[newmaint-site] nm.debian.org updates
Enrico Zini
enrico at enricozini.org
Tue May 17 08:04:46 UTC 2016
On Mon, May 16, 2016 at 03:51:37PM +0200, Enrico Zini wrote:
> This is more preparation work on the way to having more key management
> on the site. Next I would like to have, is an interface to say "I agree
> to uphold SC and DMUP", sign it with a key, and track that we have a
> signed agreement for that key.
...and instead I created an interface for DMs to claim their account on
the site.
Now if a person without valid SSO information on nm.debian.org logs in
and visits the site, in the top right it says "<sso username> not known
to this site yet". Clicking on it leads to /nm/claim which has a guided
procedure to fix the situation.
The guided procedure asks for the person's fingerprint, generates a URL
with a HMAC token that contains sso username and fingerprint, and
ecrypts it with the fingerprint's key.
The user decodes the cyphertext, visits the link, and if everything is
consistent, the Person record's sso username gets changed.
Code is at http://anonscm.debian.org/cgit/nm/nm2.git/tree/dm/views.py
I'd like some Debian Maintainer to try this out before I announce it,
though, as I can only test this in unit tests.
Enrico
--
GPG key: 4096R/E7AD5568 2009-05-08 Enrico Zini <enrico at enricozini.org>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/newmaint-site/attachments/20160517/cb84b244/attachment.sig>
More information about the newmaint-site
mailing list