verdaccio/website/docs/uplinks.md

---
id: uplinks
title: "Uplinks"
---

An *uplink* is a link with an external registry that provides access to external packages.

![Uplinks](https://user-images.githubusercontent.com/558752/52976233-fb0e3980-33c8-11e9-8eea-5415e6018144.png)

### Usage {#usage}

```yaml
uplinks:
  npmjs:
   url: https://registry.npmjs.org/
  server2:
    url: http://mirror.local.net/
    timeout: 100ms
  server3:
    url: http://mirror2.local.net:9000/
  baduplink:
    url: http://localhost:55666/
```
### Configuration {#configuration}

You can define mutiple uplinks and each of them must have an unique name (key). They can have the following properties:

Property | Type | Required | Example | Support | Description | Default
--- | --- | --- | --- | --- | --- | ---
url | string | Yes | https://registry.npmjs.org/ | all | The registry url | npmjs
ca | string | No | ~./ssl/client.crt' | all | SSL path certificate | No default
timeout | string | No | 100ms | all | set new timeout for the request | 30s
maxage | string | No |10m | all | the time threshold to the cache is valid | 2m
fail_timeout | string | No |10m | all | defines max time when a request becomes a failure | 5m
max_fails | number | No |2 | all | limit maximun failure request | 2
cache | boolean | No |[true,false] | >= 2.1 | cache all remote tarballs in storage | true
auth | list | No | [see below](uplinks.md#auth-property)  | >= 2.5 | assigns the header 'Authorization' [more info](http://blog.npmjs.org/post/118393368555/deploying-with-npm-private-modules) | disabled
headers | list | No | authorization: "Bearer SecretJWToken==" | all | list of custom headers for the uplink | disabled
strict_ssl | boolean | No | [true,false] | >= 3.0 | If true, requires SSL certificates be valid. | true
agent_options | object | No | maxSockets: 10 | >= 4.0.2 | options for the HTTP or HTTPS Agent responsible for managing uplink connection persistence and reuse [more info](https://nodejs.org/api/http.html#http_class_http_agent) | No default

#### Auth property {#auth-property}

The `auth` property allows you to use an auth token with an uplink. Using the default environment variable:

```yaml
uplinks:
  private:
    url: https://private-registry.domain.com/registry
    auth:
      type: bearer
      token_env: true # defaults to `process.env['NPM_TOKEN']`
```

or via a specified environment variable:

```yaml
uplinks:
  private:
    url: https://private-registry.domain.com/registry
    auth:
      type: bearer
      token_env: FOO_TOKEN
```

`token_env: FOO_TOKEN `internally will use `process.env['FOO_TOKEN']`

or by directly specifying a token:

```yaml
uplinks:
  private:
    url: https://private-registry.domain.com/registry
    auth:
      type: bearer
      token: "token"
```

> Note: `token` has priority over `token_env`

### You Must know {#you-must-know}

* Uplinks must be registries compatible with the `npm` endpoints. Eg: *verdaccio*, `sinopia@1.4.0`, *npmjs registry*, *yarn registry*, *JFrog*, *Nexus* and more.
* Setting `cache` to false will help to save space in your hard drive. This will avoid store `tarballs` but [it will keep metadata in folders](https://github.com/verdaccio/verdaccio/issues/391).
* Multiple uplinks might slow down the lookup of your packages. For each request an npm client makes, verdaccio makes 1 call to each configured uplink.
* The (timeout, maxage and fail_timeout) format follow the [NGINX measurement units](http://nginx.org/en/docs/syntax.html)
* When using the [Helm Chart](https://github.com/verdaccio/charts), you can use `secretEnvVars` to inject sensitive environment variables, which can be used to configure private uplink auth.
chore: relocate website for netlify migration (#2323) 2021-07-11 15:42:56 +02:00			`---`
			`id: uplinks`
			`title: "Uplinks"`
			`---`

			`An uplink is a link with an external registry that provides access to external packages.`

			`![Uplinks](https://user-images.githubusercontent.com/558752/52976233-fb0e3980-33c8-11e9-8eea-5415e6018144.png)`

feat: migrate Verdaccio.org to Docusaurus v2 and new design (#2343) Co-authored-by: Juan Picado <juanpicado19@gmail.com> 2021-07-27 21:52:49 +02:00			`### Usage {#usage}`
chore: relocate website for netlify migration (#2323) 2021-07-11 15:42:56 +02:00
			```yaml
			`uplinks:`
			`npmjs:`
			`url: https://registry.npmjs.org/`
			`server2:`
			`url: http://mirror.local.net/`
			`timeout: 100ms`
			`server3:`
			`url: http://mirror2.local.net:9000/`
			`baduplink:`
			`url: http://localhost:55666/`
			```
feat: migrate Verdaccio.org to Docusaurus v2 and new design (#2343) Co-authored-by: Juan Picado <juanpicado19@gmail.com> 2021-07-27 21:52:49 +02:00			`### Configuration {#configuration}`
chore: relocate website for netlify migration (#2323) 2021-07-11 15:42:56 +02:00
			`You can define mutiple uplinks and each of them must have an unique name (key). They can have the following properties:`

			`Property \| Type \| Required \| Example \| Support \| Description \| Default`
			`--- \| --- \| --- \| --- \| --- \| --- \| ---`
			`url \| string \| Yes \| https://registry.npmjs.org/ \| all \| The registry url \| npmjs`
			`ca \| string \| No \| ~./ssl/client.crt' \| all \| SSL path certificate \| No default`
			`timeout \| string \| No \| 100ms \| all \| set new timeout for the request \| 30s`
			`maxage \| string \| No \|10m \| all \| the time threshold to the cache is valid \| 2m`
			`fail_timeout \| string \| No \|10m \| all \| defines max time when a request becomes a failure \| 5m`
			`max_fails \| number \| No \|2 \| all \| limit maximun failure request \| 2`
			`cache \| boolean \| No \|[true,false] \| >= 2.1 \| cache all remote tarballs in storage \| true`
			`auth \| list \| No \| [see below](uplinks.md#auth-property) \| >= 2.5 \| assigns the header 'Authorization' [more info](http://blog.npmjs.org/post/118393368555/deploying-with-npm-private-modules) \| disabled`
			`headers \| list \| No \| authorization: "Bearer SecretJWToken==" \| all \| list of custom headers for the uplink \| disabled`
			`strict_ssl \| boolean \| No \| [true,false] \| >= 3.0 \| If true, requires SSL certificates be valid. \| true`
			`agent_options \| object \| No \| maxSockets: 10 \| >= 4.0.2 \| options for the HTTP or HTTPS Agent responsible for managing uplink connection persistence and reuse [more info](https://nodejs.org/api/http.html#http_class_http_agent) \| No default`

feat: migrate Verdaccio.org to Docusaurus v2 and new design (#2343) Co-authored-by: Juan Picado <juanpicado19@gmail.com> 2021-07-27 21:52:49 +02:00			`#### Auth property {#auth-property}`
chore: relocate website for netlify migration (#2323) 2021-07-11 15:42:56 +02:00
			The `auth` property allows you to use an auth token with an uplink. Using the default environment variable:

			```yaml
			`uplinks:`
			`private:`
			`url: https://private-registry.domain.com/registry`
			`auth:`
			`type: bearer`
			token_env: true # defaults to `process.env['NPM_TOKEN']`
			```

			`or via a specified environment variable:`

			```yaml
			`uplinks:`
			`private:`
			`url: https://private-registry.domain.com/registry`
			`auth:`
			`type: bearer`
			`token_env: FOO_TOKEN`
			```

			`token_env: FOO_TOKEN `internally will use `process.env['FOO_TOKEN']`

			`or by directly specifying a token:`

			```yaml
			`uplinks:`
			`private:`
			`url: https://private-registry.domain.com/registry`
			`auth:`
			`type: bearer`
			`token: "token"`
			```

			> Note: `token` has priority over `token_env`

feat: migrate Verdaccio.org to Docusaurus v2 and new design (#2343) Co-authored-by: Juan Picado <juanpicado19@gmail.com> 2021-07-27 21:52:49 +02:00			`### You Must know {#you-must-know}`
chore: relocate website for netlify migration (#2323) 2021-07-11 15:42:56 +02:00
			* Uplinks must be registries compatible with the `npm` endpoints. Eg: verdaccio, `sinopia@1.4.0`, npmjs registry, yarn registry, JFrog, Nexus and more.
			* Setting `cache` to false will help to save space in your hard drive. This will avoid store `tarballs` but [it will keep metadata in folders](https://github.com/verdaccio/verdaccio/issues/391).
docs: small language tweak to uplinks.md. (#3252) 2022-07-01 08:24:22 +02:00			`* Multiple uplinks might slow down the lookup of your packages. For each request an npm client makes, verdaccio makes 1 call to each configured uplink.`
chore: relocate website for netlify migration (#2323) 2021-07-11 15:42:56 +02:00			`* The (timeout, maxage and fail_timeout) format follow the [NGINX measurement units](http://nginx.org/en/docs/syntax.html)`
chore (docs): Update Uplinks/K8s doc to reference `secretEnvVars` (#3142) * Chore: Update Uplinks/K8s doc to reference `secretEnvVars` * Update Uplinks Documentation to refer to the Helm Chart's new `secretEnvVars` value * Update Kubernetes Documentation with the new `secretEnvVars` helm value * k8s doc wording 2022-04-25 20:51:50 +02:00			* When using the [Helm Chart](https://github.com/verdaccio/charts), you can use `secretEnvVars` to inject sensitive environment variables, which can be used to configure private uplink auth.