pixi auth login

Store authentication information for a given host

Usage

pixi auth login [OPTIONS] <HOST>

Arguments

• <HOST>

  The host to authenticate with (e.g. prefix.dev)
  required: true

Options

• --user-agent <USER_AGENT>

  User-Agent header used for requests

OAuth/OIDC Authentication

• --oauth

  Use OAuth/OIDC authentication

• --oauth-issuer-url <OAUTH_ISSUER_URL>

  OIDC issuer URL (defaults to https://{host})

• --oauth-client-id <OAUTH_CLIENT_ID>

  OAuth client ID (defaults to "rattler")

• --oauth-client-secret <OAUTH_CLIENT_SECRET>

  OAuth client secret (for confidential clients)

• --oauth-flow <OAUTH_FLOW>

  OAuth flow: auto (default), auth-code, device-code
  options: auto, auth-code, device-code

• --oauth-scope <OAUTH_SCOPES>

  Additional OAuth scopes to request (repeatable)
  May be provided more than once.

• --oauth-redirect-uri <OAUTH_REDIRECT_URI>

  OAuth redirect URI (defaults to a random localhost port). Set this when the OAuth client on the IdP side is registered with a specific redirect URI such as http://127.0.0.1:8000/auth/oidc

S3 Authentication

• --s3-access-key-id <S3_ACCESS_KEY_ID>

  The S3 access key ID

• --s3-secret-access-key <S3_SECRET_ACCESS_KEY>

  The S3 secret access key

• --s3-session-token <S3_SESSION_TOKEN>

  The S3 session token

Token / Basic Authentication

• --token <TOKEN>

  The token to use (for authentication with prefix.dev)

• --username <USERNAME>

  The username to use (for basic HTTP authentication)

• --password <PASSWORD>

  The password to use (for basic HTTP authentication)

• --conda-token <CONDA_TOKEN>

  The token to use on anaconda.org / quetz authentication

Examples

OAuth against prefix.dev

pixi auth login prefix.dev

OAuth against a self-hosted OIDC provider:

pixi auth login my.private.host \
    --oauth \
    --oauth-issuer-url https://idp.example.com \
    --oauth-client-id my-cli-client

OAuth on a headless machine (no usable browser — uses the device-code flow):

pixi auth login prefix.dev --oauth-flow device-code

Manual tokens, basic auth, and S3 credentials:

pixi auth login repo.prefix.dev --token pfx_JQEV-m_2bdz-D8NSyRSaAndHANx0qHjq7f2iD
pixi auth login anaconda.org --conda-token ABCDEFGHIJKLMNOP
pixi auth login https://myquetz.server --username john --password xxxxxx
pixi auth login s3://my-bucket --s3-access-key-id $AWS_ACCESS_KEY_ID --s3-secret-access-key $AWS_SECRET_ACCESS_KEY