Page MenuHomePhabricator
Create Task
Maniphest T124218

Provide access to iOS team for piwik production server
Closed, ResolvedPublic
Actions

Description

Members of the iOS team needs access to https://piwik.wikimedia.org/index.php for analytics reporting.

The ldap configuration can be found here:
https://github.com/wikimedia/operations-puppet/blob/088fe6a3f7198acba1e2a82817a3fae033f42d9c/manifests/role/piwik.pp#L47

Below is the list of users who need access:
JMinor
Bgerstle-WMF
Mhurd
Fjalapeno
Etonkovidova
KHammerstein
Nirzar
pizzzacat

Please let me know if you need any more info. @Milimetric can also provide more context if needed.

Related Objects

Event Timeline

Fjalapeno created this task.Jan 20 2016, 8:29 PM
Fjalapeno raised the priority of this task from to Needs Triage.
Fjalapeno updated the task description. (Show Details)
Fjalapeno added projects: SRE, Wikipedia-iOS-App-Backlog.
Fjalapeno moved this task to Backlog on the SRE board.
Fjalapeno added subscribers: Fjalapeno, BGerstle-WMF, JMinor, Milimetric.
Restricted Application added subscribers: StudiesWorld, Aklapper. · View Herald TranscriptJan 20 2016, 8:29 PM
Fjalapeno moved this task from Needs Triage to Tracking on the Wikipedia-iOS-App-Backlog board.Jan 20 2016, 8:29 PM
Fjalapeno added a project: Blocked-on-Operations.Jan 20 2016, 8:31 PM
Fjalapeno set Security to None.
akosiaris closed this task as Resolved.Jan 21 2016, 3:39 PM
akosiaris claimed this task.
akosiaris added subscribers: Mhurd, Nirzar, KHammerstein and 3 others.

Hello,

Users:

@KHammerstein
@Fjalapeno
@JMinor
@BGerstle-WMF
@Nirzar

have been added to the wmf group and now have access with their labs LDAP account.

Users:

@Mhurd
@Etonkovidova
@pizzzacat

were already part of the above group and should have had already access.

Resolving, feel free to reopen if any problems arise.

BGerstle-WMF added a comment.Jan 21 2016, 3:59 PM

confirmed, now have access!

Fjalapeno added a comment.Jan 21 2016, 4:53 PM

Thanks!

JMinor mentioned this in T128885: Add jminor to wmf LDAP group.Mar 8 2016, 6:05 PM
Krenair reopened this task as Open.Mar 8 2016, 6:40 PM
Krenair subscribed.
krenair@bastion-01:~$ ldaplist -l group wmf | grep -i jminor
krenair@bastion-01:~$ ldaplist -l group wmf | grep -i fjalapeno
krenair@bastion-01:~$
Krenair added a comment.Mar 8 2016, 6:43 PM

Ah - that second one is due to cn != uid... But the first one definitely appears missing?

akosiaris closed this task as Resolved.Mar 8 2016, 9:01 PM

Hmm, looking into my .bash_history, it seems indeed I never added @JMinor to the group. I did add everyone else in the first list and even checked the other 3 already existing users. I can only declare it a mistake on my part.

I 've just added the user, sorry about that.

Re-resolving

JMinor added a comment.Mar 9 2016, 1:07 AM

Thanks. I was able to log in this afternoon, no problems.

Nirzar reopened this task as Open.Mar 10 2016, 10:27 PM

@akosiaris @Krenair I still don't have the LDAP access to production server.

Krenair closed this task as Resolved.Mar 10 2016, 11:12 PM

you definitely appear to:

krenair@bastion-01:~$ ldaplist -l group wmf | grep nirzar
	member: uid=nirzar,ou=people,dc=wikimedia,dc=org
Nirzar added a subscriber: AlexMonk-WMF.Mar 10 2016, 11:13 PM

@AlexMonk-WMF my LDAP is not "Nirzar" :( I don't know the password for this. my LDAP is NPangarkar (WMF)

Krenair removed a subscriber: AlexMonk-WMF.Mar 10 2016, 11:16 PM

Please don't subscribe that account, it's not relevant here.

krenair@bastion-01:~$ ldaplist -l passwd nirzar

dn: uid=nirzar,ou=people,dc=wikimedia,dc=org
	uid: nirzar
	objectClass: person
	objectClass: inetorgperson
	objectClass: organizationalPerson
	objectClass: ldappublickey
	objectClass: shadowaccount
	objectClass: posixaccount
	objectClass: top
	loginShell: /bin/bash
	sshPublicKey: ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDaO3TzBd9fmWzTsrSvh4wkgrxOxeLeA2kNDrwH1PfEuix+fI4kYotXEHSGIDPk33Wq6MmlHoYNtt/eX+A7NjeFstI8ylbemy1ueFCPcNkGnmDukzqR7vNSdI9onmBZVOPC1m1arM6Cql1ZPfOsawYGhPIYubbjKiFYdZ1tQx11o8kIbQL0/rclNlAvfVc63DcwOBaO25c/gvPWkjieGRnfQ0MM8l3qYeTAHxQdu/Q3NIURKEHVVf2z423yJ85bcYmDEna/aSiM9Ji9vfq1moQw23WU1kK1jvgkXnb+ybh243KzOeSGuB8dvdU8ZPiMtEdX25WcvQDOyQg3DOZs4l3d npangarkar@wikimedia.org
	uidNumber: 11557
	gidNumber: 500
	sn: Nirzar
	homeDirectory: /home/nirzar
	mail: npangarkar@wikimedia.org
	cn: Nirzar

It has your email address on.

Nirzar added a subscriber: AlexMonk-WMF.Mar 10 2016, 11:19 PM

@AlexMonk-WMF Okay, i will try all my passwords. Thank you for confirming this :)

Krenair removed a subscriber: AlexMonk-WMF.Mar 10 2016, 11:20 PM

Please stop it.

MZMcBride subscribed.Mar 11 2016, 2:42 PM
JMinor mentioned this in T142054: Add @JoeWalsh and @RHo to ldap/wmf so they can access piwik.wikimedia.org UI.Aug 3 2016, 11:13 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL