blob: 83e14480320726240e801e953ea6fafb21e61b93 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
|
# People who administer the repository system.
@admins = sra randy sra@hactrn.net randy@psg.com
# For now we use user group @all to mean the cryptech core group. If
# we ever have committers who are not core, we'll likely need a @core
# group here, and perhaps other groups.
# GPG signature hook. Don't mess with this.
repo @all
- VREF/gpg-check = @all
# Gitolite control repository. Write restricted to sysadmins, since
# the VREF above is a form of access control we don't want bypassed,
# but allow any authorized user to read the config if they like.
repo gitolite-admin
RW+ = @admins
R = @all
# Wiki (Markdown + Pelican + m.css) repository. Same permissions as
# general repositories but needs special config for the pelican
# compile-on-push hook.
repo wiki
RW+ = @all
- VREF/pelican-build = @all
# Everything but the gitolite-admin repository is currently set up for
# "wild repositories" (http://sitaramc.github.com/gitolite/wild.html).
#
# We used to allow R for @all but restrict RW to WRITERS, but at the
# moment we just allow any authorized user to push to any wild
# repository. Then we added "+" for any authorized user because it's
# required to delete old branches. At which point there was no
# difference between CREATOR privs and everybody else's privs, so we
# just collapsed them.
repo [a-zA-Z0-9].*
C = @all
RW+ = @all
|
