Page MenuHomePhabricator
Create Task
Maniphest T366351

Requesting access to analytics-privatedata-users for Tchanders
Open, Stalled, HighPublicRequest
Actions

Description

Requestor provided information and prerequisites

Complete ALL items below as the individual person who is requesting access:

  • Wikimedia developer account username: Tchanders
  • Email address: tchan@wikimedia.org
  • SSH public key (must be a separate key from Wikimedia cloud SSH access): ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAICEeJivjg1q1mDS25ZOvJzaCqBCTidMjXZKoHdJzc3TC tchanders@tchanders-ThinkPad
  • Requested group membership: analytics-privatedata-users
  • Reason for access:

We are the Trust and Safety Product team, working at the intersection of the legal Trust and Safety team and the Product department. The work that we do is sensitive in nature, dealing with privacy issues, inappropriate content, harassment, abuse and overall our users wellbeing. Among the features that we are currently responsible for are CheckUser, IP Info, MediaModeration and AbuseFilter.

We require access to the analytics-privatedata-users group to be able to monitor how these tools are performing on Superset, to use Jupyter notebooks to be able to query and understand impact and usages of features that we maintain and, generally, to access information that we need to make decisions about the features that keep our communities safe.

  • Name of approving party (manager for WMF/WMDE staff): @JayCano
  • Ensure you have signed the L3 Wikimedia Server Access Responsibilities document: Done
  • Please coordinate obtaining a comment of approval on this task from the approving party.

SRE Clinic Duty Confirmation Checklist for Access Requests

This checklist should be used on all access requests to ensure that all steps are covered, including expansion to existing access. Please double check the step has been completed before checking it off.

This section is to be confirmed and completed by a member of the SRE team.

  • - User has signed the L3 Acknowledgement of Wikimedia Server Access Responsibilities Document.
  • - User has a valid NDA on file with WMF legal. (All WMF Staff/Contractor hiring are covered by NDA. Other users can be validated via the NDA tracking sheet)
  • - User has provided the following: developer account username, email address, and full reasoning for access (including what commands and/or tasks they expect to perform)
  • - User has provided a public SSH key. This ssh key pair should only be used for WMF cluster access, and not shared with any other service (this includes not sharing with WMCS access, no shared keys.)
  • - The provided SSH key has been confirmed out of band and is verified not being used in WMCS.
  • - access request (or expansion) has sign off of WMF sponsor/manager (sponsor for volunteers, manager for wmf staff)
  • - access request (or expansion) has sign off of group approver indicated by the approval field in data.yaml

For additional details regarding access request requirements, please see https://wikitech.wikimedia.org/wiki/Requesting_shell_access

Details

SubjectRepoBranchLines +/-
admin: add tchanders to analytics-privatedata-usersoperations/puppetproduction+1 -1
Customize query in gerrit

Event Timeline

Tchanders created this task.Fri, May 31, 12:24 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptFri, May 31, 12:24 PM
Tchanders renamed this task from WIP Requesting access to analytics-privatedata-users for Tchanders to Requesting access to analytics-privatedata-users for Tchanders.Fri, May 31, 12:25 PM
Tchanders updated the task description. (Show Details)
Tchanders updated the task description. (Show Details)
colewhite updated the task description. (Show Details)Fri, May 31, 9:50 PM
colewhite added subscribers: Ahoelzl, odimitrijevic, WDoranWMF and 2 others.

Pinging @JayCano for manager approval.

Pinging one of @odimitrijevic, @Milimetric, @WDoranWMF, @Ahoelzl for Analytics team approval.

colewhite moved this task from Untriaged to Manager/NDA Approval/Confirmation on the SRE-Access-Requests board.Fri, May 31, 9:51 PM
gerritbot added a comment.Fri, May 31, 9:53 PM

Change #1037497 had a related patch set uploaded (by Cwhite; author: Cwhite):

[operations/puppet@production] admin: add tchanders to analytics-privatedata-users

https://gerrit.wikimedia.org/r/1037497

gerritbot added a project: Patch-For-Review.Fri, May 31, 9:53 PM
OKJ04 added a subtask: T366433: CentralAuth tests broken unless you run them inside Quibble.Mon, Jun 3, 1:39 AM
JJMC89 removed a subtask: T366433: CentralAuth tests broken unless you run them inside Quibble.Mon, Jun 3, 1:44 AM
Ladsgroup subscribed.Mon, Jun 3, 5:46 PM
Dzahn changed the task status from Open to Stalled.Thu, Jun 6, 10:34 PM
Dzahn triaged this task as High priority.
odimitrijevic added a comment.Fri, Jun 7, 8:12 PM

Approved

herron updated the task description. (Show Details)Mon, Jun 10, 7:45 PM
herron assigned this task to JayCano.Mon, Jun 10, 7:47 PM
herron subscribed.

Hi @JayCano, assigning to you for approval. Thanks!

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL