srv: ac-alpha/etc/pld-builder/acl.conf (NEW) - import

glen glen at pld-linux.org
Tue Jul 15 08:42:33 CEST 2008 

Author: glen                         Date: Tue Jul 15 06:42:33 2008 GMT
Module: srv                           Tag: HEAD
---- Log message:
- import

---- Files affected:
srv/ac-alpha/etc/pld-builder:
   acl.conf (NONE -> 1.1)  (NEW)

---- Diffs:

================================================================
Index: srv/ac-alpha/etc/pld-builder/acl.conf
diff -u /dev/null srv/ac-alpha/etc/pld-builder/acl.conf:1.1
--- /dev/null	Tue Jul 15 08:42:33 2008
+++ srv/ac-alpha/etc/pld-builder/acl.conf	Tue Jul 15 08:42:28 2008
@@ -0,0 +1,55 @@
+#
+# Access Control Lists for PLD builder
+#
+# Format:
+# 
+# [login]: login of user, used in messages
+# 
+# gpg_emails: list of emails used in GPG signatures
+#   Message is considered to be sent by this user if *any* of emails
+#   listed is seen in "gpg: Good signature from ...<email>"
+#   It is therefore important not to add any fake signatures to
+#   keyring.
+#
+# mailto: where to send status notification for this user.
+#   If not present gpg_emails[0] is assumed.
+#
+# privs: list of privileges. List is scanned left to right. If no
+#   match is found access is denied. ! before item denies access.
+#   Items have format <what-action>:<which-builder>[:<what-branch>],
+#   where all three are shell wildcards and by default any branch is allowed.
+#   <what-branch> may be only specified for: src, binary, ready and upgrade
+#
+# Actions:
+#   src    -- build src rpm (only makes sense if <which-builder> is src 
+#             builder)
+#   binary -- build binary rpm
+#   notify -- can send notification about build process on given builder.
+#             Used in entries for binary builders.
+#   ready  -- can start non-test builds
+#   upgrade -- can start package upgrades
+#   <number> -- minimum (highest) priority allowed (default: 10)
+#
+# Example:
+# Allow access for binary builders, except for security builders.
+# Also allow building src rpms (without it binary:* wouldn't make much 
+# sense)
+#
+# [foo]
+# gpg_emails = foo at pld-linux.org Foo.Bar at blah.com
+# mailto foo-builder at blah.com
+# privs = src:src !binary:security-* binary:*
+#
+
+[bin_builder_roke]
+gpg_emails = bin_builder at roke.freak
+privs = notify:*
+
+[src_builder_roke]
+gpg_emails = srpms_builder at roke.freak
+privs = sign_queue:*
+
+[malekith]
+gpg_emails = malekith at pld-linux.org
+mailto = malekith at roke.freak
+privs = src:roke-src binary:roke-*:AC-branch
================================================================

More information about the pld-cvs-commit mailing list