Change ALL SCHEDULED pipelines to not be owned by a person
Right now, ClamAV pulls the updated definitions from here:
https://repo1.dso.mil/ironbank-tools/av-updater/-/pipeline_schedules
When Stephen left, it revoked the ability of the schedule to run. This was updated to be owned by James in the interim, but we need to update it to be owned by ib-tools, or another appropriate service account (if using ib-tools for everything is too pervasive). We need to modify the following scheduled pipelines:
-
ClamAV -
Trigger -
Anything else in repo1.dso.mil/ironbank-tools, ESPECIALLY any scheduled pipelines owned by Josh such as the permissions repo
To make this modification, we should create a new NPE user that is added to the ironbank-tools group and is made the owner of all the scheduled pipelines. We should then run a script to use the GitLab API to update the ownership of any scheduled pipelines in the ironbank-tools group to be owned by this new bot user.
Acceptance Criteria
-
New NPE user created - Add to
ironbank-toolsgroup - Create access token
- Add to
-
Create python script that pulls all scheduled pipelines for all projects within a group, and updates the owner of the schedule. See this comment for a link to an example - Script will use the new bot user as the new owner of all of these schedules
Optional
-
Discuss running this script on a schedule, to capture any new scheduled pipelines to be owned by the correct owner.