Existing access request phabricator form: https://phabricator.wikimedia.org/maniphest/task/edit/form/8/
Preamble (These directions are listed at the top of the form, and cannot be edited by the user using the form):
Default Description (this can be edited and added to by the user when they use the form):
- Subject: Requesting access to $groups for $user
- Wikitech username:
- Preferred shell username:
- Email address:
- Ssh public key (must be dedicated key for wmf production)
- Requested group membership (proposed: drop down menu, with option to enter free form)
- Researchers: Access statistics number crunching hosts (like statistics-users) and also provides access to research mysql credentials on stat1006 (currently the only such host)
- Analytics-users: Gives generic client access to the Analytics (Hadoop) cluster. This will grant shell access on Hadoop client nodes and on Hadoop NameNodes.
- Analytics-privatedata-users: Gives access to the Analytics (Hadoop) cluster as well as private data within. This will grant shell access on Hadoop client nodes and on Hadoop NameNodes. Some files in HDFS have sensitive data in them.
- Statistics-users: Access statistics number crunching hosts. NO PRIVS.
- Statistics-privatedata-users: Access to stat boxes that host private data, including sampled webrequest logs. This group should not be used just to grant someone Hadoop access. If someone wants access to access webrequest logs in the Hadoop cluster you should put them in the analytics-privatedata-users group. If they want Hadoop access without rights to private data, add them instead to the analytics-users group. [] [] statistics-* groups DO NOT EQUAL Hadoop/Hive cluster access.
- deployment: replaces 'mortals' for mw software deployment
- Other: (free form text field)
- Reason for access:
- Name of approving party (hiring manager, for WMF staff):