Infrastructure/infra-docs-fpo
1
0
Fork 0
Code Issues 100 Pull requests 6 Projects Releases Packages Wiki Activity Actions

Review gdpr_sar SOP

Browse source 
Signed-off-by: Michal Konečný <mkonecny@redhat.com>
This commit is contained in:
Michal Konečný 2021-08-24 10:29:38 +02:00
parent f341022334
commit fd1e44f3f1
2 changed files with 8 additions and 8 deletions
Download patch file Download diff file Expand all files Collapse all files

2
modules/sysadmin_guide/nav.adoc
View file

@ -38,7 +38,7 @@
** xref:fmn.adoc[FedMsg Notifications (FMN) - SOP] ** xref:fmn.adoc[FedMsg Notifications (FMN) - SOP]
** xref:gather-easyfix.adoc[Fedora gather easyfix - SOP] ** xref:gather-easyfix.adoc[Fedora gather easyfix - SOP]
** xref:gdpr_delete.adoc[GDPR Delete - SOP] ** xref:gdpr_delete.adoc[GDPR Delete - SOP]
** xref:gdpr_sar.adoc[gdpr_sar - SOP in review ] ** xref:gdpr_sar.adoc[GDPR SAR - SOP]
** xref:geoip-city-wsgi.adoc[geoip-city-wsgi - SOP in review ] ** xref:geoip-city-wsgi.adoc[geoip-city-wsgi - SOP in review ]
** xref:github2fedmsg.adoc[github2fedmsg - SOP in review ] ** xref:github2fedmsg.adoc[github2fedmsg - SOP in review ]
** xref:github.adoc[github - SOP in review ] ** xref:github.adoc[github - SOP in review ]

14
modules/sysadmin_guide/pages/gdpr_sar.adoc
View file

@ -14,10 +14,8 @@ Contact::
#fedora-admin #fedora-admin
Persons:: Persons::
bowlofeggs bowlofeggs
Location::
Phoenix
Servers:: Servers::
batcave01.phx2.fedoraproject.org Various application servers, which batcave01.iad2.fedoraproject.org Various application servers, which
will run scripts to collect SAR data. will run scripts to collect SAR data.
Purpose:: Purpose::
Respond to SARs. Respond to SARs.
@ -29,13 +27,15 @@ playbook to respond to a SAR.
When processing a SAR, perform the following steps: When processing a SAR, perform the following steps:
[arabic, start=0] [arabic]
. Verify that the requester is who they say they are. If the request . Verify that the requester is who they say they are. If the request
came in email and the user has a FAS account, ask them to file an issue came in email and the user has a FAS account, ask them to file an issue
at https://pagure.io/fedora-pdr/new_issue Use the following in email at https://pagure.io/fedora-pdr/new_issue Use the following in email
reply to them: reply to them:
+ +
`In order to verify your identity, please file a new issue at https://pagure.io/fedora-pdr/new_issue using the appropriate issue type. Please note this form requires you to sign in to your account to verify your identity.` `In order to verify your identity, please file a new issue at
https://pagure.io/fedora-pdr/new_issue using the appropriate issue type.
Please note this form requires you to sign in to your account to verify your identity.`
+ +
If the request has come via Red Hat internal channels as an explicit If the request has come via Red Hat internal channels as an explicit
request to delete, mark the ticket with the tag `rh`. This tag will help request to delete, mark the ticket with the tag `rh`. This tag will help
@ -61,7 +61,7 @@ $ sudo ansible-playbook playbooks/manual/gdpr/sar.yml -e sar_fas_user=bowlofeggs
.... ....
. Generate a random sha512 with something like: . Generate a random sha512 with something like:
`openssl rand 512 | sha512sum` and then move the output file to `openssl rand 512 | sha512sum` and then move the output file to
/srv/web/infra/pdr/the-sha512.tar.gz _/srv/web/infra/pdr/the-sha512.tar.gz_
. Update the ticket to fixed / processed on pdr requests to have a link . Update the ticket to fixed / processed on pdr requests to have a link
to https://infrastructure.fedoraproject.org/infra/pdr/the-sha512.tar.gz to https://infrastructure.fedoraproject.org/infra/pdr/the-sha512.tar.gz
and tell them it will be available for one week. and tell them it will be available for one week.
@ -116,7 +116,7 @@ You also need to add the host that the script should run on to the
.... ....
[sar] [sar]
bodhi-backend02.phx2.fedoraproject.org bodhi-backend02.iad2.fedoraproject.org
.... ....
=== Variables for OpenShift apps === Variables for OpenShift apps