rfc: permissions on package branches

Martin Pool mbp at canonical.com
Wed Mar 2 07:57:58 UTC 2011

On 18 February 2011 17:27, Robert Collins <robertc at robertcollins.net> wrote:
> On Fri, Feb 18, 2011 at 6:30 PM, Martin Pool <mbp at canonical.com> wrote:
>> On 18 February 2011 16:27, Robert Collins <robertc at robertcollins.net> wrote:
>>> What about 3 - have no owner at all: there is a unique path for each
>>> package branch, so we could just use that, and only that, for the
>>> branch path for official package branches.
>> That's fine with me.  It seemed like it might be harder to implement
>> inside Launchpad?  We can either go there directly, or actually do 1
>> (celebrity owner) but make it look like 3.
> We probably want an owner in the same sense that a team has an owner:
> someone that has administrative privilege over the thing but no direct
> access to the content of the thing. (For instance, the owner of a team
> can set an administrator, but can't join the teams mailing list).
> [modulo bugs :P]. I'd make *that* owner for these branches the owner
> of the distro series the branch is for, not a celebrity.
> Making package upload rights supercede 'owners' rights should be very
> straight forward.
> The nominal owner - the distro series owner - would
> provide a regular namespace today, and it should be pretty straight
> forward to coerce the official package branches into just having their
> official namespace as default.

(In passing, there doesn't seem to be any way on
<https://launchpad.net/ubuntu/maverick> to see who the owner is, but
the api tells me it is ~techboard. <http://pad.lv/727632>)

OK, so it seems like this doesn't _necessarily_ require any changes to
Launchpad: only the distro series owner (ie ~techboard) can mark a
branch as official.  They could simply refrain from doing that except
on branches they own themselves, in which case only ~techboard plus
the package uploaders would have access to it.

However, there is a bit of a trap there that they might not realize
the security implications of making a branch owned by someone else be

>From the thread so far, it seems like the simplest thing might be to
allow branches to only be made official when they are also directly
owned by the distro series owner?


More information about the ubuntu-distributed-devel mailing list