Dzahn has submitted this change and it was merged.
Change subject: admin: add new group for datacenter ops
......................................................................
admin: add new group for datacenter ops
We want this group to allow dc-ops-engineers to add freshly
installed servers to puppet, without having to allow full root.
Bug:T115718
Change-Id: I6164b23a8b6f65e01bca03fc485c6a064097f47c
---
M modules/admin/data/data.yaml
1 file changed, 6 insertions(+), 0 deletions(-)
Approvals:
jenkins-bot: Verified
Dzahn: Looks good to me, approved
diff --git a/modules/admin/data/data.yaml b/modules/admin/data/data.yaml
index 250e747..6289152 100644
--- a/modules/admin/data/data.yaml
+++ b/modules/admin/data/data.yaml
@@ -419,6 +419,12 @@
'ALL = NOPASSWD: /usr/sbin/service restbase *',
'ALL = (restbase) NOPASSWD: ALL',
'ALL = NOPASSWD: /bin/journalctl *']
+ datacenter-ops:
+ gid: 765
+ description: Group of datacenter ops engineers
+ members: []
+ privileges: ['ALL = NOPASSWD: /usr/local/sbin/install-console *']
+
users:
rush:
ensure: present
--
To view, visit https://gerrit.wikimedia.org/r/246848
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings
Gerrit-MessageType: merged
Gerrit-Change-Id: I6164b23a8b6f65e01bca03fc485c6a064097f47c
Gerrit-PatchSet: 4
Gerrit-Project: operations/puppet
Gerrit-Branch: production
Gerrit-Owner: Dzahn <[email protected]>
Gerrit-Reviewer: Alex Monk <[email protected]>
Gerrit-Reviewer: Dzahn <[email protected]>
Gerrit-Reviewer: Filippo Giunchedi <[email protected]>
Gerrit-Reviewer: Hashar <[email protected]>
Gerrit-Reviewer: Papaul <[email protected]>
Gerrit-Reviewer: jenkins-bot <>
_______________________________________________
MediaWiki-commits mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits
