[ZF] A couple of github issues
Matthew Wilkes
matthew at matthewwilkes.co.uk
Fri Feb 8 05:13:39 UTC 2013
Hello all,
I did some digging into GitHub permissions today and here are my findings:
If you create a team with Pull, Push and Admin rights to no repositories
its members can create repositories without having admin rights on the
organization as a whole.
There are two caveats to this.
1) Repositories that these users create are automatically added to that
team, so all members of this team become able to delete this repo
2) Users can remove each other from that team, removing eachothers
ability to create repositories.
I believe that this is still the best way of fixing our current problem
of creating repositories, so to that end I've written a simple package
that does github API calls. This assumes two teams exist, one that gives
push and pull to its members and is administered in the normal way. The
other will give push, pull and admin but have no repositories, and will
have its members synchronised with the other by the scripts.
Any repositories added to that team get moved to the other, which
prevents non-admins being able to delete repositories.
The package is called mr.sisyphus[1] and I'm currently converting Plone
to use this, as it reduces the chance of people deleting repositories
automatically. It can only be run by people in the admin team of an
organization.
I'd love to hear comments on if this is a good idea or not.
Matt
[1] - https://github.com/collective/mr.sisyphus
More information about the foundation
mailing list