Launchpad itself

~vcs-imports team need privileges review

Bug #576090 reported by Brad Crittenden on 2010-05-05

This bug affects 2 people

Affects

Status

Importance

Assigned to

Milestone

Launchpad itself

Fix Released

High

Tim Penhey

Launchpad itself 10.05

You need to log in to change this bug's status.

Affecting:	Launchpad itself
Filed here by:	Brad Crittenden
When:	2010-05-05
Confirmed:	2010-05-06
Assigned:	2010-05-15
Started work:	2010-05-15
Completed:	2010-06-02

Target

Distribution
Package	(Find…)
Project	(Find…)

Status	Importance	Milestone
	High	Launchpad itself 10.05

Assigned to

	Me
	Tim Penhey (thumper)

Comment on this change (optional)

Email me about changes to this bug report

(?)

Bug Description

We want to open import reviews up to community members by adding them to the ~vcs-imports team. It appears the team currently has some extra privileges they should not. A thorough review needs to be done and the permissions set to be no more generous than necessary.

MaxB reports these current capabilities:

Privileges are:

lp.registry.browser.product: ~vcs-imports members can set the owner and license_reviewed flag of projects when registering a new project.

canonical.launchpad.security:

IProductSeries launchpad.Admin <--- weird!
IBazaarApplication launchpad.Admin
ICodeImport launchpad.Edit
ICodeImportJobSet launchpad.View
ICodeImportJobWorkflow launchpad.Edit
ICodeImportMachine launchpad.Edit
IBranch that is a code import launchpad.Edit

Tags: Edit Tag help

Related branches

lp:~thumper/launchpad/vcs-imports-permission-review

Merged into lp:launchpad at revision 10914

Michael Hudson-Doyle: Approve on 2010-05-24

Max Bowsher (maxb) wrote on 2010-05-05:

It has been hypothesized that the original purpose of IProductSeries launchpad.Admin might be to allow ~vcs-imports people to designate a newly created vcs import as the series development focus. This might not be sane, and should perhaps be handled through some other team. Perhaps ~launchpad-chr.

Tim Penhey (thumper) wrote on 2010-05-05: Re: [Bug 576090] Re: ~vcs-imports team need privileges review

On Thu, 06 May 2010 10:25:42 you wrote:
> It has been hypothesized that the original purpose of IProductSeries
> launchpad.Admin might be to allow ~vcs-imports people to designate a
> newly created vcs import as the series development focus. This might not
> be sane, and should perhaps be handled through some other team. Perhaps
> ~launchpad-chr.

No, originally import details were always connected to a product series.

Historical rubbish.

Tim Penhey (thumper) on 2010-05-06

Changed in launchpad-code:
status:	New → Triaged
importance:	Undecided → High
tags:	added: tech-debt

Ursula Junque (ursinha) wrote on 2010-05-15: Bug fixed by a commit

Fixed in stable r10861 <http://bazaar.launchpad.net/~launchpad-pqm/launchpad/stable/revision/10861>

Changed in launchpad-code:
assignee:	nobody → Tim Penhey (thumper)
milestone:	none → 10.05
status:	Triaged → Fix Committed
tags:	added: qa-needstesting

Max Bowsher (maxb) wrote on 2010-05-15:

Remaining issues:

* thumper's branch didn't update the docstring of canonical.launchpad.security.EditCodeImportMachine, which now lies.

* thumper's branch didn't address the special access given to ~vcs-imports in lp.registry.browser.product.

Ursula Junque (ursinha) wrote on 2010-05-26:

Fixed in stable r10914 <http://bazaar.launchpad.net/~launchpad-pqm/launchpad/stable/revision/10914>

Tim Penhey (thumper) on 2010-06-01

tags:

added: qa-ok
removed: qa-needstesting

Curtis Hovey (sinzui) on 2010-06-02

Changed in launchpad-code:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information Edit

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers