github-as-code icon indicating copy to clipboard operation
github-as-code copied to clipboard
verified publisher icon ipdxco

Create a permission inspection tool on top of YAML

Open galargh opened this issue 3 years ago • 0 comments

I know we have talked about different ideas to improve the json structure. Another idea may be to have a quick tool that one can run and answer "after these changes, what repos do I have permissions for, what permissions do I have, and why (because part of a team, or direct repo)". I know the terraform doesn't take a user-focused view, but it could be a nice CI step to generate a user-focused view so folks can audit easily. Something like:

[
  {
     "user" : "name",
     "reposHasAccessTo" : [
         "go-libp2p" : {"permissionsLevel" : "admin", "via" : "admins"},
         "docs" : {"permissionsLevel" : "maintain", "via" : "DIRECT_ACCESS"},
         ...
     ]
  }, {
    ...
  }
]

galargh avatar Jun 08 '22 12:06 galargh