[02:05:51] 6Phabricator: Visibility of files should be public by default - https://phabricator.wikimedia.org/T115848#1737254 (10Negative24) Could this possible be a problem with the unfamiliar policy, "Files attached to objects are visible to users who can view those objects?" [10:49:54] 6Project-Creators, 7Tracking: [Tracking] Project creation log task - https://phabricator.wikimedia.org/T103700#1737784 (10Lydia_Pintscher) Created #wmde-analytics-engineering for WMDE's software analtics needs [15:34:29] 6Project-Creators, 7Tracking: [Tracking] Project creation log task - https://phabricator.wikimedia.org/T103700#1738587 (10greg) >>! In T103700#1735282, @greg wrote: >>>! In T103700#1728752, @greg wrote: >> Since this is Design-focused (as the definition of done is only about their needs) I'd prefer this to hav... [16:01:08] 6Phabricator, 6Release-Engineering-Team, 10Traffic, 6operations: Phabricator needs to expose ssh - https://phabricator.wikimedia.org/T100519#1738690 (10mmodell) [18:43:06] 6Phabricator, 6Project-Creators, 6operations: create acl*operationsteam & acl*procurement projects, cease using #operations for access control - https://phabricator.wikimedia.org/T114135#1739612 (10RobH) [18:43:10] 6Phabricator, 6operations: unable to subscribe to operations tag after migration and merge from ops-core and ops-request - https://phabricator.wikimedia.org/T89053#1739611 (10RobH) [20:37:35] 6Phabricator: Visibility of files should be public by default - https://phabricator.wikimedia.org/T115848#1740057 (10mmodell) @negative24 is right. When you attach a file to a comment on a task then it's the task policy that matters not the file's policy. It sets the file policy to most restrictive because you d... [20:38:27] 6Phabricator: Visibility of files should be public by default - https://phabricator.wikimedia.org/T115848#1740059 (10mmodell) 5Open>3Invalid a:3mmodell While this is slightly confusing, I believe phabricator's behavior is correct. Any possible alternatives would break task security policies. [20:45:50] chasemp, twentyafterfour: I generated a new ssh keypair to test replication of repos from Phab -> Github. [20:45:58] And to...well, basically build that bridge. [20:46:10] https://phabricator.wikimedia.org/K12 [20:46:46] ostriches: cool [20:47:45] 6Phabricator: Visibility of files should be public by default - https://phabricator.wikimedia.org/T115848#1740106 (10Aklapper) >>! In T115848#1740057, @mmodell wrote: > @negative24 is right. When you attach a file to a comment on a task then it's the task policy that matters not the file's policy. It sets the fi... [20:50:59] Duh, we should use https. [20:51:11] outbound ssh likely won't work. [20:55:49] Gah, it uses --mirror. That's scary :) [20:55:50] Actually outbound https likely won't work either without a proxy [20:56:04] why is --mirror scary? [20:56:06] Yeah, but it's easy enough to set the proxy in gitconfig [20:56:39] It's basically push --force --prune refs/*:refs/* [21:05:01] yeah we would have to use urlproxy atm [21:16:45] https + urlproxy is probably fine. [22:38:35] having phabricator so heavily firewalled could be a pain in the ass when we move to more external integrations. What is urlproxy? [22:39:00] it's just squid or something [22:47:41] 6Phabricator: Visibility of files should be public by default - https://phabricator.wikimedia.org/T115848#1740476 (10Negative24) @mmodell What does the default view policy on https://phabricator.wikimedia.org/applications/view/PhabricatorFilesApplication/ actually do then? [23:14:52] 6Phabricator: Visibility of files should be public by default - https://phabricator.wikimedia.org/T115848#1740645 (10mmodell) @negative24: It affects permissions on files not attached to objects?