limited user / git deployment #64

Hi,
i started recently to use centminmod and I really love it.
On most cases its the perfect solution but I'm facing this situation where I should give access to 2 devs to git pull / composer update and other basic ops on the staging server (and also quickfixes maybe on the live ).

---

Whats the best practice for this on centminmod ? Do i just create the two un-priviledged users and put them in the nginx group (as primary) or there is some "best practice"

I would normally just use jenkins but i cant do that in this situation so any idea is appreciated
Any ideas ? (also opened issue on github here limited user / git deployment · Issue #64 · centminmod/centminmod · GitHub and got redirected here )

 

They would do a gitpull / rsync / composer update and in worst case scenario they can edit a file in prod for any disastrous quick fix (they do have their own stage server where they test but unpredictable things can happen #murphys'slaw ).
My idea was to create a fpm pool with a username (ie app1) and a specific socket and give them access to that user via cert.
I'm always open to suggestion on whats the best practice in this case without using jenkins..

Thanks