Mozillians/One Phonebook to Rule Them All

From MozillaWiki
Jump to navigation Jump to search

Goal

Have only one Mozillian Phonebook by deprecating the Internal Phonebook and off-load its capabilities to other systems.

Needs

Contributor Authentication LDAP Services

  1. Mozillians Phonebook should be able to share Vouched Mozillians (and greater levels) with our MozSpaces pieces of functionality (Wi-Fi and Vidyo)

LDAP Service

  1. Mozillians Phonebook should be able to determine who is an employee using an @mozilla.com, @mozilla.org (there are non- or ex-employees with @mozilla.org) or @mozillafoundation.org e-mail account
    1. This is a little more complicated. Contractors get @mozilla.com addresses but aren't employees. Auto-generated Zimbra lists use the employeeType to generate lists.
    2. employeeType will be auto-populated from Workday
    3. Employee (paid staff) isn't based on email address
  2. Mozillians Phonebook should be able to determine who has committer access to cvs.mozilla.org, hg.mozilla.org, svn.mozilla.org, bzr.mozilla.org

LDAP Usages

Current Services that use LDAP

  1. Contributor-Facing Services: cvs.mozilla.org, hg.mozilla.org, svn.mozilla.org, bzr.mozilla.org
  2. Staff-Only Services: Wifi, Vidyo, Zimbra, Shell servers
  3. All "internal" Mozilla websites
    1. intranet.mozilla.org
    2. metrics.mozilla.com
    3. mana.mozilla.org
    4. ganglia.mozilla.org
    5. nagios.mozilla.org
    6. arecibo.mozilla.org
    7. graphite.mozilla.org
    8. ldap.mozilla.org
    9. inventory.mozilla.org
    10. various others used by small teams internally
  4. General Linux server logins
    1. Too many to list - somewhere around 100 machines
  5. Source of truth for all internal server security
    1. sysadmin accounts for all servers and root access managed by LDAP
  6. Postini
  7. Egnyte (not production yet)
  8. vpn.mozilla.com/org
  9. mpt-vpn.mozilla.org (OpenVPN)
  10. blog.mozilla.org
  11. video.mozilla.org WebDAV access
  12. Single-signon (soon)
    1. Workday
    2. jobvite
    3. bill.com
    4. egencia
    5. intacct
    6. ... more...

Profile Fields between Phonebooks

In order to replace the current internal phonebook, there are a number of fields that are missing from the Mozillian Phonebook that will need to be added for paid staff employees (suggesting a permissions system placed onto the Phonebook). A lot of these fields can be generalized for contributors, but other will need to be restricted access to only paid staff. On a related topic, it may be possible to parse for verification of paid staff as actual paid staff on Mozillians via our internal systems.

Retrieved from "https://wiki.allizom.org/index.php?title=Mozillians/One_Phonebook_to_Rule_Them_All&oldid=421478"