mirror of
https://chromium.googlesource.com/libyuv/libyuv
synced 2025-12-11 22:19:56 +08:00
7ccf31d3b6
"role/swarming.taskTriggerer" gives "swarming.tasks.createInRealm" permission. https://source.chromium.org/chromium/infra/infra/+/main:luci/appengine/auth_service/realms/permissions.py;l=114;drc=36516367cd70f195935ffd933d939e770e3b2c65 This fixes the auth error in "led launch". http://screen/58TYKnHALbRUQKb Bug: b:255217089 Change-Id: Idbfc06e7ad8a94caac9bfd1fe473c60d6e4addf6 Reviewed-on: https://chromium-review.googlesource.com/c/libyuv/libyuv/+/3990134 Reviewed-by: Christoffer Jansson <jansson@chromium.org> Commit-Queue: Junji Watanabe <jwata@google.com>
84 lines
2.1 KiB
INI
84 lines
2.1 KiB
INI
# Auto-generated by lucicfg.
|
|
# Do not modify manually.
|
|
#
|
|
# For the schema of this file, see RealmsCfg message:
|
|
# https://luci-config.appspot.com/schemas/projects:realms.cfg
|
|
|
|
realms {
|
|
name: "@root"
|
|
bindings {
|
|
role: "role/buildbucket.owner"
|
|
principals: "group:project-libyuv-admins"
|
|
}
|
|
bindings {
|
|
role: "role/buildbucket.reader"
|
|
principals: "group:all"
|
|
}
|
|
bindings {
|
|
role: "role/configs.reader"
|
|
principals: "group:all"
|
|
}
|
|
bindings {
|
|
role: "role/configs.validator"
|
|
principals: "user:libyuv-try-builder@chops-service-accounts.iam.gserviceaccount.com"
|
|
}
|
|
bindings {
|
|
role: "role/logdog.reader"
|
|
principals: "group:all"
|
|
}
|
|
bindings {
|
|
role: "role/logdog.writer"
|
|
principals: "group:luci-logdog-chromium-writers"
|
|
}
|
|
bindings {
|
|
role: "role/scheduler.owner"
|
|
principals: "group:project-libyuv-admins"
|
|
}
|
|
bindings {
|
|
role: "role/scheduler.reader"
|
|
principals: "group:all"
|
|
}
|
|
bindings {
|
|
role: "role/swarming.taskTriggerer"
|
|
principals: "group:project-libyuv-admins"
|
|
}
|
|
}
|
|
realms {
|
|
name: "ci"
|
|
bindings {
|
|
role: "role/buildbucket.builderServiceAccount"
|
|
principals: "user:libyuv-ci-builder@chops-service-accounts.iam.gserviceaccount.com"
|
|
}
|
|
bindings {
|
|
role: "role/scheduler.triggerer"
|
|
principals: "user:libyuv-ci-builder@chops-service-accounts.iam.gserviceaccount.com"
|
|
conditions {
|
|
restrict {
|
|
attribute: "scheduler.job.name"
|
|
values: "Android Tester ARM32 Debug (Nexus 5X)"
|
|
values: "Android Tester ARM32 Release (Nexus 5X)"
|
|
values: "Android Tester ARM64 Debug (Nexus 5X)"
|
|
}
|
|
}
|
|
}
|
|
}
|
|
realms {
|
|
name: "cron"
|
|
bindings {
|
|
role: "role/buildbucket.builderServiceAccount"
|
|
principals: "user:libyuv-ci-autoroll-builder@chops-service-accounts.iam.gserviceaccount.com"
|
|
}
|
|
}
|
|
realms {
|
|
name: "try"
|
|
bindings {
|
|
role: "role/buildbucket.builderServiceAccount"
|
|
principals: "user:libyuv-try-builder@chops-service-accounts.iam.gserviceaccount.com"
|
|
}
|
|
bindings {
|
|
role: "role/buildbucket.triggerer"
|
|
principals: "group:project-libyuv-tryjob-access"
|
|
principals: "group:service-account-cq"
|
|
}
|
|
}
|