Make root-only information clear in sysadmin.rst.
As we document more fully, it has become clear that the sysadmin page really has two audiences: openstack-ci contributors and openstack-ci/cloned-infra root operators. Change-Id: If82c20a6292048f4212aac293da0b284f3b91436
This commit is contained in:
Robert Collins
parent
9edc063d2e
commit
09b5460de0
@ -162,6 +162,27 @@ following practices must be observed for SSH access:
|
|||||||
then the old one removed. Be sure to run puppet on the backup
|
then the old one removed. Be sure to run puppet on the backup
|
||||||
servers to make sure they are updated.
|
servers to make sure they are updated.
|
||||||
|
|
||||||
|
|
||||||
|
GitHub Access
|
||||||
|
=============
|
||||||
|
|
||||||
|
To ensure that code review and testing are not bypassed in the public
|
||||||
|
Git repositories, only Gerrit will be permitted to commit code to
|
||||||
|
OpenStack repositories. Because GitHub always allows project
|
||||||
|
administrators to commit code, accounts that have access to manage the
|
||||||
|
GitHub projects necessarily will have commit access to the
|
||||||
|
repositories. Therefore, to avoid inadvertent commits to the public
|
||||||
|
repositories, unique administrative-only accounts must be used to
|
||||||
|
manage the OpenStack GitHub organization and projects. These accounts
|
||||||
|
will not be used to check out or commit code for any project.
|
||||||
|
|
||||||
|
Root only information
|
||||||
|
#####################
|
||||||
|
|
||||||
|
Some information is only relevant if you have root access to the system - e.g.
|
||||||
|
you are an OpenStack CI root operator, or you are running a clone of the
|
||||||
|
OpenStack CI infrastructure for another project.
|
||||||
|
|
||||||
Backups
|
Backups
|
||||||
=======
|
=======
|
||||||
|
|
||||||
@ -204,16 +225,3 @@ Switching back to the server to be backed up, run::
|
|||||||
|
|
||||||
And verify the host key. Add the "backup" class in puppet to the server
|
And verify the host key. Add the "backup" class in puppet to the server
|
||||||
to be backed up.
|
to be backed up.
|
||||||
|
|
||||||
GitHub Access
|
|
||||||
=============
|
|
||||||
|
|
||||||
To ensure that code review and testing are not bypassed in the public
|
|
||||||
Git repositories, only Gerrit will be permitted to commit code to
|
|
||||||
OpenStack repositories. Because GitHub always allows project
|
|
||||||
administrators to commit code, accounts that have access to manage the
|
|
||||||
GitHub projects necessarily will have commit access to the
|
|
||||||
repositories. Therefore, to avoid inadvertent commits to the public
|
|
||||||
repositories, unique administrative-only accounts must be used to
|
|
||||||
manage the OpenStack GitHub organization and projects. These accounts
|
|
||||||
will not be used to check out or commit code for any project.
|
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user