Wednesday, 2014-10-15

« Tuesday, 2014-10-14 Index Thursday, 2014-10-16 »
*** kgriffs is now known as kgriffs|afk00:20
*** kgriffs|afk is now known as kgriffs00:23
*** zz_dimtruck is now known as dimtruck00:40
*** lisaclark1 has joined #openstack-barbican00:54
*** bdpayne has quit IRC01:07
*** woodster_ has quit IRC01:10
*** codekobe_____ has joined #openstack-barbican01:32
*** jorge_munoz has joined #openstack-barbican01:33
*** dougwig has quit IRC01:33
*** dougwig has joined #openstack-barbican01:33
*** codekobe____ has quit IRC01:33
*** dougwig has quit IRC01:33
*** dougwig has joined #openstack-barbican01:33
*** codekobe_____ is now known as codekobe____01:33
*** openstack has joined #openstack-barbican01:42
*** lisaclark1 has quit IRC01:42
*** jorge_munoz has quit IRC01:42
*** insequen1 has joined #openstack-barbican01:42
*** dougwig has quit IRC01:42
*** insequent has quit IRC01:42
*** anteaya has quit IRC01:42
*** dougwig has joined #openstack-barbican01:42
*** dougwig has quit IRC01:42
*** dougwig has joined #openstack-barbican01:42
*** anteaya has joined #openstack-barbican01:52
*** openstackgerrit has joined #openstack-barbican01:52
*** jorge_munoz has joined #openstack-barbican01:52
*** jorge_munoz has quit IRC01:52
*** jorge_munoz has joined #openstack-barbican01:56
*** jorge_munoz has quit IRC02:01
*** insequen1 is now known as insequent02:29
*** rm_you| has quit IRC02:38
*** insequent has quit IRC02:43
*** insequent has joined #openstack-barbican02:43
*** ayoung has joined #openstack-barbican03:12
*** ayoung has quit IRC03:14
*** ayoung has joined #openstack-barbican03:14
*** bubbva has quit IRC03:34
*** bubbva has joined #openstack-barbican03:34
*** woodster_ has joined #openstack-barbican04:11
*** dimtruck is now known as zz_dimtruck04:18
*** gyee has quit IRC04:34
*** kgriffs is now known as kgriffs|afk05:44
*** rm_you has joined #openstack-barbican05:53
*** insequent has quit IRC06:08
*** insequent has joined #openstack-barbican06:10
*** woodster_ has quit IRC06:20
*** Guest86578 is now known as d0ugal07:04
*** d0ugal has quit IRC07:05
*** d0ugal has joined #openstack-barbican07:05
*** juantwo_ has joined #openstack-barbican07:10
*** rm_you| has joined #openstack-barbican07:10
*** juantwo_ has quit IRC07:10
*** juantwo_ has joined #openstack-barbican07:11
*** juantwo has quit IRC07:13
*** rm_you has quit IRC07:14
*** alee has quit IRC07:14
*** alee has joined #openstack-barbican07:17
*** davidhadas_ has joined #openstack-barbican07:50
*** davidhadas_ is now known as davidhadas08:14
*** davidhadas__ has joined #openstack-barbican11:31
*** davidhadas__ has quit IRC11:32
*** davidhadas has quit IRC11:34
*** davidhadas has joined #openstack-barbican11:35
*** alee has quit IRC12:32
*** SheenaG1 has joined #openstack-barbican13:04
*** SheenaG1 has left #openstack-barbican13:06
*** SheenaG11 has joined #openstack-barbican13:09
*** nkinder has quit IRC13:10
*** woodster_ has joined #openstack-barbican13:29
*** lisaclark1 has joined #openstack-barbican13:39
*** paul_glass has joined #openstack-barbican13:43
*** alee has joined #openstack-barbican13:46
*** paul_glass has quit IRC13:46
*** SheenaG11 has quit IRC13:49
*** nkinder has joined #openstack-barbican13:54
*** lisaclark1 has quit IRC13:57
*** ayoung has quit IRC13:59
*** tdink has joined #openstack-barbican13:59
*** SheenaG1 has joined #openstack-barbican14:16
*** kgriffs|afk is now known as kgriffs14:20
*** jorge_munoz has joined #openstack-barbican14:21
*** davidhadas__ has joined #openstack-barbican14:25
*** davidhadas has quit IRC14:25
openstackgerritTim Kelsey proposed a change to openstack/barbican: Bumping default ssl_version to TLSv1, in light of POODLE.  https://review.openstack.org/12866514:28
*** lisaclark1 has joined #openstack-barbican14:31
*** akoneru has joined #openstack-barbican14:31
*** lisaclark1 has joined #openstack-barbican14:31
*** zz_dimtruck is now known as dimtruck14:32
*** lisaclark1 has quit IRC14:37
*** lisaclark1 has joined #openstack-barbican14:37
*** paul_glass has joined #openstack-barbican14:40
openstackgerritTim Kelsey proposed a change to openstack/barbican: Bumping default ssl_version to TLSv1, in light of POODLE  https://review.openstack.org/12866514:50
*** dimtruck is now known as zz_dimtruck14:52
*** paul_glass has quit IRC15:00
*** paul_glass has joined #openstack-barbican15:12
*** kebray has joined #openstack-barbican15:31
*** kebray has quit IRC15:31
*** zz_dimtruck is now known as dimtruck15:33
*** lisaclark1 has quit IRC15:42
*** lisaclark1 has joined #openstack-barbican15:45
*** lisaclark1 has quit IRC15:46
*** lisaclark1 has joined #openstack-barbican15:46
aleewoodster_, ?15:49
*** ayoung has joined #openstack-barbican15:56
*** lisaclark1 has quit IRC16:06
*** lisaclark1 has joined #openstack-barbican16:08
*** tdink has quit IRC16:08
*** tdink_ has joined #openstack-barbican16:08
rm_workredrobot: I assume no tacos today since last night woodster_ said he wasn't going to make it and chellygel said she'd be in austin16:15
rm_workchellygel: are you actually in austin? :P16:15
chellygelyes rm_work16:15
rm_workkk16:26
rm_workwell I mean, that's not to say redrobot and I couldn't do tacos by our lonesome :P but yeah, hopefully catch you guys next week16:26
*** paul_glass has quit IRC16:29
*** paul_glass has joined #openstack-barbican16:31
*** jorge_munoz has quit IRC16:33
*** lisaclark1 has quit IRC16:33
*** paul_glass has quit IRC16:34
*** rellerreller has joined #openstack-barbican16:35
*** lisaclark1 has joined #openstack-barbican16:36
*** kebray has joined #openstack-barbican16:37
*** paul_glass has joined #openstack-barbican16:47
*** ayoung has quit IRC16:53
*** paul_glass has quit IRC16:53
jvrbanacrellerreller, yo16:54
*** rm_you| has quit IRC16:54
*** paul_glass has joined #openstack-barbican16:54
rellerrellerWhat's up16:55
jvrbanacrellerreller, fyi, we're suppose to have 3 total core reviews for a CR16:55
jvrbanac2+'s and a +116:55
jvrbanacfrom different people16:55
jvrbanac^+1 workflow16:56
openstackgerritA change was merged to openstack/barbican: Bumping default ssl_version to TLSv1, in light of POODLE  https://review.openstack.org/12866516:56
rellerrellerOh, I did not know that. I thought just two +2's was all that is needed.16:56
rellerrellerWhy does gerrit allow that to happen?16:56
rellerrellerjvrbanac OK, well do we need to do anything about this?16:57
jvrbanacrellerreller, some projects only require 2 core reviews. My guess is for smaller projects with a limited number of core reviewers16:58
jvrbanacrellerreller, it's fine, we don't need to do anything, but just keep that in mind for future reviews16:58
rellerrellerjvrbanac We should write a Gerrit patch to enforce policy. I'm surprised that it does not do this already.16:59
rellerrellerjvrbanac Will do. Sorry about that.16:59
jvrbanacrellerreller, np. Everyone occasionally makes the mistake. I think it's a setting in Gerrit somewhere17:01
jvrbanacrellerreller, we can take a look at it during the summit17:01
*** kgriffs is now known as kgriffs|afk17:03
*** bdpayne has joined #openstack-barbican17:09
*** kgriffs|afk is now known as kgriffs17:24
*** kgriffs is now known as kgriffs|afk17:34
*** lisaclark1 has quit IRC17:48
*** alee is now known as alee_afk_food18:15
*** kgriffs|afk is now known as kgriffs18:25
*** kgriffs is now known as kgriffs|afk18:35
*** ayoung has joined #openstack-barbican18:35
*** ayoung has quit IRC18:36
*** ayoung has joined #openstack-barbican18:36
*** gyee has joined #openstack-barbican18:38
*** davidhadas__ is now known as davidhadas18:39
*** lisaclark1 has joined #openstack-barbican18:47
*** alee_afk_food is now known as alee18:47
*** lisaclark1 has quit IRC18:48
*** kgriffs|afk is now known as kgriffs18:51
*** nkinder has quit IRC18:51
*** lisaclark1 has joined #openstack-barbican18:52
*** mordred has joined #openstack-barbican18:55
*** tdink_ has quit IRC19:02
*** Constanze has joined #openstack-barbican19:03
*** Constanze has quit IRC19:04
*** tdink has joined #openstack-barbican19:05
*** Stanzi has joined #openstack-barbican19:07
rm_workalee: did you look at my comment on https://review.openstack.org/#/c/127353/ ?19:08
aleerm_work, I did - taking some time to digest it.19:09
*** tdink has quit IRC19:10
aleerm_work, on the outset though, I'm not opposed to a different method to achieve the same goal.  I put the spec up for exactly this kind of discussion.19:10
rm_workyeah I am more curious if you think it makes sense19:11
aleeI'd like other folks to chime in too though.19:11
rm_workor if it is lacking19:11
rm_worksince it is a bit more ... basic19:11
aleerm_work, ok -- I'll give it a thorough look-see shortly and will comment19:11
rm_workalee: no hurry, this one is going to need to stew for a while probably19:12
rm_workI was just curious19:12
rm_workand impatient for feedback :)19:12
aleerm_work, by the way, did you notice https://review.openstack.org/#/c/128401/ ?19:12
*** Stanzi has quit IRC19:16
rm_workalee: yes but I am not an expert in that area :P19:17
*** kebray has quit IRC19:20
rm_workalee: did you copy-pasta that BP? the title is from the tenant->project refactor BP, lol19:28
aleerm_work, oops - yup :/19:28
*** lisaclark1 has quit IRC19:33
*** lisaclark1 has joined #openstack-barbican19:34
*** lisaclark1 has quit IRC19:34
*** lisaclark1 has joined #openstack-barbican19:35
*** tdink has joined #openstack-barbican19:35
*** lisaclark1 has quit IRC19:36
*** lisaclark1 has joined #openstack-barbican19:39
*** dimtruck is now known as zz_dimtruck19:43
*** kebray has joined #openstack-barbican19:49
*** tdink has quit IRC19:56
*** ayoung has quit IRC19:56
*** tdink has joined #openstack-barbican20:03
*** zz_dimtruck is now known as dimtruck20:10
*** nkinder has joined #openstack-barbican20:11
*** tdink has quit IRC20:17
*** tdink_ has joined #openstack-barbican20:17
*** tdink_ has quit IRC20:28
*** paul_glass has quit IRC20:29
*** paul_glass1 has joined #openstack-barbican20:32
*** dimtruck is now known as zz_dimtruck20:38
*** zz_dimtruck is now known as dimtruck20:44
*** tdink has joined #openstack-barbican20:55
SheenaG1reaperhulk: ping20:55
reaperhulkwhat's up SheenaG120:55
*** tdink has quit IRC21:01
*** tdink has joined #openstack-barbican21:02
openstackgerritDouglas Mendizábal proposed a change to openstack/python-barbicanclient: Add sphinx docs  https://review.openstack.org/12786821:13
*** lisaclark1 has quit IRC21:17
rm_workneed eyes on https://review.openstack.org/#/c/125798/21:38
rm_workreaperhulk / redrobot / alee / jvrbanac21:39
*** tdink has quit IRC21:41
*** tdink has joined #openstack-barbican21:42
*** alee has quit IRC21:43
*** SheenaG1 has quit IRC21:52
*** paul_glass1 has quit IRC21:56
*** kebray has quit IRC21:57
*** tdink has quit IRC21:58
*** juantwo has joined #openstack-barbican22:01
*** juantwo has quit IRC22:01
*** juantwo has joined #openstack-barbican22:02
*** juantwo_ has quit IRC22:04
*** rellerreller has quit IRC22:11
*** tdink has joined #openstack-barbican22:16
*** SheenaG1 has joined #openstack-barbican22:23
*** tdink has quit IRC22:26
*** SheenaG1 has quit IRC22:29
*** SheenaG1 has joined #openstack-barbican22:32
*** ryanpetrello has quit IRC22:34
*** ryanpetrello has joined #openstack-barbican22:35
*** alee has joined #openstack-barbican22:46
*** kgriffs is now known as kgriffs|afk22:49
*** dimtruck is now known as zz_dimtruck22:57
openstackgerritJohn Wood proposed a change to openstack/barbican-specs: Add worker retry and future updates support  https://review.openstack.org/12811323:05
openstackgerritJohn Wood proposed a change to openstack/barbican-specs: Add worker retry and future updates support  https://review.openstack.org/12811323:07
rm_workwoodster_: you there?23:08
woodster_rm_work: yep, trying to catch up on CRs....23:09
rm_workwoodster_: do you know when the feature to Order up a TLS Certificate was going to be a reality?23:09
rm_workLike, Hey Barbican! I need a nice new signed TLS Cert, please make one and return it to me!23:09
rm_workIIRC people kept telling me "not available yet", but not a timeline23:09
woodster_rm_work: sometime in Kilo :)  Actually that retry blueprint I just updated is one of the last technical pieces to that cert workflow puzzle.23:10
rm_workah ok, cool23:10
rm_workAs long as that's in Kilo, we can take advantage of it for Octavia23:10
rm_workMy plan is that on our API's initial spinup, it'll request that Barbican make it a cert, then retrieve the cert and use that cert for its API endpoint :)23:11
rm_workand store the ContainerID in its config for later use23:11
woodster_rm_work, the design sessions regarding ssl cert plugin management will be the final piece...so what data is common across all CAs in a cert order, and what is specific to a CA. Then we would need a search discovery sort of API to say 'these are the CAs I support', and 'here are the specific parameters you need to pass in for a given cert'.23:11
rm_workcool23:12
rm_workso, since I won't be at that design session, make sure it goes well, eh? :P23:12
rm_workbecause obviously you wouldn't care otherwise :P23:12
woodster_rm_work, just keep in mind though that the cert workflow process itself could take days/weeks to play out, depending on the cert type. If the CA needs to verify business stuff for example, that could take a while.23:13
woodster_rm_work, I care because SheenaG1 cares :)  And it's a great feature for Barbican too23:14
rm_workheh23:14
rm_workah so there's no way we could see a signed cert show up for us in, say, 10 seconds? :P23:14
woodster_rm_work, so there are some cert workflows that could generate the certificate right away (well, via the orders asynch api), but that might not be an officially certified one via a remote CA. If barbican itself is configured as a CA, then it could do it. Alee's Dogtag plugin generates the cert right away for example.23:15
rm_workawesome23:16
rm_workso, somewhat possible23:16
rm_worknot "out of the question" :P23:16
woodster_rm_work, yes if the expectation is just a cert that doesn't verify company info (so just a domain DV one I think). That would be good to ask SheenaG1 and chellygel about actually.23:17
woodster_rm_work, but if a customer wants a fancy expensive one on there that verifies first born and so forth, then >>> 10 seconds wait time.23:17
rm_workwe're talking about for internal communication between our service and our containers23:19
*** zz_dimtruck is now known as dimtruck23:52
« Tuesday, 2014-10-14 Index Thursday, 2014-10-16 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!