Page MenuHomePhabricator
Create Task
Maniphest T187846

Security Review of Office IT Internal Account Management Tool
Closed, DeclinedPublic
Actions

Description

Project Information

  • Name of tool/project: OIT Account Management Tool
  • Project home page: None
  • Name of team requesting review: Office IT
  • Primary contact: @bbogaert
  • Target date for deployment: 4/1/2018
  • Link to code repository / patchset: Can provide once task is private

Description of the tool/project

The tool is an Python FLASK application to manage Office IT LDAP accounts. It also incorporates Google OAuth for login.

Description of how the tool will be used at WMF

This tool will be used by Office IT to manage accounts. The tool will also allow staff to view their LDAP information and update their passwords in Office IT LDAP that are also used for VPN, WiFi and G-Suite. The tool also allows Office IT to administer mailman lists, and Wiki (office, meta, collab, foundation) accounts.

Dependencies

None

Has this project been reviewed before?

This project is currently being reviewed as https://phabricator.wikimedia.org/T156960 but we have completely rewritten it.

Working test environment

Can provide once this task is private.

Post-deployment

@bbogaert

Event Timeline

bbogaert created this task.Feb 21 2018, 12:59 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptFeb 21 2018, 12:59 AM
JBennett claimed this task.Mar 19 2018, 2:59 PM
Reedy moved this task from Incoming to Scheduled on the deprecated-security-team-reviews board.Sep 11 2018, 7:46 PM
chasemp moved this task from Scheduled to Incoming on the deprecated-security-team-reviews board.Dec 17 2018, 6:36 PM
sbassett triaged this task as Medium priority.Jul 9 2019, 8:56 PM
chasemp moved this task from Incoming to Back Ordered on the deprecated-security-team-reviews board.Jan 6 2020, 9:37 PM
chasemp added a project: Application Security Reviews.Jan 7 2020, 3:38 PM
chasemp removed a project: deprecated-security-team-reviews.Jan 7 2020, 3:46 PM
chasemp moved this task from Incoming to Back Orders on the Application Security Reviews board.Jan 7 2020, 3:49 PM
chasemp moved this task from Back Orders to In Progress on the Application Security Reviews board.
Jcross removed JBennett as the assignee of this task.Jan 8 2020, 7:57 PM
Jcross lowered the priority of this task from Medium to Low.
Jcross moved this task from In Progress to Back Orders on the Application Security Reviews board.
Jcross added a subscriber: JBennett.
sbassett added a project: WMF-Office-IT.Jan 14 2020, 4:32 PM
Jcross closed this task as Declined.Jan 22 2020, 12:03 AM
Jcross added subscribers: bcampbell, Jcross.

Closing per email conversation with @bcampbell in OIT- this is an old ticket that no longer requires work from the Security-Team.

Jcross moved this task from Back Orders to Our Part Is Done on the Application Security Reviews board.Mar 10 2020, 5:10 PM
chasemp added a project: secscrum.Mar 10 2020, 8:11 PM
chasemp moved this task from Incoming to Our Part Is Done on the secscrum board.Mar 10 2020, 8:19 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits