Merge "Add documentation on removing human user from pypi"

This commit is contained in:
Zuul 2023-02-23 00:58:11 +00:00 committed by Gerrit Code Review
commit dd6cc52a77
2 changed files with 27 additions and 0 deletions

View File

@ -121,6 +121,33 @@ and add "openstackci" in the "User Name" field, set the role to
:height: 476
:width: 800
Give OpenDev Exclusive Permission to Publish Releases
=====================================================
In some cases, such as OpenStack governed projects, maintainers may want to
give exclusive access to the package to the "openstackci" user. This ensures
releases are always created by automation and not by humans.
Update the roles for your project so the "openstackci" user has "Owner"
permissions. Visit
``https://pypi.org/manage/project/<projectname>/collaboration/``
and add "openstackci" in the "User Name" field, set the role to
"Owner", and click "Add Role".
.. image:: images/pypi-role-maintenance.png
:height: 476
:width: 800
After ensuring the "openstackci" user has owner access, you should also
consider removing any remaining users, including your own, from the project.
This will prevent accidental releases from being made and prevents compromise
of the project if a your user account is compromised. You do this by clicking
the remove button beside your username in the list.
.. image:: images/pypi-role-remove.png
:height: 476
:width: 800
Adding the Project to the CI System
===================================

Binary file not shown.

After

Width:  |  Height:  |  Size: 49 KiB