Requestor provided information and prerequisites
This section is to be completed by the individual requesting access.
- Wikitech username: samtar
- Email address: sam@theresnotime.co.uk
- SSH public key (must be a separate key from Wikimedia cloud SSH access): ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAILvhdG381YRtB7eyRf04bnH6dSYz1+6JF84mpY3yh9K0 sam@theresnotime.co.uk
- Requested group membership: ops (or wmcs-roots, see below)
- Reason for access:
During the recent wiki replica outage (T337446), I highlighted the need to potentially regenerate the meta_p database (via the maintain-meta_p script). I would have liked to assist the responding engineer by, if not running (as I would of course not run something I wasn't entirely confident in…), at least investigating the requisite steps further. To do either of these things, I required access to the cumin/clouddb hosts.
If granted, I would endeavour to continue to be as available as I currently am, and respond where appropriate to similar issues.
I note this comment by @Volans which mentions a wmcs-roots group — this may be more appropriate for the use case I describe.
Previous:
T302231: Requesting access to deployment for TheresNoTime
T317438: Toolforge root for TheresNoTime
- Name of approving party (manager for WMF/WMDE staff): As I'm making this request with "my volunteer hat on", I believe this is @lmata ? My manager can approve if necessary, though.
- Ensure you have signed the L3 Wikimedia Server Access Responsibilities document: ✅
- Please coordinate obtaining a comment of approval on this task from the approving party.
SRE Clinic Duty Confirmation Checklist for Access Requests
This checklist should be used on all access requests to ensure that all steps are covered, including expansion to existing access. Please double check the step has been completed before checking it off.
This section is to be confirmed and completed by a member of the SRE team.
- - User has signed the L3 Acknowledgement of Wikimedia Server Access Responsibilities Document.
- - User has a valid NDA on file with WMF legal. (All WMF Staff/Contractor hiring are covered by NDA. Other users can be validated via the NDA tracking sheet)
- - User has provided the following: wikitech username, email address, and full reasoning for access (including what commands and/or tasks they expect to perform)
- - User has provided a public SSH key. This ssh key pair should only be used for WMF cluster access, and not shared with any other service (this includes not sharing with WMCS access, no shared keys.)
[already added] - The provided SSH key has been confirmed out of band and is verified not being used in WMCS.
- - access request (or expansion) has sign off of WMF sponsor/manager (sponsor for volunteers, manager for wmf staff)
- - access request (or expansion) has sign off of group approver indicated by the approval field in data.yaml
For additional details regarding access request requirements, please see https://wikitech.wikimedia.org/wiki/Requesting_shell_access