knative
/
community
mirror of https://github.com/knative/community.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
community/groups
History
Mario aa02213f72
Add Daniel Krook(CNCF) and Mario Fahlandt(Kubermatic) to GCP for Spending Review & Support (#1636) 		2024-11-22 22:13:03 +00:00
..
committee-code-of-conduct Reconcile GSuite Groups (#937) 2022-03-31 15:53:44 +00:00
committee-steering replacing TOC references with KSC ones (#1623) 2024-10-22 16:17:59 +00:00
fake Adopt K8s infra for gsuite mgmt (#905) 2022-02-23 10:34:40 -08:00
wg-productivity Add Daniel Krook(CNCF) and Mario Fahlandt(Kubermatic) to GCP for Spending Review & Support (#1636) 2024-11-22 22:13:03 +00:00
wg-security Propose David Hadas as a security WG lead (#1333) 2023-04-27 15:51:32 +00:00
wg-ux Change email/affiliation for @Leo6Leo (#1606) 2024-08-30 12:58:47 +00:00
Makefile Adopt K8s infra for gsuite mgmt (#905) 2022-02-23 10:34:40 -08:00
OWNERS Allow release leads to submit jobs to prow via kubectl (#1287) 2023-02-21 17:35:27 +00:00
README.md Reconcile GSuite Groups (#937) 2022-03-31 15:53:44 +00:00
client.go Adopt K8s infra for gsuite mgmt (#905) 2022-02-23 10:34:40 -08:00
config.yaml Reconcile GSuite Groups (#937) 2022-03-31 15:53:44 +00:00
go.mod Bump golang.org/x/net from 0.17.0 to 0.23.0 in /groups (#1553) 2024-04-25 10:59:39 +00:00
go.sum Bump golang.org/x/net from 0.17.0 to 0.23.0 in /groups (#1553) 2024-04-25 10:59:39 +00:00
groups.yaml Change email/affiliation for @Leo6Leo (#1606) 2024-08-30 12:58:47 +00:00
groups_test.go Add Daniel Krook(CNCF) and Mario Fahlandt(Kubermatic) to GCP for Spending Review & Support (#1636) 2024-11-22 22:13:03 +00:00
reconcile.go Changing deprecated functions in ./hack/update-codegen.sh (#1279) 2023-02-15 16:05:51 +00:00
reconcile_test.go change from %w to %v (#1095) 2022-06-09 08:51:38 +00:00
restrictions.yaml replacing TOC references with KSC ones (#1623) 2024-10-22 16:17:59 +00:00
service.go Adopt K8s infra for gsuite mgmt (#905) 2022-02-23 10:34:40 -08:00
service_test.go change from %w to %v (#1095) 2022-06-09 08:51:38 +00:00

README.md

Automation of Google Groups maintenance for knative.team

Making changes

  • Edit your WGs's groups.yaml, e.g. [wg-security/groups.yaml][/groups/wg-security/groups.yaml]
  • If adding or removing a group, edit [restrictions.yaml] to add or remove the group name
  • Use make test to ensure the changes meet conventions
  • Open a pull request
  • When the pull request merges, the post-k8sio-groups job will deploy the changes

The project name has a max length of 18 characters.

Manual deploy

  • Must be run by someone who is a member of the productivity-infra-gcp-org@knative.team group
  • Run gcloud auth application-default login to login
  • Use make run to dry run the changes
  • Use make run -- --confirm if the changes suggested in the previous step looks good

How does this work?

  • The groups are managed with the Google Admin SDK Groups API
  • Google has a process called Domain Wide Delegation(DWD) that allows a Google Service Account to impersonate a google workspace user. https://developers.google.com/admin-sdk/directory/v1/guides/delegation
  • Configuring DWD is one time process as long as the Google Service Account impersonating is not deleted.