Dave Fisher wrote:
Let's focus only on adding one new authz list for the code tree.
Call it openoffice-coders and populate it with those who HAVE any
commit activity in the current code tree.
I checked feasibility with Infra. Summary:
1) LDAP is not the solution. Rule it out.
2) The only possible solution would be an authz rule like suggested by
Dave here; however, Infra quite discourages it, mainly for maintenance
reasons. This leads me to think we would need some good justifications
for implementing this.
3) If the justification is security, then there are other privileges to
monitor. Namely, every committer has shell access to people.apache.org,
authenticated access to the Apache SMTP server and CMS privileges for
the openoffice.org website, including publish operations.
For the record, the Subversion project has complex rules like Rob
pointed out; but it's only a "social enforcement", i.e., all committers
respect those limitations by their own choice; if you look at the
technical level, every committer (all Apache committers) can commit code
to the Subversion subtree.
Regards,
Andrea.
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@openoffice.apache.org
For additional commands, e-mail: dev-h...@openoffice.apache.org
