. The configuration for Yarn 2.X
must be defined in the .yarnrc.yml file.
Contents
Configure Yarn 1.X with the aws codeartifact login command
For Yarn 1.X, you can configure Yarn with CodeArtifact using the aws codeartifact login command.
The login command will configure your ~/.npmrc file with your CodeArtifact repository endpoint information and credentials.
With Yarn 1.X, yarn commands use the configuration information from the ~/.npmrc file.
To configure Yarn 1.X with the login command
If you haven't done so already, configure your AWS credentials for use with the AWS CLI, as described in Getting started with CodeArtifact.
To run the
aws codeartifact logincommand successfully, npm must be installed. See Downloading and installing Node.js and npmin the npm documentation for installation instructions. Use the
aws codeartifact logincommand to fetch CodeArtifact credentials and configure your ~/.npmrc file.Replace
my_domainwith your CodeArtifact domain name.Replace
111122223333with the AWS account ID of the owner of the domain. If you are accessing a repository in a domain that you own, you don't need to include--domain-owner. For more information, see Cross-account domains.Replace
my_repowith your CodeArtifact repository name.
aws codeartifact login --tool npm --domainmy_domain--domain-owner111122223333--repositorymy_repoThe
logincommand makes the following changes to your ~/.npmrc file:-
Adds an authorization token after fetching it from CodeArtifact using your AWS credentials.
-
Sets the npm registry to the repository specified by the
--repositoryoption. -
For npm 6 and lower: Adds
"always-auth=true"so the authorization token is sent for every npm command.
The default authorization period after calling
loginis 12 hours, andloginmust be called to refresh the token periodically. For more information about the authorization token created with thelogincommand, see Tokens created with the login command.-
For npm 7.X and 8.X, you must add
always-auth=trueto your ~/.npmrc file to use Yarn.Open your ~/.npmrc file in a text editor and add
always-auth=trueon a new line.
You can use the yarn config list command to check that Yarn is using the
correct configuration. After running the command, check the values in the info npm
config section. The contents should look similar to the following snippet.
info npm config { registry: 'https://my_domain-111122223333.d.codeartifact.us-west-2.amazonaws.com/npm/my_repo/', '//my_domain-111122223333.d.codeartifact.us-west-2.amazonaws.com/npm/my_repo/:_authToken': 'eyJ2ZXI...', 'always-auth': true }
Configure Yarn 2.X with the yarn config set command
The following procedure details how to configure Yarn 2.X by updating your .yarnrc.yml configuration from the command line with the
yarn config set command.
To update the yarnrc.yml configuration from the command line
If you haven't done so already, configure your AWS credentials for use with the AWS CLI, as described in Getting started with CodeArtifact.
Use the
aws codeartifact get-repository-endpointcommand to get your CodeArtifact repository's endpoint.Replace
my_domainwith your CodeArtifact domain name.Replace
111122223333with the AWS account ID of the owner of the domain. If you are accessing a repository in a domain that you own, you don't need to include--domain-owner. For more information, see Cross-account domains.Replace
my_repowith your CodeArtifact repository name.
aws codeartifact get-repository-endpoint --domainmy_domain--domain-owner111122223333--repositorymy_repo--format npmUpdate the
npmRegistryServervalue in your .yarnrc.yml file with your repository endpoint.yarn config set npmRegistryServer "https://my_domain-111122223333.d.codeartifact.region.amazonaws.com/npm/my_repo/"Fetch a CodeArtifact authorization token and store it in an environment variable.
Note
The following command is for macOS or Linux machines. For information on configuring environment variables on a Windows machine, see Pass an auth token using an environment variable.
Replace
my_domainwith your CodeArtifact domain name.Replace
111122223333with the AWS account ID of the owner of the domain. If you are accessing a repository in a domain that you own, you don't need to include--domain-owner. For more information, see Cross-account domains.Replace
my_repowith your CodeArtifact repository name.
export CODEARTIFACT_AUTH_TOKEN=`aws codeartifact get-authorization-token --domainmy_domain--domain-owner111122223333--query authorizationToken --output text`-
Use the
yarn config setcommand to add your CodeArtifact authentication token to your .yarnrc.yml file. Replace the URL in the following command with your repository endpoint URL from Step 2.yarn config set 'npmRegistries["https://my_domain-111122223333.d.codeartifact.region.amazonaws.com/npm/my_repo/"].npmAuthToken' "${CODEARTIFACT_AUTH_TOKEN}" -
Use the
yarn config setcommand to set the value ofnpmAlwaysAuthtotrue. Replace the URL in the following command with your repository endpoint URL from Step 2.yarn config set 'npmRegistries["https://my_domain-111122223333.d.codeartifact.region.amazonaws.com/npm/my_repo/"].npmAlwaysAuth' "true"
After configuring, your .yarnrc.yml configuration file should have contents similar to the following snippet.
npmRegistries: "https://my_domain-111122223333.d.codeartifact.us-west-2.amazonaws.com/npm/my_repo/": npmAlwaysAuth: true npmAuthToken: eyJ2ZXI... npmRegistryServer: "https://my_domain-111122223333.d.codeartifact.us-west-2.amazonaws.com/npm/my_repo/"
You can also use the yarn config command to check the values of npmRegistries and npmRegistryServer.
