On 9 May 2014 14:12, Donald Stufft <don...@stufft.io> wrote: > I think that you’re conflating any bug report about these two flags with bug > reports about externally hosted things at all.
That may well be true. I find this whole thing confusing (which is sort of my point, I guess). Don't we get a lot of reports where the user is advised to add one of the flags, that doesn't work, so they are then advised to add the other? Or am I misremembering and people are advised to add one, but actually add the other and then say the advice didn't work? Either way, only having one set of flags would remove that confusion. But yes, I'm going from my notoriously bad memory here. > The developer then tries to do his ``pip install -r requirements.txt`` > and suddenly it fails. This developer knows that pip installs from PyPI so > he goes to pypi.python.org and sees it works fine in his browser, he goes to > status.python.org and sees there are no downtimes. Personally, I'd try manually downloading the file from PyPI, which would fail. I certainly wouldn't just check the pypi homepage and assume that meant a download I could easily check directly "must" be OK... Or I'd do "pip install -v" and see "downloading http://... - FAILED". Problem solved. I think you're assuming the developer is a lot less capable than I would. But maybe our experiences differ. > ``pip install foo`` where foo is hosted externally fails. The developer > is told that this file is hosted externally and might be unavailable in the > future. They decide they don't care and they just want a thing to work so they > add ``--allow-external foo`` to their requirements.txt and go on their merry > way. I see your point but honestly I'd expect such a developer to simply put allow-all-external=true in his pip.ini once, probably so long ago that he's forgotten, so there's no gain. If he actually cares enough to track externally hosted files, adding a comment to requirements.txt would be just as good, and having something like ```pip install --list-external``` to show him what was externally hosted helps him get the information he needs. I'm not saying people mightn't want to consider externally hosted but safe files specially, just that we could offer better tools for doing so than we currently do. Paul _______________________________________________ Distutils-SIG maillist - Distutils-SIG@python.org https://mail.python.org/mailman/listinfo/distutils-sig
