Inactive accounts (git, master) cleanup


the GNOME Sysadmin Team has recently reviewed its LDAP account 
policies and moved forward creating an automatized way to cleanup 
inactive accounts. Specifically our cleanup script will work 
this way:

1. it parses the gnome_pushlog files for the whole set of Git
   repositories hosted at A gnome_pushlog file
   contains the following information:
   a. the username of the user that succesfully pushed to that
   b. the timestamp of the push
2. it compares all the timestamps against a two-years timeline.
3. it removes the inactive accounts from the gnomecvs ('s
   access) and ftpbasic groups. ('s access)

As you may have understood every user that does not commit a single 
time (on any of the hosted repositories) within two years has its 
account removed from both the gnomecvs and ftpbasic groups. 

In the case the account's owner is back and willing to get the 
commit access back an email to <accounts AT gnome DOT org> should be 
sent. At this point an existing maintainer should approve the request 
and the account will eventually be reinstated.

I would also like to remember everyone to give an additional look at 
the various DOAP files: keeping them up-to-date is essential given 
maintainers are enabled to provide Git access to external 
contributors, thus leaving an old or inactive maintainer on the DOAP 
file of your project may result in approval mails being sent to the 
wrong people delaying the approval of the account and thus the 
consequent account creation.

Additional reading about security and the GNOME Infrastructure can be 
found on the gnome-i18n in relation of the new way of committing 
translations directly from the's web interface. [1]

Have an awesome day!





Debian Developer,
Fedora / EPEL packager,
GNOME Sysadmin Team Coordinator,
GNOME Foundation Membership & Elections Committee Chairman


Attachment: signature.asc
Description: Digital signature

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]