Remove trac admin permissions from inactive users

I'd like to suggest a new trac permissions policy:

If someone hasn't logged in for 6 months, we remove all their permissions.

Let's start by removing admin from people who haven't logged in for 6 months, made any modifications for 30 days (because that's all I can see).

added component::internal services/service - trac owner::teor priority::medium resolution::fixed severity::normal status::closed type::task labels

+1

But then qbi will lose admin status :O

Trac:
Description: I'd like to suggest a new trac permissions policy:

If someone hasn't logged in for 6 months, we remove all their permissions.

Let's start by removing admin from people who haven't logged in for 6 months,

to

I'd like to suggest a new trac permissions policy:

If someone hasn't logged in for 6 months, we remove all their permissions.

Let's start by removing admin from people who haven't logged in for 6 months, made any modifications for 30 days (because that's all I can see).

Replying to cypherpunks3:

But then qbi will lose admin status :O

https://trac.torproject.org/projects/tor/wiki/BadContent?action=diff&version=77

I put the draft 6-month policy in https://trac.torproject.org/projects/tor/wiki/org/operations/services/trac

We've limited Trac's timeline to 30 days. I've emailed the admin users who haven't changed anything in the last 30 days.

Trac:
Owner: qbi to teor
Status: new to assigned

Was just joking :)

made any modifications for 30 days (because that's all I can see).

This will remove isis from the admins and other people listed in the Tor core people page.

Replying to cypherpunks3:

Was just joking :)

made any modifications for 30 days (because that's all I can see).

This will remove isis from the admins and other people listed in the Tor core people page.

Being listed on the core people page does not guarantee TRAC_ADMIN access.

Replying to teor:

If someone hasn't logged in for 6 months, we remove all their permissions.

https://trac.torproject.org/projects/tor/wiki/org/operations/services/trac says that TRAC_ADMIN permissions will be removed. If this should be the policy, I suggest also remove them from groups which contain TRAC_ADMIN as a permission.

However the above sentence could also be understood in a way that those users are downgraded to anonymous or authenticated users. It might also be a good policy to downgrade them to authenticated users. So all other special permissions which were collected over time get removed.

Replying to qbi:

Replying to teor:

If someone hasn't logged in for 6 months, we remove all their permissions.

https://trac.torproject.org/projects/tor/wiki/org/operations/services/trac says that TRAC_ADMIN permissions will be removed. If this should be the policy, I suggest also remove them from groups which contain TRAC_ADMIN as a permission.

However the above sentence could also be understood in a way that those users are downgraded to anonymous or authenticated users. It might also be a good policy to downgrade them to authenticated users. So all other special permissions which were collected over time get removed.

Thanks for the feedback. I have changed the draft policy so that we remove all special permissions,

This has been done.

Trac:
Resolution: N/A to fixed
Status: assigned to closed

closed