2 # Amino gitosis.conf - access control for git
4 # To add a new user here:
6 # 1. Add them *in alphabetical order* in the members list in "group
8 # 2. Add their ssh public key as <username>.pub in the keydir
11 # To add a new *central* repository here:
13 # 1. Add a section called [repo $repo] for anonymous read-only
14 # web/git-daemon access in the REPOSITORIES section
16 # 2. Decide who should have write access:
17 # a. if it's just admins then you're done
18 # b. if it's everybody then list the repo in the "writable=" line
19 # in the "all-write" group in the GROUPS section
20 # c. if you need special control over access, then add a new group
21 # for your repo called "group-$repo"
23 # User repositories are special - see the bottom of the file for the
24 # gory details but you shouldn't need to change anything there!
26 ##############################################################
30 ##############################################################
36 ## Logging level, one of DEBUG, INFO, WARNING, ERROR, CRITICAL
41 writable = gitosis-admin gitosis debian.org jigit fuse-music debian-cd-search fake-hwclock abcde steve-scripts strace-test openstack-debian-images live-wrapper buildd-scripts
42 members = steve # stemci01
45 writable = debian-rootfs
50 members = steve stemci01 colin_tuckley andrew_strong ville
53 members = andy codehelp daniel leif neil steve vince
58 writable = Thermomentum/*
61 members = steve stemci01
62 writable = shim-review
65 members = steve stemci01
68 ## List all our desired users here, in ALPHABETICAL ORDER!
70 #members = acox anilsson apapp bcockburn bczerwinski brobertson charris ctaylor dwysokinski elarsson gcrocker gmonell hliebel hnguyen ismith jbyrne jlarsson jmorrissey jsummerfield kchristenson kmonell kwolvaardt landersson lcheng meanor mbrown mfrancomb mlarman mrendahl nmcgovern pluscher rwarren sali sam-test smcintyre snutt wrevens
72 ## Group of contractors with rights to view st-core & aminet and create public repositories
73 ## Also read-only access to Steve's public Aminet 7105 repo
74 #[group contractors-st]
75 #readonly = st-core aminet users/smcintyre/aminet-7105
78 ## And the folks with admin rights here
80 #members = gitosis-mirror smcintyre mfrancomb nmcgovern wszachau jmorrissey
82 ## Give all Amino users read access to all modules as a default
83 #[group default-read-only]
84 #readonly = * users/*/*
87 ## And admins get write access to everything too
88 #[group default-admin-write]
89 #writable = * users/*/*
92 ##############################################################
94 ### END OF COMMON CONFIG (special formatting, do NOT change!)
96 ##############################################################
98 ##############################################################
102 ##############################################################
104 # Below here, add "repo" definitions to fill in the description and
105 # owner fields for gitweb.
108 description = Git server admin
109 owner = Steve McIntyre
112 description = Gitosis software
113 owner = Steve McIntyre
116 description = Debian.org config
117 owner = Steve McIntyre
120 description = Jigdo tools
121 owner = Steve McIntyre
124 description = Transcoding filesystem
125 owner = Steve McIntyre
127 [repo debian-cd-search]
128 description = Search for contents of Debian CDs
129 owner = Steve McIntyre
132 description = Save/restore system clock on machines without working RTC hardware
133 owner = Steve McIntyre
136 description = A Better CD Encoder
137 owner = Steve McIntyre
140 description = Local scripts repo
141 owner = Steve McIntyre
144 description = local strace test scripts
145 owner = Steve McIntyre
147 [repo openstack-debian-images]
148 description = local working branch for openstack-debian-images
149 owner = Steve McIntyre
152 description = local working branch for live-wrapper
153 owner = Steve McIntyre
155 [repo buildd-scripts]
156 description = local scripts for doing Debian rebuilds
157 owner = Steve McIntyre
160 description = review repo for shim signing
161 owner = Steve McIntyre
166 description = local package for managing apt updates
167 owner = Steve McIntyre
171 # Add gitweb and git:// access to the user repositories too.
172 # The $user in the "repo" line is important, as that's how we look up
173 # the username when generating the Description and Owner fields in
174 # gitweb output. If we can find user details for $user, we will
175 # substitute their name in the Description field, replacing
178 description = Public repository for $username
183 description = Vero-Apparatus repo
187 #[repo Thermomentum/*]
188 #description = Thermomentum repo
191 #owner = Andy Simpkins
193 ##############################################################
195 ### END OF REPOSITORIES (special formatting, do NOT change!)
197 ##############################################################
199 # Anything below here will only apply to the master config on
200 # glutamine, the central git server in Cambridge. Caches should
201 # therefore remain read-only for users except admins.
204 ##############################################################
208 ##############################################################
210 # By default (see rules in the common config section), all
211 # repositories will be:
213 # 1. writable by @admins
214 # 2. readonly by @amino
216 # If you want to give more access to a repository then list it in
217 # "all-write" or for more fine-grained control add a specific "group"
218 # definition for it in this section.
221 writable = aminet mood meego intel-media intel-ui intel-ems
226 members = anilsson mrendahl
230 members = jbyrne snutt anilsson
233 writable = innovation
234 members = gmonell jkwarnmark jsummerfield mfrancomb mrendahl
236 ##############################################################
238 ### END OF GROUPS (special formatting, do NOT change!)
240 ##############################################################
242 ##############################################################
244 ### USER REPOSITORY CONFIG
246 ##############################################################
248 # Special group that adds support for repositories of the form
249 # user/<user>/<foo>.git. Otherwise admins would have to add specific
250 # entries for every single user repo, and that would quickly become an
253 # The following config group will allow *write* access to
254 # user/<user>/<foo>.git for the owner ($user) and the @admins group
256 # If you want to allow a specific user (Bob) to have write access to
257 # a specific user repo (belonging to Alice), you will need to add a
258 # specific group describing Alice's user repo and list Bob in the
259 # members field there as normal. That will supplement the normal
260 # access from the wild-card group entries. Sorry, this *will* require
263 members = $user @admins
264 writable = users/$user/*
266 ##############################################################
268 ### END OF USER REPOSITORY CONFIG (special formatting, do NOT change!)
270 ##############################################################
272 ##############################################################
276 ##############################################################
279 # Immediately after a "git init" call for a new repo, configure the
280 # new repo appropriately for mirroring and mail notification
281 # post-init = /usr/local/bin/git-configure-post-receive
283 ##############################################################
285 ### END OF HOOKS CONFIG (special formatting, do NOT change!)
287 ##############################################################