From d8ddf13e991de1c0f6faefe6d4644e9409e16188 Mon Sep 17 00:00:00 2001
From: Rob Austein <sra@hactrn.net>
Date: Thu, 23 Jan 2014 10:21:03 -0500
Subject: Add PGP hacks to gitolite.conf, add Randy's SSH key, add PGP keys.

---
 conf/gitolite.conf | 33 ++++++++++++++++++++++++++++++---
 1 file changed, 30 insertions(+), 3 deletions(-)

(limited to 'conf/gitolite.conf')

diff --git a/conf/gitolite.conf b/conf/gitolite.conf
index 4ed172a..e0b70a7 100644
--- a/conf/gitolite.conf
+++ b/conf/gitolite.conf
@@ -1,5 +1,32 @@
+# People who administer the repository system.
+
+@admins = sra randy
+
+# For now we use user group @all to mean the cryptech core group.  If
+# we ever have committers who are not core, we'll likely need a @core
+# group here, and perhaps other groups.
+
+# GPG signature hook.  Don't mess with this.
+
+repo @all
+  - VREF/gpg-check = @all
+
+# Gitolite control repository.  Sysadmins only.
+
 repo gitolite-admin
-    RW+     =   sra@hactrn.net
+    RW+     =   @admins
+
+# Everything but the gitolite-admin repository is currently set up for
+# "wild repositories" (http://sitaramc.github.com/gitolite/wild.html).
+#
+# In theory, this lets authenticated users create their own
+# repositories without needing to touch this file.
+
+# Not sure whether we want "R = @all" (or "R = @core") here or not.
 
-repo testing
-    RW+     =   @all
+repo [a-zA-Z0-9].*
+    C   = @all
+    RW+	= CREATOR
+    RW	= WRITERS
+    R	= READERS
+    R   = @all
-- 
cgit v1.2.3