mirror of
https://chromium.googlesource.com/crosvm/crosvm
synced 2025-02-11 04:26:38 +00:00
353efef6d9
The group will allow us to give service accounts CQ access. Notably it'll allow us to add the recipe autoroller. BUG=None TEST=lucicfg validate Change-Id: I3127dc2127a93ea8b76bfd31941095eb243556c2 Reviewed-on: https://chromium-review.googlesource.com/c/crosvm/crosvm/+/3764437 Tested-by: Dennis Kempin <denniskempin@google.com> Reviewed-by: Daniel Verkamp <dverkamp@chromium.org>
86 lines
1.9 KiB
INI
86 lines
1.9 KiB
INI
# Auto-generated by lucicfg.
|
|
# Do not modify manually.
|
|
#
|
|
# For the schema of this file, see RealmsCfg message:
|
|
# https://luci-config.appspot.com/schemas/projects:realms.cfg
|
|
|
|
realms {
|
|
name: "@root"
|
|
bindings {
|
|
role: "role/buildbucket.reader"
|
|
principals: "group:all"
|
|
}
|
|
bindings {
|
|
role: "role/configs.developer"
|
|
principals: "group:googlers"
|
|
}
|
|
bindings {
|
|
role: "role/configs.reader"
|
|
principals: "group:all"
|
|
}
|
|
bindings {
|
|
role: "role/cq.committer"
|
|
principals: "group:googlers"
|
|
principals: "group:project-crosvm-committers"
|
|
}
|
|
bindings {
|
|
role: "role/logdog.reader"
|
|
principals: "group:all"
|
|
}
|
|
bindings {
|
|
role: "role/logdog.writer"
|
|
principals: "group:luci-logdog-chromium-writers"
|
|
}
|
|
bindings {
|
|
role: "role/scheduler.owner"
|
|
principals: "group:googlers"
|
|
principals: "group:project-crosvm-committers"
|
|
}
|
|
bindings {
|
|
role: "role/scheduler.reader"
|
|
principals: "group:all"
|
|
}
|
|
bindings {
|
|
role: "role/swarming.poolOwner"
|
|
principals: "group:mdb/crosvm-acl-luci-admin"
|
|
}
|
|
bindings {
|
|
role: "role/swarming.poolUser"
|
|
principals: "group:mdb/crosvm-acl-luci-admin"
|
|
}
|
|
bindings {
|
|
role: "role/swarming.poolViewer"
|
|
principals: "group:googlers"
|
|
}
|
|
bindings {
|
|
role: "role/swarming.taskTriggerer"
|
|
principals: "group:mdb/crosvm-acl-luci-admin"
|
|
}
|
|
}
|
|
realms {
|
|
name: "ci"
|
|
bindings {
|
|
role: "role/buildbucket.builderServiceAccount"
|
|
principals: "user:crosvm-luci-ci-builder@crosvm-infra.iam.gserviceaccount.com"
|
|
}
|
|
bindings {
|
|
role: "role/buildbucket.triggerer"
|
|
principals: "group:mdb/crosvm-acl-luci-admin"
|
|
}
|
|
}
|
|
realms {
|
|
name: "pools/ci"
|
|
}
|
|
realms {
|
|
name: "pools/try"
|
|
}
|
|
realms {
|
|
name: "prod"
|
|
}
|
|
realms {
|
|
name: "try"
|
|
bindings {
|
|
role: "role/buildbucket.builderServiceAccount"
|
|
principals: "user:crosvm-luci-try-builder@crosvm-infra.iam.gserviceaccount.com"
|
|
}
|
|
}
|