[MediaWiki-commits] [Gerrit] adding user notes to admin yaml - change (operations/puppet)

Tue, 03 Jun 2014 08:27:12 -0700 

Rush has submitted this change and it was merged.

Change subject: adding user notes to admin yaml
......................................................................


adding user notes to admin yaml

Change-Id: I71c3e10c171c6ebf8d20d1fc1c4e293c7a738e60
---
M modules/admin/README
1 file changed, 23 insertions(+), 0 deletions(-)

Approvals:
  Rush: Verified; Looks good to me, approved



diff --git a/modules/admin/README b/modules/admin/README
index b313307..2d8bfd7 100644
--- a/modules/admin/README
+++ b/modules/admin/README
@@ -54,6 +54,29 @@
           realname: Foo Bar
           ssh_keys: [ssh-rsa mykeyhash foobar@mac]
 
+# NOTE: To choose the UID for a new user please lookup
+# the existing UID in (labs) LDAP and use that.
+# currently you do this on silver, example:
+#
+# ldaplist -l passwd someuser
+# ...
+# uidNumber: 1234
+#
+# advantages: no more duplicate UIDs that needed fixing,
+# matching UID across production and labs,
+# no need to grep|sort for the latest free UID anymore
+# almost every user who gets prod. shell already has a
+# labs user. if not, ask them nicely to make one first
+
+# NOTE: SSH keys added to this file always need to be verified.
+# acceptable methods of verification include:
+# gpg signing, having them pasted on office wiki user pages,
+# having them +1 by logged in gerrit users
+# unacceptable methods include:
+# plain email (senders can't be trusted),
+# IRC (definitely if not registered/identified with nickserv)
+# RT-only (because it can be emailed)
+
 Adding user 'foo' to adm:
 
     groups:

-- 
To view, visit https://gerrit.wikimedia.org/r/137028
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings

Gerrit-MessageType: merged
Gerrit-Change-Id: I71c3e10c171c6ebf8d20d1fc1c4e293c7a738e60
Gerrit-PatchSet: 2
Gerrit-Project: operations/puppet
Gerrit-Branch: production
Gerrit-Owner: Rush <r...@wikimedia.org>
Gerrit-Reviewer: Rush <r...@wikimedia.org>

_______________________________________________
MediaWiki-commits mailing list
MediaWiki-commits@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits

Reply via email to