Page MenuHomeSoftware Heritage
Create Task
Maniphest T4029

create vpn and unix account for Andrey to access granet
Closed, MigratedEdits Locked
Actions

Description

@andrey-star is currently doing a remote internship with myself and @seirl. We would
like to give access to him to granet, in order to be able to execute some graph queries
locally there.

Dear sysadms, can you create a VPN access for him, a unix account, and deploy it on
granet?

(ping @andrey-star on the forge for the needed information)

Plan:

  • sysadm: create unix account ...
  • sysadm: ... with ssh access
  • andrey: create the csr and provide it here [1]
  • sysadm: sign the csr (validity period ~150 days) and provide the exported crt
  • andrey: configure the vpn connection
  • andrey: check ssh access to granet.internal.softwareheritage.org

[1] https://docs.softwareheritage.org/sysadm/user-management/openvpn/openvpn.html#for-users

Revisions and Commits

rSPSITE puppet-swh-site
D7334rSPSITEde91793dc477 Create internship account

Event Timeline

zack triaged this task as High priority.Mar 10 2022, 11:13 AM
zack created this task.
ardumont added a subscriber: ardumont.EditedMar 11 2022, 7:39 AM

@andrey-star I'll create you andreystar unix account on granet.

Can you please provide me with the following:

  • one ssh public key
  • the following csr (output from this page [1] (it's fine here as it's public part, the private part stays on your side)

All those information ^ are public so it's fine to reply here.

[1] https://docs.softwareheritage.org/sysadm/user-management/openvpn/openvpn.html#for-users

ardumont changed the task status from Open to Work in Progress.Mar 11 2022, 7:39 AM
ardumont moved this task from Backlog to Weekly backlog on the System administration board.
ardumont moved this task from Weekly backlog to in-progress on the System administration board.
ardumont added a revision: D7334: Create remote internship account for andreystar.Mar 11 2022, 8:05 AM
vsellier added a subscriber: vsellier.Mar 11 2022, 10:05 AM

@zack Do you know when the internship will end? (to schedule a reminder for the account removal)

andrey-star added a comment.Mar 14 2022, 10:16 AM

@ardumont here are the details:

ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABgQCqeoU19lT9+arVH4g17UIOzAvCblfNsD1nJJVZGwkDeO55cBc8aOjTZgfWmKGLim7ttL3GJGpPL859X5xuk4o1+6XllcFpkyjXuUwcnp5wGUznqnWFylPTpoIlldBtv+HuFltQIvloSObnBP4OjB7Jd7n2A6tVS8GT6/YoF7QNy429Xg3YvvbOa+jBqkaTF5hVhqKlpET7ZoPK1U/Kulv9N9llNvG8E0jQYQCHfi81tKWRwAPoWfDOD01c6t3zRMqdT/wsaB1KIeSxQc3T96a6Mx0wkJpVdJmWAq44XUMPB5bV/P6S+SNiIWJmSuxK4wia49ucPfxgmbJBQdIi9kh2o5eE2ouNwqaZK4TcqvhWT/nPim66nRbqAlUNJKEfTC7/W3Fm7WIYUvI6dgB7BBNDI7ar1hZAHHfJmF3d/EKHKaMYaTkwd4Rw2ewJ8Bh3UoRq/86voidBSB+IiGwCPIdsl399hkt9Otcxw60yQsSq03U1XVMtcINmgJmHLJzhMH8= andreystar@Andreys-MBP

csr
-----BEGIN CERTIFICATE REQUEST-----
MIICWjCCAUICAQAwFTETMBEGA1UEAwwKYW5kcmV5c3RhcjCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBANm5SDhY/kaAw/CrBgMIwdpW8F/sEPsMBZM08aXO
gVFhb7L9pKBdCnJsZOY3wNOTmQ+DVeFU7gCTS5deVIQsQ6CbPMzHkRXJfOPSP/zf
+rzU5fbuE6niX8ExjdbLt8W2UavbUtJi/f+Vasr2FAUbXKDB039J2E5ChscRvB5R
mI+3/EIK/lTubjrTOX4rBzxPgu6mnsEGzgKnn9pdLj9V1jWJU5Ca4vZAyS7VErD3
HU/8Xq/1pSn8ufwM+m5vgg4zPqWmXrmJCgNTtmkReY7W8X5oZ/M5Vc45GbYjYaPm
088VFI0w7ef3N9kTZAUSowfFaddTYwMZg7Dj7r9R7srHux0CAwEAAaAAMA0GCSqG
SIb3DQEBCwUAA4IBAQA1TuVQ1DHMJLF+2PS9df3bN418BoaEpmb28mpFVxOas2Dh
wcgFAFtxdmQOC61EPMaG6hPYzJCsJ0dCuTYVOudiEaFm1uEHOU1u7PDULnOlxLrk
gx0l2dxyHwzDDLMpd95Lpztft24JgqjCXAri0pTch3Am/yZNUh+zxqFuIFn/qKfI
ujNc/mCtJCaULTayxchof7Fx8byYprCvY2FJA7OPBwskXp8ZiWFp3dtn66qjDs3T
8RNyQIqqzlTly7lpluj5yAjvXZGrLS0hJya1lekLyrDyAiruGgIvKiniNJ7ZM2BU
nJEIE2wa9IsBm2xM0NQfp7bQZWyHjbJDxY6DFNXq
-----END CERTIFICATE REQUEST-----

andrey-star added a comment.Mar 14 2022, 10:18 AM

@vsellier the internship will end in June, you can schedule removal on say 15th of June

ardumont added a commit: rSPSITEde91793dc477: Create internship account.Mar 14 2022, 10:47 AM
ardumont updated the task description. (Show Details)Mar 14 2022, 1:25 PM
andrey-star updated the task description. (Show Details)Mar 14 2022, 4:05 PM
ardumont moved this task from in-progress to deployed/landed/monitoring on the System administration board.Mar 14 2022, 4:57 PM
ardumont closed this task as Resolved.Mar 14 2022, 7:00 PM
ardumont claimed this task.
ardumont moved this task from deployed/landed/monitoring to done on the System administration board.
gitlab-migration changed the task status from Resolved to Migrated.Oct 19 2022, 6:06 PM
gitlab-migration claimed this task.
gitlab-migration added a subscriber: gitlab-migration.

This task has been migrated to GitLab.

About · Developer information · Legal