Differences between revisions 16 and 17
Revision 16 as of 2019-04-30 20:31:14
Size: 5235
Comment: 2FA apps
Revision 17 as of 2019-04-30 20:37:38
Size: 4439
Comment: testers and feedback
Deletions are marked like this. Additions are marked like this.
Line 27: Line 27:
== Testers we need ==

In particular, please help us test this if any of these apply to you:

 * use Windows
 * usually visit PyPI on a mobile device
 * are an organization where users share an auth token within a group
 * have 4+ maintainers or owners for one project
 * use an unusual TOTP app
 * have a slow Internet connection
 * block cookies and JavaScript
 * maintain 20+ projects
 * created your PyPI account 6+ years ago
Line 40: Line 54:
Line 44: Line 57:
== IRC livechat hours ==
Warehouse developers will be in IRC, in [[https://webchat.freenode.net/?channels=#pypa-dev|#pypa-dev on Freenode]], and available to talk about problems you run into, or about how to hack on Warehouse:

 1. Tuesday Feb 27th: [[https://www.timeanddate.com/worldclock/meetingdetails.html?year=2018&month=2&day=27&hour=17&min=0&sec=0&p1=24&p2=198&p3=90|1700 UTC / noon-1pm EST]]
 1. Tuesday Feb 27th: [[https://www.timeanddate.com/worldclock/meetingdetails.html?year=2018&month=2&day=27&hour=23&min=0&sec=0&p1=24&p2=198&p3=90|2300 UTC / 6pm-7pm EST]]
 1. Thursday March 1st: [[https://www.timeanddate.com/worldclock/meetingdetails.html?year=2018&month=3&day=1&hour=17&min=0&sec=0&p1=24&p2=198&p3=90|1700 UTC / noon-1pm EST]]
 1. Thursday March 1st: [[https://www.timeanddate.com/worldclock/meetingdetails.html?year=2018&month=3&day=1&hour=23&min=0&sec=0&p1=24&p2=198&p3=90%20|2300 UTC / 6pm-7pm EST]]
== PyCon ==
Warehouse developers will be [[PackagingSprints|at the PyCon sprints]] May 6-9 to talk about problems you run into, or about how to hack on Warehouse.
Line 55: Line 63:
We're working hard on nearly every aspect of the Warehouse codebase to get it ready for production deployment and are shipping features nearly every day, so check back and maybe even try using https://pypi.org for your maintainer activities full time. Due to the rate of change some errors, downtime, and outright broken features may occur. We have some automated reporting of the scenarios in place, but let us know!
Line 64: Line 71:
IRC: [[https://webchat.freenode.net/?channels=#pypa-dev|#pypa-dev on Freenode]] (someone's usually there 10am-5pm Central Time on weekdays, or come to the [[#IRC_livechat_hours|livechat hours]]) IRC: [[https://webchat.freenode.net/?channels=#pypa-dev|#pypa-dev on Freenode]] (someone's usually there 10am-5pm Central Time on weekdays)

Help us test PyPI's 2-Factor Auth!

Warehouse is the code behind the Python Package Repository (PyPI) (source code on GitHub,roadmap). We are seeking maintainers of Projects on PyPI to test our new two-factor auth functionality and send us bug reports.

Feedback on user experience, accessibility, and overall ease of use are welcome; we want to support your workflows for account management and package maintainership. Go to the test site at https://test.pypi.org/ and try it out!

Guidelines for Particpation

Things to test

Most of these you can test on pypi.org once you opt into the private beta. For testing destructive actions, like removing an owner, deleting a project, or deleting a release, please use test.pypi.org.

Workflows

  • Add/Remove 2FA token using TOTP
  • Add/Remove Maintainer
  • Add/Remove Owner
  • Transition Ownership
  • User Registration and Confirmation
  • Login/Logout
  • Password Reset
  • Remove a project
  • Remove a release

Testers we need

In particular, please help us test this if any of these apply to you:

  • use Windows
  • usually visit PyPI on a mobile device
  • are an organization where users share an auth token within a group
  • have 4+ maintainers or owners for one project
  • use an unusual TOTP app
  • have a slow Internet connection
  • block cookies and JavaScript

  • maintain 20+ projects
  • created your PyPI account 6+ years ago

Setting up a TOTP application

Users who have chosen to set up two factor authentication (2FA) on their PyPI account must, once 2FA is set up, provide a second method of identity verification (other than their username and password) for each login.

PyPI currently supports a single 2FA method: Generating a code through a TOTP application.

When enabling two factor authentication (2FA) via TOTP in your account admin, you are asked to provision an application (usually a mobile phone app) in order to generate authentication codes. Popular applications include:

Security

If you find any potential security vulnerabilities, please follow our published security policy. Please don't report security issues in Warehouse via GitHub, IRC, or mailing lists. Instead, please directly email one or more of our maintainers.

PyCon

Warehouse developers will be at the PyCon sprints May 6-9 to talk about problems you run into, or about how to hack on Warehouse.

Feel free to drop in!

Notice

Reminder! Sign up for the PyPI Announcement Mailing List to be kept in the loop as we continue this process!

Contact us

Security issues: email security @ python dot org

GitHub for all other bug reports & feature requests:https://github.com/pypa/warehouse/issues/new

IRC: #pypa-dev on Freenode (someone's usually there 10am-5pm Central Time on weekdays)

Email: pypa-dev mailing list

Thank you for testing Warehouse! You're helping us launch sooner and future users of PyPI will appreciate it. :)

WarehousePackageMaintainerTesting (last edited 2019-08-15 21:22:16 by SumanaHarihareswara)

Unable to view page? See the FrontPage for instructions.