kc3-lang/angle/infra/config/generated/realms.cfg
-
Show log
Commit
-
Hash : 0364ac4a
Author :
Date : 2024-07-18T13:18:33
Set up ANGLE shadow buckets Sets up ANGLE shadow buckets so that LED jobs can be triggered now that real builds are the only supported path. This was effectively copied from Chromium's configuration but with the relevant pools, service accounts, etc. swapped out for ANGLE ones. Bug: chromium:353904289 Change-Id: Idd958faf73d9d62180151f4a72817fb1543f208f Reviewed-on: https://chromium-review.googlesource.com/c/angle/angle/+/5723088 Commit-Queue: Yuly Novikov <ynovikov@chromium.org> Reviewed-by: Chan Li <chanli@chromium.org> Reviewed-by: Yuly Novikov <ynovikov@chromium.org>
-
infra/config/generated/realms.cfg
-
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135
# Auto-generated by lucicfg. # Do not modify manually. # # For the schema of this file, see RealmsCfg message: # https://config.luci.app/schemas/projects:realms.cfg realms { name: "@root" bindings { role: "role/buildbucket.reader" principals: "group:all" } bindings { role: "role/configs.reader" principals: "group:all" } bindings { role: "role/configs.validator" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/logdog.reader" principals: "group:all" } bindings { role: "role/logdog.writer" principals: "group:luci-logdog-angle-writers" } bindings { role: "role/scheduler.owner" principals: "group:project-angle-admins" } bindings { role: "role/scheduler.reader" principals: "group:all" } bindings { role: "role/swarming.poolOwner" principals: "group:mdb/chrome-troopers" principals: "group:project-angle-owners" } bindings { role: "role/swarming.poolUser" principals: "group:mdb/chrome-troopers" principals: "group:project-angle-owners" } bindings { role: "role/swarming.poolViewer" principals: "group:all" } bindings { role: "role/swarming.taskServiceAccount" principals: "user:chrome-gpu-gold@chops-service-accounts.iam.gserviceaccount.com" principals: "user:chromium-tester@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/swarming.taskTriggerer" principals: "group:mdb/chrome-troopers" principals: "group:project-angle-owners" } } realms { name: "ci" bindings { role: "role/buildbucket.builderServiceAccount" principals: "user:angle-ci-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/buildbucket.triggerer" principals: "user:angle-ci-builder@chops-service-accounts.iam.gserviceaccount.com" } } realms { name: "ci.shadow" bindings { role: "role/buildbucket.creator" principals: "group:chromium-led-users" principals: "group:mdb/chrome-build-access-sphinx" principals: "group:mdb/chrome-troopers" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/buildbucket.triggerer" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/resultdb.invocationCreator" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/buildbucket.builderServiceAccount" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } } realms { name: "pools/ci" } realms { name: "pools/try" } realms { name: "try" bindings { role: "role/buildbucket.builderServiceAccount" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/buildbucket.triggerer" principals: "group:project-angle-tryjob-access" principals: "group:service-account-cq" } } realms { name: "try.shadow" bindings { role: "role/buildbucket.builderServiceAccount" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/buildbucket.creator" principals: "group:chromium-led-users" principals: "group:mdb/chrome-build-access-sphinx" principals: "group:mdb/chrome-troopers" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/buildbucket.triggerer" principals: "user:angle-try-builder@chops-service-accounts.iam.gserviceaccount.com" } bindings { role: "role/resultdb.invocationCreator" principals: "group:project-angle-try-task-accounts" principals: "group:project-angle-tryjob-access" } }