diff options
author | Jonathan Nieder <jrn@google.com> | 2014-05-07 19:40:58 -0700 |
---|---|---|
committer | David Pursehouse <david.pursehouse@sonymobile.com> | 2014-11-21 13:28:48 +0000 |
commit | 2b2d62b1d1704b639287fc62fe87bedf2cab85bf (patch) | |
tree | 4c116c5a2f33b19846a82ba0acd60c961bb1fc62 | |
parent | 64bc6090c55f198d1b5f901755c6b155bc283f21 (diff) |
Update system group documentation
Administrators and batch users are not system groups any more, and
the identity of system groups cannot be set in `system_config`.
Change-Id: I1ec4d3e316115a669362d670f6e1eb7107aa2848
-rw-r--r-- | Documentation/access-control.txt | 92 |
1 files changed, 54 insertions, 38 deletions
diff --git a/Documentation/access-control.txt b/Documentation/access-control.txt index 8ff2eb6238..dd572497ad 100644 --- a/Documentation/access-control.txt +++ b/Documentation/access-control.txt @@ -11,35 +11,13 @@ users. Gerrit comes with the following system groups: -* Administrators * Anonymous Users * Change Owner -* Non-Interactive Users * Project Owners * Registered Users The system groups are assigned special access and membership management -privileges. The identity of these groups is set in the `system_config` -table within the database, so the groups can be renamed after installation -if desired. - - -[[administrators]] -=== Administrators - -This is the Gerrit "root" identity. - -Users in the 'Administrators' group can perform any action under -the Admin menu, to any group or project, without further validation -or any other access controls. In most installations only those -users who have direct filesystem and database access would be -placed into this group. - -Membership in the 'Administrators' group does not imply any other -access rights. Administrators do not automatically get code review -approval or submit rights in projects. This is a feature designed -to permit administrative users to otherwise access Gerrit as any -other normal user would, without needing two different accounts. +privileges. [[anonymous_users]] @@ -57,21 +35,6 @@ to grant `Read` access to this group as Gerrit requires an account identity for all other operations. -[[non-interactive_users]] -=== Non-Interactive Users - -This is an internal user group, members of this group are not expected -to perform interactive operations on the Gerrit web front-end. - -However, sometimes such a user may need a separate thread pool in -order to prevent it from grabbing threads from the interactive users. - -These users live in a second thread pool, which separates operations -made by the non-interactive users from the ones made by the interactive -users. This ensures that the interactive users can keep working when -resources are tight. - - [[project_owners]] === Project Owners @@ -120,6 +83,59 @@ Registered users are always permitted to make and publish comments on any change in any project they have `Read` access to. +== Predefined Groups + +Predefined groups differs from system groups by the fact that they +exist in the ACCOUNT_GROUPS table (like normal groups) but predefined groups +are created on Gerrit site initialization and unique UUIDs are assigned +to those groups. These UUIDs are different on different Gerrit sites. + +Gerrit comes with two predefined groups: + +* Administrators +* Non-Interactive Users + + +[[administrators]] +=== Administrators + +This is the Gerrit "root" identity. The capability +link:access-control.html#capability_administrateServer['Administrate Server'] +is assigned to this predefined group on Gerrit site creation. + +Users in the 'Administrators' group can perform any action under +the Admin menu, to any group or project, without further validation +or any other access controls. In most installations only those +users who have direct filesystem and database access would be +placed into this group. + +Membership in the 'Administrators' group does not imply any other +access rights. Administrators do not automatically get code review +approval or submit rights in projects. This is a feature designed +to permit administrative users to otherwise access Gerrit as any +other normal user would, without needing two different accounts. + + +[[non-interactive_users]] +=== Non-Interactive Users + +This is the Gerrit "batch" identity. The capabilities +link:access-control.html#capability_priority['Priority BATCH'] and +link:access-control.html#capability_streamEvents['Stream Events'] +are assigned to this predefined group on Gerrit site creation. + +The members of this group are not expected to perform interactive +operations on the Gerrit web front-end. + +However, sometimes such a user may need a separate thread pool in +order to prevent it from grabbing threads from the interactive users. + +These users live in a second thread pool, which separates operations +made by the non-interactive users from the ones made by the interactive +users. This ensures that the interactive users can keep working when +resources are tight. + + == Account Groups Account groups contain a list of zero or more user account members, |