Monday, 2024-05-13

« Sunday, 2024-05-12 Index Tuesday, 2024-05-14 »
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_cinder master: Implement variables to address oslo.messaging improvements  https://review.opendev.org/c/openstack/openstack-ansible-os_cinder/+/91414307:21
noonedeadpunko/08:14
noonedeadpunkso, I think I was able to make a working apache config for Skyline08:23
noonedeadpunksmth like this: https://paste.openstack.org/show/bjmrjAn8qGclV24Wqf49/08:26
jrosser_o/ morning08:32
noonedeadpunkbut kinda lack time to further work on that.... I think main idea for apache (except alignment) was shiboleth support or oidc?08:48
opendevreviewAndrew Bonney proposed openstack/openstack-ansible master: Remove service-specific tags from service playbooks  https://review.opendev.org/c/openstack/openstack-ansible/+/91861508:52
opendevreviewAndrew Bonney proposed openstack/openstack-ansible master: docs: demonstrate quick method to move between HA/Quorum queues  https://review.opendev.org/c/openstack/openstack-ansible/+/91906208:52
jrosser_noonedeadpunk: yes, if you want horizon+oidc then it must be apache08:54
jrosser_and i think we were talking about trying to collapse to just one web server for everything especially for metal deploys08:55
jrosser_we really do have a ton of stuff to merge for the oslo messaging improvements 09:03
noonedeadpunkyeah, I found a mistake during weekends I patched...09:08
noonedeadpunkso it should be fine now09:08
noonedeadpunkthough some services are borked09:08
noonedeadpunklike zun and masakari at least09:08
jrosser_yeah i was just looking trying to work out what was actual errors an what was CI failures09:08
jrosser_but still quite some CI failures, and lots of them feel like on rocky09:09
jrosser_andrew had a query on this as well https://review.opendev.org/c/openstack/openstack-ansible-os_trove/+/91722609:09
noonedeadpunkand on upgrade jobs?09:09
noonedeadpunkah, yes... 09:10
noonedeadpunkand also trove tempest testing failing on not having shared network09:10
noonedeadpunk(which is last patch in series)09:11
noonedeadpunkactually it's a good question of what behaviour it should be09:12
jrosser_then also i was wondering why this was abandoned https://review.opendev.org/c/openstack/openstack-ansible-os_cinder/+/919083/109:13
jrosser_probably i miss something there09:13
noonedeadpunkI've realized that previous patch in chain was failing without it, so I squashed it09:14
jrosser_oh yes i see now - i was looking at rev3 of the previous patch09:15
noonedeadpunkabout trove - my idea was that you kinda should be able to just disable notification regardless designate/ceilometer...09:15
noonedeadpunklike trove_guest_oslomsg_notify_configure for having precedence... but not sure it's right...09:16
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_trove master: Add variable to globally control notifications enablement  https://review.opendev.org/c/openstack/openstack-ansible-os_trove/+/91722609:17
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_trove master: Implement variables to address oslo.messaging improvements  https://review.opendev.org/c/openstack/openstack-ansible-os_trove/+/91799709:18
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_tempest master: Add ability to make public network shared  https://review.opendev.org/c/openstack/openstack-ansible-os_tempest/+/91948909:43
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible master: Add trove tempest testing  https://review.opendev.org/c/openstack/openstack-ansible/+/78437909:45
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_trove master: Manage trove images through openstack_resources role  https://review.opendev.org/c/openstack/openstack-ansible-os_trove/+/91810309:45
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible master: Add trove tempest testing  https://review.opendev.org/c/openstack/openstack-ansible/+/78437909:46
opendevreviewMerged openstack/openstack-ansible-os_tacker master: Add service policies defenition  https://review.opendev.org/c/openstack/openstack-ansible-os_tacker/+/91907110:42
opendevreviewMerged openstack/openstack-ansible-os_nova master: Add service policies defenition  https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/91907410:44
opendevreviewMerged openstack/openstack-ansible-os_nova master: Add variable to globally control notifications enablement  https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/91907610:46
opendevreviewMerged openstack/openstack-ansible-os_tacker master: Add variable to globally control notifications enablement  https://review.opendev.org/c/openstack/openstack-ansible-os_tacker/+/91907210:49
opendevreviewMerged openstack/openstack-ansible-os_tacker master: Implement variables to address oslo.messaging improvements  https://review.opendev.org/c/openstack/openstack-ansible-os_tacker/+/91907310:49
opendevreviewMerged openstack/openstack-ansible-os_designate master: Add qos_prefetch_count to variables  https://review.opendev.org/c/openstack/openstack-ansible-os_designate/+/91908510:54
opendevreviewMerged openstack/openstack-ansible-os_mistral master: Implement variables to address oslo.messaging improvements  https://review.opendev.org/c/openstack/openstack-ansible-os_mistral/+/91812810:54
opendevreviewMerged openstack/openstack-ansible-os_cloudkitty master: Add qos_prefetch_count to variables  https://review.opendev.org/c/openstack/openstack-ansible-os_cloudkitty/+/91908410:56
opendevreviewMerged openstack/openstack-ansible-os_swift master: Add service policies defenition  https://review.opendev.org/c/openstack/openstack-ansible-os_swift/+/91907010:58
opendevreviewMerged openstack/openstack-ansible-os_barbican master: Add qos_prefetch_count to variables  https://review.opendev.org/c/openstack/openstack-ansible-os_barbican/+/91907910:58
noonedeadpunkand I think manila even don't start jobs as probably has broken zuul config10:58
opendevreviewMerged openstack/openstack-ansible-os_heat master: Add qos_prefetch_count to variables  https://review.opendev.org/c/openstack/openstack-ansible-os_heat/+/91908810:58
opendevreviewMerged openstack/openstack-ansible-os_nova master: Implement variables to address oslo.messaging improvements  https://review.opendev.org/c/openstack/openstack-ansible-os_nova/+/91907711:00
jrosser_yes there is something strange with the manila jobs indeed11:01
opendevreviewMerged openstack/openstack-ansible-os_octavia master: Add service policies defenition  https://review.opendev.org/c/openstack/openstack-ansible-os_octavia/+/91906711:02
opendevreviewMerged openstack/openstack-ansible-os_keystone master: Add qos_prefetch_count to variables  https://review.opendev.org/c/openstack/openstack-ansible-os_keystone/+/91908911:05
opendevreviewJonathan Rosser proposed openstack/openstack-ansible master: Collect kubelet logs generated on magnum k8s control plane  https://review.opendev.org/c/openstack/openstack-ansible/+/91949311:12
opendevreviewJonathan Rosser proposed openstack/openstack-ansible-os_magnum master: DNM - 919493  https://review.opendev.org/c/openstack/openstack-ansible-os_magnum/+/91949411:13
opendevreviewMerged openstack/openstack-ansible-os_neutron master: Add service policies defenition  https://review.opendev.org/c/openstack/openstack-ansible-os_neutron/+/91905111:15
opendevreviewMerged openstack/openstack-ansible-os_neutron master: Add variable to globally control notifications enablement  https://review.opendev.org/c/openstack/openstack-ansible-os_neutron/+/91905511:19
opendevreviewMerged openstack/openstack-ansible-os_neutron master: Implement variables to address oslo.messaging improvements  https://review.opendev.org/c/openstack/openstack-ansible-os_neutron/+/91905911:27
opendevreviewMerged openstack/openstack-ansible-ceph_client master: Switch default ceph version to reef  https://review.opendev.org/c/openstack/openstack-ansible-ceph_client/+/91701511:29
opendevreviewMerged openstack/openstack-ansible-ceph_client master: reno: Update master for unmaintained/zed  https://review.opendev.org/c/openstack/openstack-ansible-ceph_client/+/91912612:05
opendevreviewMerged openstack/openstack-ansible-os_cinder master: Implement variables to address oslo.messaging improvements  https://review.opendev.org/c/openstack/openstack-ansible-os_cinder/+/91414313:14
opendevreviewMerged openstack/openstack-ansible stable/2023.2: Bump SHAs for 2023.2  https://review.opendev.org/c/openstack/openstack-ansible/+/91904413:20
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_trove master: Manage trove images through openstack_resources role  https://review.opendev.org/c/openstack/openstack-ansible-os_trove/+/91810313:25
noonedeadpunkdamiandabrowski: can you take a look at https://review.opendev.org/c/openstack/openstack-ansible/+/916900 please? as this makes distro job for EL to fail13:32
noonedeadpunk(due to absent murano client)13:32
noonedeadpunk(it also has 1 unmerged dependency)13:33
noonedeadpunkhttps://review.opendev.org/c/openstack/openstack-ansible-os_murano/+/91689113:33
*** Guest6102 is now known as starkis13:40
opendevreviewMerged openstack/openstack-ansible-os_murano master: reno: Update master for unmaintained/zed  https://review.opendev.org/c/openstack/openstack-ansible-os_murano/+/91917813:52
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_skyline master: Add designate and masakari to service mapping  https://review.opendev.org/c/openstack/openstack-ansible-os_skyline/+/91952313:57
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_skyline master: Reflect keystone service variables in config  https://review.opendev.org/c/openstack/openstack-ansible-os_skyline/+/91816014:00
opendevreviewMerged openstack/openstack-ansible-os_murano master: Preserve actual production playbook in examples  https://review.opendev.org/c/openstack/openstack-ansible-os_murano/+/91689114:21
opendevreviewDmitriy Rabotyagov proposed openstack/openstack-ansible-os_skyline master: Switch nginx with Apache  https://review.opendev.org/c/openstack/openstack-ansible-os_skyline/+/91952915:03
noonedeadpunkjrosser_: this pretty much works for me, at least on Ubuntu aio ^15:09
noonedeadpunkone thing I don't know how to workaround - binding gunicorn to unix socket as was with nginx15:10
noonedeadpunkseems apache really wants to have port binding15:10
noonedeadpunkand from here - I think we can potentially proceed with internal TLS and might be oidc bits?15:11
jrosser_tbh i have no idea about the oidc bit15:15
jrosser_as skyline seem to only care about oauth15:16
jrosser_which != oidc15:16
noonedeadpunk`Add single sign-on (SSO) support. Skyline login with SSO configured with OpenID Connect.` ? https://docs.openstack.org/releasenotes/skyline-apiserver/zed.html15:17
noonedeadpunklike I have no idea how to configure that properly... But on other side - I don't know precisely how to do that in horizon either....15:18
noonedeadpunkOpenID Connect is OIDC, right?15:29
noonedeadpunkthe patch: https://review.opendev.org/c/openstack/skyline-apiserver/+/85239415:31
jrosser_yes that is openid15:35
jrosser_any everything about all of that is using confusing / contradictory / not precise terms15:40
jrosser_*and15:40
jrosser_for example /o\ https://bugs.launchpad.net/skyline-apiserver/+bug/197273615:41
noonedeadpunkyeah... this is the patch related to the report....15:52
noonedeadpunkI kinda really struggle to find anything configurable about skyline frankly speaking...15:52
noonedeadpunklike - hide Domain dropdown, as that is /o\ in multi-domain setups15:52
noonedeadpunks/hide/let it be a field/15:53
jrosser_i still think that in their sso stuff they talk about (and mean) openid15:54
jrosser_mention of openid-connect feels wrong - else it is somehow working magically and theres just a total lack of documentation15:56
noonedeadpunkwell, documentation is just absent 15:58
noonedeadpunkit's very hard to argue15:59
jrosser_tbh i could be totally wrong about all this as well16:00
jrosser_as actually the mod_auth_oidc stuff is in the keystone tole16:01
jrosser_role16:01
* noonedeadpunk needs to catch up on keyscloack/oidc/saml asap....16:11
jrosser_hmm zun looks to have some sql mess https://zuul.opendev.org/t/openstack/build/c8a58e43598d44b2a794a9c656b26f6f/log/logs/host/zun-compute.service.journal-20-21-23.log.txt16:57
jrosser_masakari upgrade jobs look like te fail db sync16:58
opendevreviewMerged openstack/openstack-ansible-os_octavia master: Add variable to globally control notifications enablement  https://review.opendev.org/c/openstack/openstack-ansible-os_octavia/+/91906818:11
opendevreviewMerged openstack/openstack-ansible master: Move Murano/Senlin/Sahara to Inactive state  https://review.opendev.org/c/openstack/openstack-ansible/+/91690020:58
« Sunday, 2024-05-12 Index Tuesday, 2024-05-14 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!