Fix commit permissions

Question

Fix commit permissions

Closed this issue 2 years ago · 5 comments

Require PR to commit, no direct checkins

And make sure CODEOWNERS and the actual permissions to merge match

Answer 1 · 2022-03-09T16:55:59.000Z

This is related to issue #6 which is about documenting the process for how to be a committer.
This issue on the other hand is just about enforcement and documenting the current list of committers.

Answer 2 · 2022-03-09T18:51:53.000Z

I added a rule to prevent direct commits and now merges are only allowed through PR with 2 approvals for the repos under L3AF project.

Answer 3 · 2022-03-16T15:10:35.000Z

Was this just flipping the bit on that setting for the org, or were teams created in the process (or some other access-defining step)?

If the latter, could we please get a list of who's allowed to do what and where?

Answer 4 · 2022-03-24T21:08:59.000Z

It was basically adding a branch protection rule to the repo to enforce this. Committers (write access) are the people that will have access to merge after 2 approvals.

Answer 5 · 2022-04-01T16:19:09.000Z

We have a CODEOWNERS file on all repositories with adequate permissions.