2 # Access Control Lists for PLD builder
6 # [login]: login of user, used in messages
8 # gpg_emails: list of emails used in GPG signatures
9 # Message is considered to be sent by this user if *any* of emails
10 # listed is seen in "gpg: Good signature from ...<email>"
11 # It is therefore important not to add any fake signatures to
14 # mailto: where to send status notification for this user.
15 # If not present gpg_emails[0] is assumed.
17 # privs: list of privileges. List is scanned left to right. If no
18 # match is found access is denied. ! before item denies access.
19 # Items have format <what-action>:<which-builder>[:<what-branch>],
20 # where all three are shell wildcards and by default any branch is allowed.
21 # <what-branch> may be only specified for: src, binary, ready and upgrade
24 # src -- build src rpm (only makes sense if <which-builder> is src
26 # binary -- build binary rpm
27 # notify -- can send notification about build process on given builder.
28 # Used in entries for binary builders.
29 # ready -- can start non-test builds
30 # upgrade -- can start package upgrades
31 # <number> -- minimum (highest) priority allowed (default: 10)
34 # Allow access for binary builders, except for security builders.
35 # Also allow building src rpms (without it binary:* wouldn't make much
36 # sense). Lowest priority allowe will be 3.
39 # gpg_emails = foo@pld-linux.org Foo.Bar@blah.com
40 # mailto foo-builder@blah.com
41 # privs = src:src !binary:security-* binary:* 3:*
45 gpg_emails = bin_builder@roke.freak
49 gpg_emails = srpms_builder@roke.freak
50 privs = sign_queue:* notify:*
53 gpg_emails = malekith@pld-linux.org
54 mailto = malekith@roke.freak
55 privs = src:roke-src binary:roke-*:AC-branch
TLD / tld-builder.git / blob