Create Task
Maniphest T135249

create conduit method for the creation of phabricator policy objects
Closed, ResolvedPublic
Actions

Description

In T133252#2291840, @mmodell wrote:

@bd808: I can deploy newer upstream code for you.

That would be great to keep the proof of concept work moving forward.

With regard to policies, I've had considerable experience working with those. I can help write a custom conduit method that will generate the exact policy you need and return the phid for use with the repository edit api.

Is the content of the policy straightforward? I imagine it would be something like:

{
  "projects": "#repository-admins",
  "users": ["list", "usernames"]
}

Something straightforward like that isn't difficult at all to write.

That would also be most excellent. When the web gui is used the sort of policy I'm imagining looks a bit like this in the POST to Phab:

{
  "default": "deny",
  "rules": [
    {
      "action":"allow",
      "rule":"PhabricatorProjectsPolicyRule",
      "value":[
        "PHID-PROJ-74bt3nlwd4hl2ofmw77h"
      ]
    },
    {
      "action":"allow",
      "rule":"PhabricatorUsersPolicyRule",
      "value":[
        "PHID-USER-wzvm7msgcojlqmymu3vc",
        "PHID-USER-sikaw4dhyejwbfg2wujb"
      ]
    }
  ]
}

It's easy enough to look up the phids for things from their symbolic names.

And the response looks like:

{
  "error":null,
  "payload":{
    "phid":"PHID-PLCY-nsfusm6s3fmvw55ytam6",
    "info":{
      "name":"Custom Policy",
      "full":"Custom Policy",
      "icon":"fa-certificate"
    }
  }
}

Revisions and Commits

Restricted Differential Revision
rPHEX phabricator-extensions
Restricted Differential RevisionrPHEXc645004fe94d Update library_map and module_cache

Related Objects
Search...

Event Timeline

mmodell created this task.May 13 2016, 5:00 PM
Restricted Application added a subscriber: Zppix. · View Herald TranscriptMay 13 2016, 5:00 PM
bd808 removed a project: User-bd808.May 13 2016, 5:05 PM
Ricordisamoa unsubscribed.May 18 2016, 1:15 AM
mmodell added a revision: Restricted Differential Revision.May 20 2016, 8:52 PM
bd808 moved this task from Backlog to Waiting for code review on the Toolforge board.May 22 2016, 4:08 AM
bd808 added a revision: Restricted Differential Revision.May 25 2016, 2:56 AM
bd808 added a commit: rPHEXc645004fe94d: Update library_map and module_cache.May 25 2016, 5:44 AM
mmodell added a comment.EditedMay 25 2016, 9:08 PM

@bd808: is the current implementation satisfactory? Should this task be resolved?

bd808 closed this task as Resolved.May 25 2016, 9:09 PM
In T135249#2328097, @mmodell wrote:

@bd808: is the current implementation satisfactory? Should this task be resolved?

Yeah. It's working well. If I find an edge case I'll open a new bug about it. Thanks for your help on this.

bd808 moved this task from Backlog to Done on the Community-Tech-Tool-Labs board.Jun 3 2016, 11:44 PM
Phabricator_maintenance removed a subscriber: yuvipanda.Jun 7 2017, 6:42 PM
Restricted Application added a project: Release-Engineering-Team (Kanban). · View Herald TranscriptJun 7 2017, 6:42 PM
Phabricator_maintenance edited projects, added RelEng-Archive-FY201718-Q1; removed Release-Engineering-Team (Kanban), Toolforge.Sep 26 2017, 11:47 PM
Aklapper removed subscribers: chasemp, demon.Thu, Nov 13, 9:54 AM

For the papertrail, the related commit is https://gitlab.wikimedia.org/repos/phabricator/extensions/-/commit/ce2f3d7a3d6c7f8929b9ddf05331c0a6b6ddd694

Restricted Application added a comment. · View Herald TranscriptThu, Nov 13, 9:54 AM

The Cloud-Services project tag is not intended to have any tasks. Please check the list on https://phabricator.wikimedia.org/project/profile/832/ and replace it with a more specific project tag to this task. Thanks!

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits