Onboard antiz as Trusted User

Onboarding an Arch Linux team member

Details

• Team member username: @antiz
• Application: https://lists.archlinux.org/archives/list/aur-general@lists.archlinux.org/thread/5XZU2PEM5VLNUS2VJG3WUYH2SPW54GMO/
• Voting result: https://lists.archlinux.org/archives/list/aur-general@lists.archlinux.org/thread/5XZU2PEM5VLNUS2VJG3WUYH2SPW54GMO/#QYOQ3FHXXXY2VAF6CXLASGLVRHJVJ2ZI
• SSH public key: ssh-rsa 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
• Full Name: Robin Candau
• Personal e-mail address: <redacted>
• PGP key ID used with personal e-mail address: 0xD33FAA16B937F3B2
• Communication e-mail address: [arch]

All roles checklist

• Add user mail if TU or developer, or support staff and communication e-mail address is arch.
  • Add new user email as per docs/email.md.
  • Add entry in group_vars/all/archusers.yml.
    • If support staff hosts should be set to mail.archlinux.org.
    • homedir.archlinux.org is also allowed for support staff, but it is opt-in.
  • Add SSH pubkey to pubkeys/<username>.pub.
  • Run ansible-playbook -t archusers $(git grep -l archusers playbooks/ | grep -v phrik).
• Create a new user in archweb. Select the appropriate group membership and allowed repos (if applicable).
• Subscribe communication e-mail address to internal staff mailing list.
• Allow sending from communication e-mail address on arch-dev-public (subscribe and/or find address and remove moderation).
• Give the user access to #archlinux-staff on Libera Chat.
• Give the user a link to our staff services page.
• Replace the Team member username with the @-prefixed username on Gitlab.
• Remove personal information (such as Full Name and Personal e-mail address, as well as the clearsigned representation of this data), remove the description history and make the issue non-confidential.
• Request staff cloak on Libera Chat (Group contacts)

TU/Developer onboarding checklist

• Create an issue in archlinux-keyring using the "New Packager Key" template.
• Assign the user to the Trusted Users or Developers group on Keycloak.
• Assign the user to the Trusted Users or Developers group on archlinux.org.
• Subscribe communication e-mail address to internal arch-tu or arch-dev mailing list.
• Give the user access to #archlinux-tu or #archlinux-dev on Libera Chat.