Thursday, 2019-01-17

openstackgerrit	David Moreau Simard proposed openstack/ara-infra master: Add blog post about new projects in 1.0 https://review.openstack.org/631356	00:15
dmsimard	apollo13, gvincent: ^ want to give a quick review ? Draft build: http://logs.openstack.org/56/631356/1/check/ara-infra-website/cf8d11b/logs/build/blog/2018/01/16/introducing-new-projects-for-the-upcoming-1.0-release/	00:38
dmsimard	I already noticed that I put 2018 instead of 2019 for the post date	00:39
openstackgerrit	David Moreau Simard proposed openstack/ara-infra master: Add blog post about new projects in 1.0 https://review.openstack.org/631356	00:56
Jmainguy	blog post looks good, good state of the union	01:02
dmsimard	Jmainguy: oi, thanks. Yes, we're trying to catch up :)	01:03
Jmainguy	makes me wish I waited until 1.0 to push this out lol, but I am glad I did it anyway, looks like 1.0 addresses the concerns I had	01:04
Jmainguy	mainly isntalled all the dependencies on clients	01:04
Jmainguy	team is excited about it, demoing it for them next week, did a limited demo at the end of the day today, its slick	01:04
dmsimard	I'm going to need to send you stickers at this point :p	01:05
Jmainguy	I live off swag, you over at the tower?	01:05
dmsimard	no, I am remote from Montreal :)	01:05
Jmainguy	ah nice	01:05
dmsimard	cold, but nice	01:06
Jmainguy	lol I bet, yeah it gets into the teens next here, but I still wear shorts 365, nothing to complain about	01:06
Jmainguy	I would have to wear pants if I lived up there	01:06
dmsimard	yeah.. we get moose and snow but thanks to that, there's no nasty critters here :p	01:07
dmsimard	when I see a spider I don't have to fear for my life lol	01:08
Jmainguy	=)	01:08
dmsimard	pabelanger: man, we really need an "ara-report" equivalent in 1.0.	01:18
dmsimard	wanna help ? making you upload these html files makes me sad	01:18
*** odyssey4me has quit IRC		02:46
*** larsks has quit IRC		02:46
*** larsks has joined #ara		02:58
openstackgerrit	David Moreau Simard proposed openstack/ara-infra master: Add blog post about new projects in 1.0 https://review.openstack.org/631356	03:54
*** weshay has quit IRC		05:29
*** jparrill has quit IRC		06:49
*** Xaroth has quit IRC		07:32
*** gvincent has joined #ara		07:58
*** gvincent has quit IRC		08:29
*** themroc has joined #ara		08:30
*** herald85 has joined #ara		09:24
*** odyssey4me has joined #ara		09:44
*** gvincent has joined #ara		09:53
*** sshnaidm\|afk is now known as sshnaidm		10:25
apollo13	dmsimard: blog looks good	10:42
*** odyssey4me has quit IRC		10:49
*** irclogbot_0 has quit IRC		12:47
*** irclogbot_0 has joined #ara		12:56
openstackgerrit	Guillaume Vincent proposed openstack/ara-web master: Update playbooks page https://review.openstack.org/631487	12:59
*** logan- has joined #ara		13:03
pabelanger	dmsimard: I am guessing there is a way in html to collapse all the small files into a larger one, then only display the specific section based on url, but my html foo is weak	13:16
openstackgerrit	Merged openstack/ara-web master: Update playbooks page https://review.openstack.org/631487	13:28
dmsimard	pabelanger: the new web interface is stateless and can feed on any api server so the current ara-report approach with the sqlite middleware would work	13:39
dmsimard	the problem is the use case with swift	13:39
dmsimard	since the database is not on the same filesystem, we can't use the same approach because we need to download the database first	13:39
dmsimard	apollo13: didn't get a chance to test the new permissions patches, I'll do it today	13:40
apollo13	no worries	13:40
dmsimard	really wanted to finish that blog post	13:40
dmsimard	gvincent: I'm not sure displaying the number of arguments is useful -- in all likelihood this number is going to be always 40	13:44
*** irclogbot_0 has quit IRC		13:45
openstackgerrit	Guillaume Vincent proposed openstack/ara-web master: Use flexbox instead of grid in playbook summary https://review.openstack.org/631498	13:49
dmsimard	gvincent: maybe we can use that width real estate to display the date the playbook ran on ?	13:49
gvincent	dmsimard, sure in https://review.openstack.org/631498 I remove the argument box	13:50
gvincent	I will add the date near the duration	13:50
dmsimard	++	13:50
gvincent	https://screenshots.firefox.com/J1F9fj0g7S5bjI0t/localhost	13:50
dmsimard	works for me	13:51
openstackgerrit	Guillaume Vincent proposed openstack/ara-web master: Use flexbox instead of grid in playbook summary https://review.openstack.org/631498	13:51
gvincent	incomplete @dmsimard is status running	13:52
gvincent	incomplete.yaml playbook in the api	13:52
dmsimard	gvincent: yes, as it should	13:52
dmsimard	gvincent: the point of that playbook in the integration test is to be interrupted	13:52
dmsimard	mid-way through it's execution	13:53
gvincent	ack	13:53
*** irclogbot_0 has joined #ara		13:53
dmsimard	gvincent: FWIW I haven't found a reliable way for ARA to be able to differentiate between a playbook that was interrupted or one that is still running	13:54
gvincent	ack	13:54
dmsimard	we mark the playbook as completed if ansible sends us that last hook when the stats are displayed	13:55
dmsimard	but if we don't get that last hook, it could be able ansible is still running (i.e, a very long task) or it could have died midway	13:55
gvincent	see duration and date in this component: https://screenshots.firefox.com/lXy7ahX2wWSePKhJ/www.distributed-ci.io	13:55
gvincent	does it work for you?	13:55
dmsimard	gvincent: sure	13:56
openstackgerrit	Merged openstack/ara-infra master: Add blog post about new projects in 1.0 https://review.openstack.org/631356	14:11
openstackgerrit	Merged openstack/ara-web master: Use flexbox instead of grid in playbook summary https://review.openstack.org/631498	15:05
gnupyx	hi, i'm very enthousiast to test the futur ara 1.0 and give my feedback	15:18
*** etienne has joined #ara		15:26
dmsimard	gnupyx: \o/	15:32
openstackgerrit	David Moreau Simard proposed openstack/ara-infra master: Rename "home" for "about" on the website navigation https://review.openstack.org/631546	16:10
*** herald85 has quit IRC		16:39
openstackgerrit	Merged openstack/ara-infra master: Rename "home" for "about" on the website navigation https://review.openstack.org/631546	16:50
*** gvincent has quit IRC		16:53
*** gvincent has joined #ara		16:53
openstackgerrit	David Moreau Simard proposed openstack/ara-infra master: Clarify that the git commit and timestamp is for the page https://review.openstack.org/631560	16:54
*** themroc has quit IRC		17:19
openstackgerrit	Merged openstack/ara-infra master: Clarify that the git commit and timestamp is for the page https://review.openstack.org/631560	17:21
openstackgerrit	David Moreau Simard proposed openstack/ara-infra master: WIP: New ARA 1.0 integration jobs https://review.openstack.org/630303	17:30
openstackgerrit	David Moreau Simard proposed openstack/ara-infra master: WIP: New ARA 1.0 integration jobs https://review.openstack.org/630303	17:31
dmsimard	apollo13: so how would I create an account ? :p	17:40
dmsimard	manage.py createsuperuser ?	17:49
dmsimard	eh, this is the first time I log in to the django admin for ara-server	17:50
dmsimard	apollo13: https://review.openstack.org/#/c/631285/ works for me but I'm not sure how to test https://review.openstack.org/#/c/631287/	17:56
*** pabelanger has left #ara		18:45
*** gvincent has quit IRC		19:12
*** gvincent has joined #ara		19:12
*** gvincent has quit IRC		19:14
apollo13	dmsimard: you could test the later by settings read/write_requires_login to true and send remote_user along as header from requests (any username will do)	19:48
apollo13	actually as a quick test a simple curl with remote_user set would do	19:49
apollo13	anyways, will see if I can get cleaned that up over the weekend (probably not though)	19:50
dmsimard	apollo13: no rush, thanks	20:04
ara-slack	chris435: @chris435 has joined the channel	20:17
*** irclogbot_0 has quit IRC		20:41
*** irclogbot_0 has joined #ara		20:50
*** openstackgerrit has quit IRC		20:56
*** mmercer has joined #ara		21:18
dmsimard	mmercer: there was a blog post today about 1.0: https://ara.recordsansible.org/blog/2019/01/16/introducing-new-projects-for-the-upcoming-1.0-release/	21:19
dmsimard	with live demos :)	21:19
mmercer	nice, looking	21:20
mmercer	not sure why my autojoin wasnt working for this channel, sad.	21:20
mmercer	ill have to fix that xD	21:20
*** Daemoen has joined #ara		21:21
mmercer	there, now my log is there too.	21:21
dmsimard	they turned on channel restrictions because of the whole freenode spam thing	21:22
mmercer	sure, but i id through sasl	21:22
dmsimard	my bouncer attempts to join this channel before authenticating with nickserv and I suspect it happens to other folks too	21:22
mmercer	but the config got screwed up a few months ago	21:22
mmercer	so i just readded the autojoins	21:22
dmsimard	\o/	21:22
mmercer	dmsimard: not sure why im getting a popup back: https://api.demo.recordsansible.org/api/v1/playbooks	21:24
dmsimard	neither am I	21:24
dmsimard	we found that out yesterday I think, haven't had the time to fix that yet	21:24
mmercer	ahh,k, figured youd know about it, but wanted to make sure	21:25
mmercer	how are the ansible-playbooks for open stack looking ?	21:25
mmercer	especially the all in one xD	21:25
dmsimard	I'm not sure what you mean	21:25
dmsimard	you mean an openstack-ansible playbook through ara 1.0 ?	21:25
mmercer	nah, i just saw you hanging out and contributing in #openstack-ansible a while ago =D	21:26
mmercer	i was in there discussing issues with the all in one deployment model	21:26
dmsimard	oh, I'm not very involved in OSA but I'm trying to see what 1.0 would look like already: https://review.openstack.org/#/c/631262/	21:27
dmsimard	their test node doesn't run python3 so it fails pretty quickly	21:27
apollo13	oh wow, why does django rest framework allow for XSS	21:28
dmsimard	I should get someone like mnaser to help cough cough	21:28
mmercer	yeah.... that was one of the things i found problematic when i was trying to setup my lab.... i generally prefer C7, and found that c7 was not as well tested/maintained as ubuntu, sadly	21:28
dmsimard	apollo13: that started showing up very recently -- I would like to say sometime after merging the secret key thing	21:28
dmsimard	haven't bisected it yet	21:29
apollo13	doesn't sound like an ara issue though	21:29
mmercer	ahh, i was going to say... generally django actually is one of the few that protects against xss by default	21:29
mmercer	unless you do something... strange xD	21:29
apollo13	exactly	21:29
mmercer	i thought you were saying the opposite, lol	21:30
apollo13	sounds like an drf issue, I'll debug and notify the relevant security channels	21:30
mmercer	was like 'umm....' xD	21:30
apollo13	mmercer: not an ara issue in the sense that our code shouldn't be causing that	21:30
* mmercer nods		21:30
mmercer	oooh, i never noticed you were actual RH dmsimard -- nice xD	21:31
dmsimard	apollo13: drf released a new version yesterday	21:32
dmsimard	the timing looks appropriate	21:32
dmsimard	https://github.com/encode/django-rest-framework/releases/tag/3.9.1	21:32
apollo13	Resolve XSS issue in browsable API. #6330	21:32
apollo13	https://github.com/encode/django-rest-framework/issues/6330	21:32
apollo13	lets update :D	21:32
dmsimard	let me see	21:33
* mmercer cackles		21:33
mmercer	well, that explains why apollo is familiar with drf	21:33
*** openstackgerrit has joined #ara		21:33
openstackgerrit	Florian Apolloner proposed openstack/ara-server master: Fixed XSS issue from DRF. https://review.openstack.org/631651	21:33
apollo13	mmercer: mhm?	21:33
apollo13	ups wrong branch	21:33
mmercer	im not overly familiar with the django community, so i looked you up, lol 'django core contributor' -- yep, youd definitely know about django * snickers *	21:34
openstackgerrit	Florian Apolloner proposed openstack/ara-server master: Fixed XSS issue from DRF. https://review.openstack.org/631651	21:34
apollo13	dmsimard: ^	21:34
Jmainguy	=)	21:34
apollo13	mmercer: hehe, thanks	21:35
dmsimard	apollo13: is the issue in 3.9.0 only ? or was it present in previous versions	21:35
apollo13	I remember hearing it recently	21:35
apollo13	so might be relatively new	21:36
dmsimard	pinning to a version that released yesterday is a bit harsh if we can help it	21:36
dmsimard	looking	21:36
apollo13	dmsimard: you can downgrade to 3.8.2	21:37
apollo13	so probably !=3.9.0 would do it too	21:37
dmsimard	apollo13: !=3.9.0 was what I had in mind	21:38
apollo13	that said I pinned django 2.1.5 the day it was released :þ	21:38
mmercer	ooh, you can do that in requirements ?	21:38
mmercer	neat, didnt know that	21:38
apollo13	mmercer: yes, plenty of things nowadays	21:38
dmsimard	yeah you can pin floor, ceiling and exclude specific versions	21:38
apollo13	also match python versoins and whatnot	21:38
mmercer	yeah, i knew about floor/ceiling, didnt know about excludes	21:38
mmercer	wow, im falling way behind on my python apparently, lol	21:38
apollo13	tststs ;)	21:39
mmercer	i only have soooo much time	21:40
dmsimard	apollo13: ok let's keep >=3.9.1 but can you add a link to the github issue in the commit message ?	21:40
openstackgerrit	Florian Apolloner proposed openstack/ara-server master: Fixed XSS issue from DRF. https://review.openstack.org/631651	21:40
apollo13	mmercer: I hear you	21:40
dmsimard	mmercer: so you're saying you have a lot of time? :P	21:41
mmercer	oh yeah... lots... my time is like ++++	21:41
* mmercer laughs		21:41
apollo13	mmercer: I was looking into https://github.com/Supervisor/supervisor/issues/1110#issuecomment-455328704 before :/	21:41
dmsimard	that looks like a lot of fun	21:45
apollo13	indeed, also the fact that supervisor works till back to py 2.4 or so doesn't make it better :D	21:45
mmercer	mmmm.... supervisor needs a supervisor	21:46
* mmercer snickers		21:46
apollo13	systemd ;)	21:46
mmercer	would you really want to hand off fd management to systemd? xD	21:46
apollo13	oh just python2.7 nowadays, no py 2.4 apparently	21:46
apollo13	mmercer: I like systemd, that said not useable in this usecase	21:46
dmsimard	no more csrf popups on the api demo	21:48
dmsimard	thanks guys :)	21:48
openstackgerrit	Chandan proposed openstack/ara master: Documentation update to reflect the scalabality issues of static report https://review.openstack.org/631656	21:50
apollo13	btw if you are bored feel free to write docs for my patches, I hate writing docs :D	21:51
dmsimard	apollo13: I can probably take a stab at that first one	21:53
dmsimard	I'm not sure what a webserver config might look like for that second one	21:53
apollo13	for instance https://httpd.apache.org/docs/2.4/howto/auth.html#gettingitworking	21:53
dmsimard	oh wow, a wild rbowen has appeared	21:54
apollo13	also a RHEL guy?	21:55
apollo13	you are really like pokemon, literally everywhere ;)	21:57
apollo13	scnr	21:57
dmsimard	He's community manager for CentOS now and he's done a lot of work for the apache foundation as well :)	21:57
apollo13	aaaaah, that's why the name sounded familiar	21:58
dmsimard	ok, so let me get this straight	21:58
dmsimard	the authentication doesn't /need/ to be managed by django ? it can be managed by the web server ?	21:58
apollo13	yes, that is the whole point of external_auth=True	21:59
dmsimard	ok, it makes sense now that I realize that :p	21:59
apollo13	the reason why it is a flag at all is that otherwise any malicious user could send REMOTE_USER header and be logged in	21:59
dmsimard	so someone could have apache with mod_ldap or something and it'd work	22:00
apollo13	yes	22:00
apollo13	or client ssl certs or, …	22:01
apollo13	as long as you can send REMOTE_USER	22:01
dmsimard	and you implemented that in ~50 lines of code across two patches	22:01
apollo13	maybe even mod_mallon for SAML /o\	22:01
apollo13	well to be fair, django does most of the heavy lifting	22:02
dmsimard	to be fair, you rock :p	22:02
apollo13	it will even autocreate the users so you can then for instance assign playbooks to a user etc	22:02
apollo13	hehe, thanks	22:02
dmsimard	I was scared to implement this kind of stuff before 1.0 at all, you exceeded all my expectations :D	22:02
apollo13	as I said, I was aiming for mvp ;)	22:03
dmsimard	most valuable patch ?	22:03
apollo13	seriously?	22:03
apollo13	minimum viable product ;)	22:04
apollo13	but nice combination	22:04
dmsimard	I knew about mvp, yes, it was a dad joke :p	22:05
apollo13	puh, I am relieved	22:05
dmsimard	one of those will leak every once in a while	22:05
openstackgerrit	Merged openstack/ara-server master: Fixed XSS issue from DRF. https://review.openstack.org/631651	22:18
*** etienne has quit IRC		22:47
openstackgerrit	David Moreau Simard proposed openstack/ara master: Update versions used in integration tests https://review.openstack.org/631677	22:54
dmsimard	ansible is really picking up the pace in version releases...	22:54
dmsimard	they're up to 2.5.14, 2.6.12 and 2.7.6	22:54
openstackgerrit	David Moreau Simard proposed openstack/ara master: Update versions used in integration tests https://review.openstack.org/631677	22:55
ara-slack	nj.chandu: Sure, please point me to your patches	23:21

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!