Page MenuHomePhabricator
Create Task
Maniphest T246449

Security Issue Access Request for 2020 Stewards
Closed, ResolvedPublic
Actions

Description

To be provided acl*security_steward access (Phabricator Username):

To ensure removed from acl*security_steward access (without other authorization):

(One pending closure but you can proceed (updated mar 9))

Reasons For Request: 2020 edition of T217361: Security Issue Access Request for steward election, Stewards have access to #acl*security_steward to do stuff. New stewards should have access to the stuff just like oldbies, so this task is here for the annual events. Please validate if they have 2FA, and add them if they have it. I am not an phab admin so I can't check them.

The new stewards have been reminded to enable 2FA on Phab, FYI.

Related Objects

Event Timeline

revi created this task.Feb 28 2020, 3:28 PM
Restricted Application added a project: User-revi. · View Herald TranscriptFeb 28 2020, 3:28 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
MarcoAurelio subscribed.Feb 28 2020, 3:29 PM
revi edited projects, added Stewards-and-global-tools, Security-Team; removed acl*security_steward.Feb 28 2020, 3:29 PM
revi moved this task from Incoming to Radar on the User-revi board.
chasemp subscribed.Feb 28 2020, 4:47 PM

Thanks @revi for creating this. It's on the agenda for our meeting on monday. Do you have an idea of when the (to be determined) for removals will be known?

revi added a comment.Feb 28 2020, 4:50 PM

We have a list of stewards who are stepping down (will update after saving this comment) but the final list (including those who failed our reconfirmation process) will be produced after March 7 (fastest date).

RhinosF1 subscribed.Feb 28 2020, 4:53 PM
revi updated the task description. (Show Details)Feb 28 2020, 4:57 PM
revi added a subscriber: Teles.
sbassett subscribed.Feb 28 2020, 5:13 PM

Note: @Urbanecm and @MusikAnimal are already in acl*security. Not sure if acl*security_steward would be redundant.

revi added a comment.Feb 29 2020, 3:33 PM

It might be a good idea to have redundancy? I listed them anyways knowing they have acl*security via acl*security_volunteer and acl*security_developer , respectively.

chasemp claimed this task.Mar 2 2020, 4:30 PM
chasemp triaged this task as Medium priority.
chasemp moved this task from Incoming to In Progress on the Security-Team board.
chasemp added a subscriber: jbond.Mar 2 2020, 5:08 PM

I'll ask folks on our end about duplicate entry thinking (also worth asking @jbond if the automated logic can handle it?), and I'll wait till the final tally on march 7th to knock this out at once.

chasemp added a project: SRE.Mar 2 2020, 5:15 PM
In T246449#5933519, @chasemp wrote:

I'll ask folks on our end about duplicate entry thinking (also worth asking @jbond if the automated logic can handle it?), and I'll wait till the final tally on march 7th to knock this out at once.

chasemp changed the task status from Open to Stalled.Mar 2 2020, 5:19 PM
chasemp lowered the priority of this task from Medium to Lowest.
chasemp moved this task from In Progress to Waiting on the Security-Team board.

On my cal for the 9th.

jbond added a comment.Mar 3 2020, 4:12 PM

I'll ask folks on our end about duplicate entry thinking (also worth asking @jbond if the automated logic can handle it?), and I'll wait till the final tally on march 7th to knock this out at once.

I'm not sure what the "duplicate entry thinking" refers to so hard to answer if the offboarding script can handle this. also note there is nothing automatic about the off boarding script it is ran manually when a member of SRE is actioning an offboarding task.

Urbanecm added a comment.Mar 3 2020, 5:17 PM

It refers to: should I be in both acl*security_volunteer and acl*security_steward, when I gained security access in both of those roles?

revi updated the task description. (Show Details)Mar 9 2020, 2:16 PM
revi added subscribers: TheresNoTime, Sjoerddebruin.
revi added a comment.Mar 9 2020, 4:15 PM

@chasemp Feel free to consider current list final for the time being. One stewards' confirmation is not closed but I think it's fine to go ahead (given current voting status).

chasemp added a comment.Mar 10 2020, 12:42 PM
In T246449#5954198, @revi wrote:

@chasemp Feel free to consider current list final for the time being. One stewards' confirmation is not closed but I think it's fine to go ahead (given current voting status).

Thanks, will process soon

chasemp changed the task status from Stalled to Open.Mar 10 2020, 5:33 PM
chasemp moved this task from Waiting to In Progress on the Security-Team board.
chasemp updated the task description. (Show Details)Mar 10 2020, 5:36 PM

@Krd if you would like to be included here please add MFA to your phab account. Thanks.

chasemp added a comment.Mar 10 2020, 5:37 PM

Looks like https://phabricator.wikimedia.org/project/members/2849/ is already updated otherwise so cheers and thanks :)

chasemp changed the task status from Open to Stalled.Mar 10 2020, 5:37 PM
chasemp moved this task from In Progress to Waiting on the Security-Team board.
In T246449#5957171, @chasemp wrote:

@Krd if you would like to be included here please add MFA to your phab account. Thanks.

I'll leave this open for a week or so

chasemp removed chasemp as the assignee of this task.Mar 10 2020, 5:38 PM
Urbanecm added a comment.Aug 1 2020, 10:53 PM

@chasemp A week has already passed :-).

Krd added a comment.Aug 2 2020, 12:16 PM
In T246449#5957171, @chasemp wrote:

@Krd if you would like to be included here please add MFA to your phab account. Thanks.

Done now.

sbassett added a comment.Oct 19 2020, 4:26 PM

@Krd - you are now added. Resolving this task for now.

sbassett closed this task as Resolved.Oct 19 2020, 4:26 PM
sbassett updated the task description. (Show Details)
sbassett moved this task from Waiting to Our Part Is Done on the Security-Team board.
sbassett moved this task from Untriaged to Low priority on the Stewards-and-global-tools board.
sbassett moved this task from Backlog to Acknowledged on the SRE board.
revi mentioned this in T275880: Security Issue Access Request for 2021 Stewards.Feb 26 2021, 2:18 PM
FriedrickMILBarbarossa awarded a token.Feb 27 2022, 2:22 AM
FriedrickMILBarbarossa subscribed.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL