2 # Amino gitosis.conf - access control for git
4 # To add a new user here:
6 # 1. Add them *in alphabetical order* in the members list in "group
8 # 2. Add their ssh public key as <username>.pub in the keydir
11 # To add a new *central* repository here:
13 # 1. Add a section called [repo $repo] for anonymous read-only
14 # web/git-daemon access in the REPOSITORIES section
16 # 2. Decide who should have write access:
17 # a. if it's just admins then you're done
18 # b. if it's everybody then list the repo in the "writable=" line
19 # in the "all-write" group in the GROUPS section
20 # c. if you need special control over access, then add a new group
21 # for your repo called "group-$repo"
23 # User repositories are special - see the bottom of the file for the
24 # gory details but you shouldn't need to change anything there!
26 ##############################################################
30 ##############################################################
36 ## Logging level, one of DEBUG, INFO, WARNING, ERROR, CRITICAL
40 writable = gitosis-admin gitosis debian.org jigit fuse-music debian-cd-search fake-hwclock abcde steve-scripts strace-test openstack-debian-images live-wrapper buildd-scripts steve-sigs
41 members = steve # stemci01
44 writable = debian-rootfs
49 members = steve stemci01 colin_tuckley andrew_strong ville
52 members = andy codehelp daniel leif neil steve vince
57 writable = Thermomentum/*
60 members = steve stemci01
61 writable = shim-review
64 members = steve stemci01
68 members = steve stemci01
71 ## List all our desired users here, in ALPHABETICAL ORDER!
73 #members = acox anilsson apapp bcockburn bczerwinski brobertson charris ctaylor dwysokinski elarsson gcrocker gmonell hliebel hnguyen ismith jbyrne jlarsson jmorrissey jsummerfield kchristenson kmonell kwolvaardt landersson lcheng meanor mbrown mfrancomb mlarman mrendahl nmcgovern pluscher rwarren sali sam-test smcintyre snutt wrevens
75 ## Group of contractors with rights to view st-core & aminet and create public repositories
76 ## Also read-only access to Steve's public Aminet 7105 repo
77 #[group contractors-st]
78 #readonly = st-core aminet users/smcintyre/aminet-7105
81 ## And the folks with admin rights here
83 #members = gitosis-mirror smcintyre mfrancomb nmcgovern wszachau jmorrissey
85 ## Give all Amino users read access to all modules as a default
86 #[group default-read-only]
87 #readonly = * users/*/*
90 ## And admins get write access to everything too
91 #[group default-admin-write]
92 #writable = * users/*/*
95 ##############################################################
97 ### END OF COMMON CONFIG (special formatting, do NOT change!)
99 ##############################################################
101 ##############################################################
105 ##############################################################
107 # Below here, add "repo" definitions to fill in the description and
108 # owner fields for gitweb.
111 description = Git server admin
112 owner = Steve McIntyre
115 description = Gitosis software
116 owner = Steve McIntyre
119 description = Debian.org config
120 owner = Steve McIntyre
123 description = Jigdo tools
124 owner = Steve McIntyre
127 description = Transcoding filesystem
128 owner = Steve McIntyre
130 [repo debian-cd-search]
131 description = Search for contents of Debian CDs
132 owner = Steve McIntyre
135 description = Save/restore system clock on machines without working RTC hardware
136 owner = Steve McIntyre
139 description = A Better CD Encoder
140 owner = Steve McIntyre
143 description = Local scripts repo
144 owner = Steve McIntyre
147 description = Local sigrot repo
148 owner = Steve McIntyre
151 description = local strace test scripts
152 owner = Steve McIntyre
154 [repo openstack-debian-images]
155 description = local working branch for openstack-debian-images
156 owner = Steve McIntyre
159 description = local working branch for live-wrapper
160 owner = Steve McIntyre
162 [repo buildd-scripts]
163 description = local scripts for doing Debian rebuilds
164 owner = Steve McIntyre
167 description = review repo for shim signing
168 owner = Steve McIntyre
173 description = local package for managing apt updates
174 owner = Steve McIntyre
179 description = Jigdo upstream work
180 owner = Steve McIntyre
184 # Add gitweb and git:// access to the user repositories too.
185 # The $user in the "repo" line is important, as that's how we look up
186 # the username when generating the Description and Owner fields in
187 # gitweb output. If we can find user details for $user, we will
188 # substitute their name in the Description field, replacing
191 description = Public repository for $username
196 description = Vero-Apparatus repo
200 #[repo Thermomentum/*]
201 #description = Thermomentum repo
204 #owner = Andy Simpkins
206 ##############################################################
208 ### END OF REPOSITORIES (special formatting, do NOT change!)
210 ##############################################################
212 # Anything below here will only apply to the master config on
213 # glutamine, the central git server in Cambridge. Caches should
214 # therefore remain read-only for users except admins.
217 ##############################################################
221 ##############################################################
223 # By default (see rules in the common config section), all
224 # repositories will be:
226 # 1. writable by @admins
227 # 2. readonly by @amino
229 # If you want to give more access to a repository then list it in
230 # "all-write" or for more fine-grained control add a specific "group"
231 # definition for it in this section.
234 writable = aminet mood meego intel-media intel-ui intel-ems
239 members = anilsson mrendahl
243 members = jbyrne snutt anilsson
246 writable = innovation
247 members = gmonell jkwarnmark jsummerfield mfrancomb mrendahl
249 ##############################################################
251 ### END OF GROUPS (special formatting, do NOT change!)
253 ##############################################################
255 ##############################################################
257 ### USER REPOSITORY CONFIG
259 ##############################################################
261 # Special group that adds support for repositories of the form
262 # user/<user>/<foo>.git. Otherwise admins would have to add specific
263 # entries for every single user repo, and that would quickly become an
266 # The following config group will allow *write* access to
267 # user/<user>/<foo>.git for the owner ($user) and the @admins group
269 # If you want to allow a specific user (Bob) to have write access to
270 # a specific user repo (belonging to Alice), you will need to add a
271 # specific group describing Alice's user repo and list Bob in the
272 # members field there as normal. That will supplement the normal
273 # access from the wild-card group entries. Sorry, this *will* require
276 members = $user @admins
277 writable = users/$user/*
279 ##############################################################
281 ### END OF USER REPOSITORY CONFIG (special formatting, do NOT change!)
283 ##############################################################
285 ##############################################################
289 ##############################################################
292 # Immediately after a "git init" call for a new repo, configure the
293 # new repo appropriately for mirroring and mail notification
294 # post-init = /usr/local/bin/git-configure-post-receive
296 ##############################################################
298 ### END OF HOOKS CONFIG (special formatting, do NOT change!)
300 ##############################################################