Tuesday, 2014-08-12

« Monday, 2014-08-11 Index Wednesday, 2014-08-13 »
openstackgerritVenkat Sundaram proposed a change to openstack/python-barbicanclient: remove tenant-id from uri  https://review.openstack.org/11214900:01
*** nkinder has quit IRC00:10
*** gyee has quit IRC00:25
*** bdpayne has quit IRC00:58
*** xianghuihui has quit IRC01:21
*** woodster_ has quit IRC01:25
*** xianghui has joined #openstack-barbican01:26
*** xianghui has quit IRC01:34
*** xianghuihui has joined #openstack-barbican01:34
*** nkinder has joined #openstack-barbican01:51
*** bdpayne has joined #openstack-barbican02:20
*** juantwo has quit IRC02:23
*** juantwo has joined #openstack-barbican02:24
*** blpoulos_ has quit IRC02:36
*** akoneru_afk has quit IRC03:31
*** crc32 has quit IRC03:41
*** woodster_ has joined #openstack-barbican03:44
hockeynuttsv can we abandon https://review.openstack.org/#/c/100141/ (tenant ID from uri validation in rbac) since https://review.openstack.org/#/c/112149/ (remove tenant ID from url) is almost ready?04:01
*** jamielen- has joined #openstack-barbican05:07
*** jamielennox has quit IRC05:08
*** jamielen- is now known as jamielennox05:15
openstackgerritA change was merged to openstack/barbican: autodoc import error for plugin.rst  https://review.openstack.org/11239005:22
*** bdpayne has quit IRC05:33
openstackgerritRavi Sankar Penta proposed a change to openstack/barbican: Install sqlite-devel package on fedora  https://review.openstack.org/11340405:34
*** bdpayne has joined #openstack-barbican05:35
*** juantwo has quit IRC05:36
*** jamielen| has joined #openstack-barbican05:44
*** jamielen| has quit IRC05:44
*** woodster_ has quit IRC05:45
*** jamielen| has joined #openstack-barbican05:45
*** jamielen| has quit IRC05:45
*** jamielennox has quit IRC05:46
*** jamielennox has joined #openstack-barbican05:47
openstackgerritRavi Sankar Penta proposed a change to openstack/barbican: Install sqlite-devel package on fedora  https://review.openstack.org/11340405:47
*** alee_out has quit IRC05:51
*** bdpayne has quit IRC05:58
*** jamielen- has joined #openstack-barbican06:01
*** jamielennox has quit IRC06:05
openstackgerritOpenStack Proposal Bot proposed a change to openstack/barbican: Imported Translations from Transifex  https://review.openstack.org/11276406:09
*** jaosorior has joined #openstack-barbican07:29
*** jamielen- is now known as jamielennox|away08:24
*** erw has quit IRC09:46
*** codekobe_ has quit IRC09:49
*** jraim has quit IRC09:51
*** erw has joined #openstack-barbican09:52
*** jaosorior has quit IRC09:52
*** codekobe_ has joined #openstack-barbican09:53
*** jraim has joined #openstack-barbican09:54
*** jaosorior has joined #openstack-barbican09:57
*** erw has quit IRC09:57
*** codekobe_ has quit IRC09:58
*** codekobe_ has joined #openstack-barbican10:01
*** erw has joined #openstack-barbican10:01
*** jamielennox|away has quit IRC11:34
*** jamielennox|away has joined #openstack-barbican11:37
*** SheenaG1 has joined #openstack-barbican12:31
*** alee has joined #openstack-barbican13:01
*** SheenaG1 has quit IRC13:09
*** nkinder has quit IRC13:11
*** SheenaG1 has joined #openstack-barbican13:13
openstackgerritJohn Wood proposed a change to openstack/barbican-specs: Add Version Responses Consistent with Openstack  https://review.openstack.org/10816313:22
*** SheenaG1 has quit IRC13:26
*** ayoung has joined #openstack-barbican13:32
*** akoneru has joined #openstack-barbican13:34
openstackgerritJohn Wood proposed a change to openstack/barbican-specs: Add Version Responses Consistent with Openstack  https://review.openstack.org/10816313:38
*** gerchardon has quit IRC13:48
*** gerchardon has joined #openstack-barbican13:48
*** nkinder has joined #openstack-barbican13:56
*** juantwo has joined #openstack-barbican14:03
*** juantwo has quit IRC14:03
*** juantwo has joined #openstack-barbican14:03
*** SheenaG1 has joined #openstack-barbican14:05
openstackgerritJuan Antonio Osorio Robles proposed a change to openstack/barbican: Refactor secret_store for cosistency  https://review.openstack.org/11353114:05
*** SheenaG11 has joined #openstack-barbican14:10
*** SheenaG1 has quit IRC14:11
openstackgerritKaitlin Farr proposed a change to openstack/barbican: Adds KMIPSecretStore and unit tests  https://review.openstack.org/10158214:16
*** SheenaG11 has quit IRC14:27
jaosorioralee: ping14:45
aleejaosorior, pong14:46
*** SheenaG1 has joined #openstack-barbican14:46
jaosorioralee: regarding the CR 113531 . so, you're thinking that lines 420-421, 466-467 are not needed? what about 449-450?14:48
*** SheenaG11 has joined #openstack-barbican14:49
jaosorioralee: and also, I think the else statements should stay, since it becomes more explicit that the exception would be raised if the for doesn't return14:50
*** SheenaG1 has quit IRC14:51
aleejaosorior, yeah - 449-450 shoudl go too.14:51
*** paul_glass has joined #openstack-barbican14:53
aleejaosorior, I tend to favor more concise code.  I'm ok with being overruled if there is a consensus think having the else is clearer.14:53
jaosorioralee: Seems Kaitlin has a different opinion about the length check of the extensions.14:55
jaosoriorIf the check if useful to someone, should it then be kept?14:56
aleejaosorior, you didn't think your 3 line change was going to be so contentious :)14:58
jaosoriorI didn't14:58
jaosorioras a matter of fact I started coding just after the workshop that I'm attending, thinking it would be a pretty easy change. But I'm really glad to see people reviewing stuff and and having thought in how things should be done :D14:59
jaosoriornow, hopefully we can get to a consensus before I go off the computer with the guys from the workshop15:00
jaosoriorfor some goooood beers :D15:00
aleejaosorior, I think a few of us have been in that code quite a bit recently - and so have formed opinions on how things should be done.15:03
jaosoriorhockeynut: ping15:13
hockeynutgreetings sir!15:14
jaosorioryo Mr.! what's up?15:14
hockeynutanother day, another euro15:14
jaosoriorhey man, you mentioned using a decorator for this length check, and I dig that idea, just haven't figured out a good name for it, can you help?15:15
hockeynuthmm...must think about that15:17
jaosorior@_extensions_should_be_configured ?15:18
hockeynuttrying to see if I can come up with anything better than that - so far no, I like yours15:25
openstackgerritJuan Antonio Osorio Robles proposed a change to openstack/barbican: Refactor secret_store for consistency  https://review.openstack.org/11353115:29
hockeynutenforce_configured_extensions perhaps?15:34
jaosoriorenforce_extensions_configured?15:35
hockeynutooh - even better15:35
hockeynut+ oo15:35
jaosoriorawesum15:37
openstackgerritJuan Antonio Osorio Robles proposed a change to openstack/barbican: Refactor secret_store for consistency  https://review.openstack.org/11353115:38
*** woodster_ has joined #openstack-barbican15:44
openstackgerritA change was merged to openstack/barbican: Replace hard-coded setup version setting  https://review.openstack.org/10958015:53
openstackgerritJuan Antonio Osorio Robles proposed a change to openstack/barbican: Refactor secret_store for consistency  https://review.openstack.org/11353115:58
woodster_I'm curious about this CR to add a SQLite dep if it is a Fedora install: https://review.openstack.org/#/c/113404   I thought Devstack used MySQL under the hood and not SQLite?15:59
*** paul_glass1 has joined #openstack-barbican16:02
*** paul_glass has quit IRC16:03
*** paul_glass has joined #openstack-barbican16:04
jaosorioroff now :D16:04
*** paul_glass1 has quit IRC16:07
*** paul_glass has quit IRC16:23
openstackgerritChristian Berendt proposed a change to stackforge/kite: Bump hacking to version 0.9.2  https://review.openstack.org/10742116:25
*** lecalcot has joined #openstack-barbican16:29
*** paul_glass has joined #openstack-barbican16:37
*** bdpayne has joined #openstack-barbican16:41
*** paul_glass1 has joined #openstack-barbican17:03
*** paul_glass1 is now known as paul_glass_17:04
*** paul_glass has quit IRC17:06
*** kaitlin-farr has joined #openstack-barbican17:08
aleewoodster_, ping17:12
aleedstufft, ping17:13
dstufftalee: hello17:13
woodster_alee: hello17:15
aleewoodster_, dstufft - just wondering if any code has been written to add certificates to the api level?17:15
aleewoodster_, dstufft - that is -- I have reviewed arvind's changes but they are for adding containers and typed orders -- all needed things ..17:16
aleebut nothing that I can tell to implement ..17:16
aleehttps://review.openstack.org/#/c/10842917:16
aleewoodster_, dstufft - of course the spec is still in review, but I was wondering if anyone had started working on the implementation?17:18
dstufftI dunno17:18
woodster_That is what this CR is doing: https://review.openstack.org/#/c/8740517:18
aleedstufft, sorry I thought you had been working on this :)17:18
aleewoodster_, there is nothing in that CR about certificate requests etc.  unless I'm missing something ..17:19
aleewoodster_, in facte, most of the cert request stuff is place holdered as not implemented17:20
aleewoodster_, am I just totally confused?17:22
woodster_So https://review.openstack.org/#/c/87405 needs to get the revamped orders type/meta stuff in place first17:22
aleeyup - understood.  its needed first.17:23
woodster_Then we planned to follow up Chelsea's CR (that added the certificate stuff) on top of that orders update17:23
woodster_that's why I've been curious if arvind was still working on that CR or not :)17:23
aleewoodster_, and that follow up CR will implement https://review.openstack.org/#/c/108429 ?17:24
woodster_The overall plan was to follow the work items in this blueprint: https://review.openstack.org/#/c/99221/8/specs/juno/orders-add-cert-workflow-plugin.rst,cm17:25
woodster_So it seems that  https://review.openstack.org/#/c/108429 is refining that original blueprint, refining the actual meta parameters passed into certificate-type orders17:27
aleeright -- I just wanted to be clear on where things were.  I have added a bunch of comments to https://review.openstack.org/#/c/108429 on the assumption that this is what would be used.17:27
woodster_I'll add a comment to that CR now to reference the original blueprint. I think the bottom line is we probably do need to standardize on some of the key/value info in the meta block of certificate orders...things all CA plugin vendors can agree on so to speak.17:28
woodster_Some of that data will be specific to a certificate type (and so probably to an issuer/CA/vendor plugin)17:29
aleewoodster_, yes - thats why I'm so interested ..17:29
aleewoodster_, it was a little surprising to me that we could write this --> https://review.openstack.org/#/c/110144/19/barbican/plugin/symantec.py,cm17:30
aleewoodster_, given that we don't know yet whats in the order_meta object coming in17:30
*** paul_glass_ has quit IRC17:30
*** gyee has joined #openstack-barbican17:31
aleelines 143 - 152 have a bunch of fields which would be nice perhaps, but have not been defined yet.17:32
aleeand certainly are not all specified in the api.17:32
*** gyee has quit IRC17:34
aleeand are very symantec specific -- things like partnercode and productcode .. what are these?17:34
*** lecalcot has quit IRC17:43
woodster_alee: those are good points all, but I'm wondering what is the best process for determining just what *is* generic across cert plugin impls?  Or is that too lofty a goal and we just fall back on a issuer/vendor field that is the criteria for selecting a plugin?17:50
*** paul_glass has joined #openstack-barbican17:53
aleewoodster_, yeah - I think there are specific things that you are going to want to ask for - and https://review.openstack.org/#/c/108429 is an attempt to identify those.17:54
aleethose will map to certain fields17:55
aleewhich can be passed into the plugins17:55
woodster_alee: I just added a comment to that bp asking for clarification from Stanislaw...I don't know his IRC handle17:55
aleeand the plugins will be responsible for breaking them out into whatever fields they need.17:55
aleewoodster_,  I think we can make a credible start to this by limiting the initial implementation to specific types of certs.17:56
*** gyee has joined #openstack-barbican17:56
aleelike ssl server certs say ..17:56
aleeand then go on from there.17:57
aleewoodster_, on the other hand, I suppose we could just fall back on issue/plugin specific metadata17:58
aleewoodster_, that would allow barbican to essentially be just a router above the ca's ..17:59
aleewoodster_, but it means that end users would have to know how to use symantec or dogtag or .. whatever ..18:00
*** gchardon has joined #openstack-barbican18:02
aleewoodster_, was your original intention a issuer/vendor specific metadata?18:04
*** alee is now known as alee_lunch18:05
gchardonhi guys, someone can explain me why the workflow didnt launch https://review.openstack.org/#/c/112845/ (i tried to add a review 0 score) , thanks18:05
*** jamielennox|away is now known as jamielennox18:06
woodster_gchardon: that CR needs a workflow +1....any core folks out there that can review/approve this CR?: https://review.openstack.org/#/c/11284518:07
gchardonwoodster_: ok, i thinks it would be launch automatically when i add enough review , thanks18:08
woodster_gchardon: we've been requiring two +2s and a workflow +1 to merge things. I think the workflow +1 is the minimum required by gerrit to merge things18:10
*** jaosorior has quit IRC18:12
*** juantwo has quit IRC18:15
*** gchardon has quit IRC18:20
*** gchardon has joined #openstack-barbican18:29
openstackgerritA change was merged to openstack/barbican: Clean old comments (already implemented)  https://review.openstack.org/11284518:32
*** crc32 has joined #openstack-barbican18:32
*** crc32 has quit IRC18:33
*** crc32 has joined #openstack-barbican18:34
*** ayoung has quit IRC18:36
*** alee_lunch is now known as alee18:48
*** lecalcot has joined #openstack-barbican18:52
*** alee is now known as alee_afk19:39
*** alee_afk has quit IRC19:43
*** ayoung has joined #openstack-barbican19:46
*** paul_glass has quit IRC19:59
openstackgerritVenkat Sundaram proposed a change to openstack/barbican: remove project-id from resource URIs  https://review.openstack.org/10556220:17
*** paul_glass has joined #openstack-barbican20:27
*** paul_glass has quit IRC20:37
*** crc32 has quit IRC20:38
*** paul_glass has joined #openstack-barbican20:40
*** paul_glass1 has joined #openstack-barbican20:54
*** paul_glass has quit IRC20:57
*** SheenaG11 has quit IRC20:58
*** paul_glass1 is now known as paul_glass21:05
*** akoneru is now known as akoneru_afk21:19
*** alee has joined #openstack-barbican21:19
*** lecalcot has quit IRC21:20
*** juantwo has joined #openstack-barbican21:21
*** juantwo has quit IRC21:22
*** juantwo has joined #openstack-barbican21:23
*** nkinder has quit IRC21:28
*** crc32 has joined #openstack-barbican21:36
*** akoneru has joined #openstack-barbican21:51
*** paul_glass has quit IRC21:57
openstackgerritVenkat Sundaram proposed a change to openstack/barbican: remove project-id from resource URIs  https://review.openstack.org/10556222:18
*** kaitlin-farr has quit IRC22:28
*** gchardon has quit IRC22:32
openstackgerritVenkat Sundaram proposed a change to openstack/barbican: remove project-id from resource URIs  https://review.openstack.org/10556222:50
*** bdpayne has quit IRC22:57
*** bdpayne has joined #openstack-barbican22:59
*** bdpayne_ has joined #openstack-barbican23:01
*** bdpayne has quit IRC23:04
*** juantwo has quit IRC23:18
*** bdpayne_ has quit IRC23:54
*** bdpayne has joined #openstack-barbican23:56
« Monday, 2014-08-11 Index Wednesday, 2014-08-13 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!