FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Gentoo > Gentoo Development

 
 
LinkBack Thread Tools
 
Old 11-04-2010, 07:47 PM
Christian Ruppert
 
Default Upcoming git.overlays.g.o Maintenance: 2010/11/06 (Saturday) 15:00-16:00 UTC

Hey guys,

We're going to migrate our git.overlays.gentoo.org backend from gitosis
to gitolite.
It'll bring us new features, more flexibility and it's more robust. For
more details read my upcoming mail about it.

When: 2010/11/06 (Saturday) 15:00-16:00 UTC

Read/Write access to git.overlays.g.o will be disabled during the migration.
NOTE: Only git is affected!

Planned is a maximum of 1 hour downtime. It might be less or in the
worst case a bit more. I'll let you know as soon as it is back up again.

--
Regards,
Christian Ruppert
Role: Gentoo Linux developer, Bugzilla administrator and Infrastructure
member
Fingerprint: EEB1 C341 7C84 B274 6C59 F243 5EAB 0C62 B427 ABC8
 
Old 11-04-2010, 07:57 PM
Christian Ruppert
 
Default Upcoming git.overlays.g.o Maintenance: 2010/11/06 (Saturday) 15:00-16:00 UTC

What will change and for whom?


In this mail (Table of contents)
============
Information for ...

- Everyone
- New public key file format
- Your real name
- Your mail address
- Nicknames
- SSH options
- Multiple keys
- Querying your permissions

- Repository owners

- Overlay admins


Everyone
========

New public key file format
--------------------------
We have a new ssh public key format.
The old one contained only your pubkey while the new format expects at
least your pubkey + 3 "variables".
Example of the new format:

# git-realname: <your real_name>
[# git-realname-ascii: <your real name in ascii>]
# git-email: <your mail address>
# git-username: <user name for cia.vc and more>
<optional ssh key options> <pubkey>
[<optional ssh key options> <pubkey>]
[..]

git-realname, git-email, and git-username are required.


Your real name
^^^^^^^^^^^^^^
git-realname-ascii is optional and only necessary if your real name
contains non-ASCII chars.


Your mail address
-----------------
Your mail address will not be sent to cia.vc! It's only used

a) to be able to contact you in case something goes wrong, or

b) in case you commit to a repo where each commit will be sent to
gentoo-commits@lists.gentoo.org. It will be obfuscated to avoid
spam.


Nicknames
^^^^^^^^^
All current keys have been updated either by hand or one of the Overlay
admins already got the right data for those variables. Otherwise the
default user name is the same as you use to commit. For Gentoo devs it's
the nick.


SSH options
^^^^^^^^^^^
SSH key options like 'from="..."' are allowed, any forbidden options will be
stripped automatically.


Multiple keys
^^^^^^^^^^^^^
If you have multiple keys simply put them into one pubkey file or send
us multiple pubkey files, for the required filename take a look at [3].


Querying your permissions
-------------------------
You're also able to see what permissions you were granted on a certain
repository, see [4].


Repository owners (including everyone with a dev overlay)
=================

Branch- and file-specific access rules
--------------------------------------
You're now able to get branch based access rules for your repository
in place [1]. The default permission is now "RW+" (read, write, forced
pushing)
for all users that had write access before. It's up to you if you want
someone to have other permissions, like "RW" (i.e. with forced pushing
denied). See [1] for further information about permissions and esp.
differences between permissions.


Overlay admins
==============
First of all, you should take a look at example.conf,
it's included in the admin repository.
Furthermore take a look at the available permissions and branch based
access rules [1]. Also important for you are: [4,5,6,7,8].

The group @all includes _all_, so even gitweb and git daemon.
If you say "R = @all" it means that anybody can read/clone this repo
via SSH/git daemon/DAV and gitweb has read permissions.
If you don't want to enable gitweb, use "- = gitweb" or "daemon" for
git-daemon.
NOTE: If you add a repository description, gitweb will automatically get
read access!

You cannot break gitolite as easily as gitosis. gitolite "compiles" the
config first and it'll tell you about any errors. You're still able to fix
your mistakes yourself then, unlike before where you had to contact
somebody from infra in such an event.


[1] http://github.com/sitaramc/gitolite/blob/pu/conf/example.conf
[2]
http://github.com/sitaramc/gitolite/blob/pu/doc/3-faq-tips-etc.mkd#_one_user_many_keys
[3] http://github.com/sitaramc/gitolite/blob/pu/doc/report-output.mkd

[4] http://github.com/sitaramc/gitolite/blob/pu/doc/2-admin.mkd
[5] http://github.com/sitaramc/gitolite/blob/pu/doc/3-faq-tips-etc.mkd
[6] http://github.com/sitaramc/gitolite/blob/pu/doc/delegation.mkd
[7] http://github.com/sitaramc/gitolite/blob/pu/doc/gitolite-and-ssh.mkd
[8] http://github.com/sitaramc/gitolite/blob/pu/doc/progit-article.mkd

--
Regards,
Christian Ruppert
Role: Gentoo Linux developer, Bugzilla administrator and Infrastructure
member
Fingerprint: EEB1 C341 7C84 B274 6C59 F243 5EAB 0C62 B427 ABC8
 
Old 11-09-2010, 10:04 PM
Mike Frysinger
 
Default Upcoming git.overlays.g.o Maintenance: 2010/11/06 (Saturday) 15:00-16:00 UTC

On Thursday, November 04, 2010 16:57:22 Christian Ruppert wrote:
> What will change and for whom?

hmm, i have multiple git repos on git.overlays.g.o, but i dont see how any of
this info is applicable to me. ive never mucked with these things.

maybe it's specific it actual overlays and not just repos on them ?
-mike
 

Thread Tools




All times are GMT. The time now is 05:18 AM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org