Closed Bug 1160380 (beetmover) Opened 5 years ago Closed 4 years ago
S3 bit mover
Create a job which moves files from the TaskCluster artifact store to a candidates bucket in S3, applying pretty names and paths if necessary, and performing an antivirus scan. Run this after each job that produces bits, e.g. en-US builds, l10n repacks, partial update generation. Investigate security models which limit write access to only the bit mover, and only to the current 'release'. Implement bucket versioning and logging to provide history for audit.
We can also perform virus scanning as a part of this job.
See Also: → 1154282
:rail, I think you've been working on this for funsize, is that work more generally too ?
The work is not generic, it's very limited to funsize (not flexible at all). The code is very small and can be replaced by something more generic in the future. I just didn't want to be blocked on something generic.
From my talk with Rail about secrets yesterday, if we could find a way to transmit a signed S3 PUT URL to this task, securely, that would be cool.
Not working on release promotion at the moment, releasing the bug.
Assignee: nthomas → nobody
Status: ASSIGNED → NEW
it's mine now!
Assignee: nobody → jlund
I think we are all done here for now..
Status: NEW → RESOLVED
Closed: 4 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.