@Aklapper Looks like this could solve T306708

In T331928#8689597, @Dzahn wrote:

@Aklapper Looks like this could solve T306708

Help but probably not solve.

On T306708#8661705 you said your team can't handle 2fa reset requests while on this ticket you request admin access to handle 2fa requests. This is confusing me a bit.

In T331928#8689603, @Dzahn wrote:

On T306708#8661705 you said your team can't handle 2fa reset requests while on this ticket you request admin access to handle 2fa requests. This is confusing me a bit.

The confusion might be that T306708 deals with more comprehensive management of various 2fa processes for the totality of Phabricator (i.e. a policy with resources and ownership). This request, as it pertains to T331125#8689286, is more about improving the Security-Team's ability to manage the 2fa components of Phabricator security access requests, and related administrative processes. Though I would likely be happy to assist, on occasion, with more general 2fa management processes within Phabricator, I cannot commit to that level of effort for this request.

Handling Phab 2FA reset requests (T306708) is about a better process to verify request, and the resetting itself requires shell access.
This ticket is about allow more Security folks to check in the Phab UI if an account has set up 2FA (before the account gets access to restricted tasks). Different things.

AFAIK there is no defined process how to handle admin requests, thus adding RelEng for input/approval

Gotcha, thanks @sbassett and @Aklapper for the clarification.

Ping @thcipriani @brennen et al to see if there are any objections to this request. Thanks.

No objections here.

@Aklapper - seems like there are no objections here, with at least one blessing from the Release-Engineering-Team?

Anyone please feel free to go ahead - thanks!

Mentioned in SAL (#wikimedia-releng) [2023-03-20T21:43:25Z] <brennen> phabricator: setting sbassett to administrator per T331928