mirror of
https://gitlab.archlinux.org/archlinux/infrastructure.git
synced 2025-01-05 09:24:12 +01:00
5.4 KiB
5.4 KiB
/confidential
Onboarding an Arch Linux team member
Details
- Team member username:
- Application:
- Voting result:
- SSH public key:
- Full Name:
- Personal e-mail address:
- PGP key ID used with personal e-mail address:
- Communication e-mail address: [arch, personal]
All roles checklist
- Add user mail if TU or developer, or support staff and communication e-mail address is arch.
- Add new user email as per
docs/email.md. - Add entry in
group_vars/all/archusers.yml.- If support staff
hostsshould be set tomail.archlinux.org. homedir.archlinux.orgis also allowed for support staff, but it is opt-in.
- If support staff
- Add SSH pubkey to
pubkeys/<username>.pub. - Run
ansible-playbook -t archusers $(git grep -l archusers playbooks/ | grep -v phrik).
- Add new user email as per
- Create a new user in archweb. Select the appropriate group membership and allowed repos (if applicable).
- Subscribe communication e-mail address to internal staff mailing list.
- Allow sending from communication e-mail address on arch-dev-public (subscribe and/or find address and remove moderation).
- Give the user access to
#archlinux-staffon Libera Chat. - Give the user a link to our staff services page.
- Replace the Team member username with the @-prefixed username on Gitlab.
- Remove personal information (such as Full Name and Personal e-mail address, as well as the clearsigned representation of this data), remove the description history and make the issue non-confidential.
- Request staff cloak on Libera Chat (Group contacts)
Main key onboarding checklist
- Add new user email for the
master-key.archlinux.orgsubdomain as perdocs/email.md. - Create an issue in archlinux-keyring using the "New Main Key" template.
Package Maintainer/Developer onboarding checklist
- Create an issue in archlinux-keyring using the "New Packager Key" template.
- Assign the user to the correct group in the
Arch Linux Staff/Package Maintainer Team/group on Keycloak. - Assign the user to the
Package MaintainersorDevelopersgroup on archlinux.org. - Subscribe communication e-mail address to internal arch-tu or arch-dev mailing list.
- Give the user access to
#archlinux-tuor#archlinux-devon Libera Chat.
Support staff checklist
- Assign the user to the proper support staff group on Keycloak.
DevOps onboarding checklist
- Add entries in
group_vars/all/root_access.yml. - Run
ansible-playbook -t root_ssh playbooks/all-hosts-basic.yml. - Run
ansible-playbook playbooks/hetzner_storagebox.yml playbooks/rsync.net.yml. - Subscribe communication e-mail address to internal arch-devops-private mailing list.
- Add pubkey to Hetzner's key management for Dedicated server rescue system.
Wiki Administrator checklist
- Subscribe communication e-mail address to the arch-wiki-admins mailing list.