Tuesday, 2014-12-16

« Monday, 2014-12-15 Index Wednesday, 2014-12-17 »
*** lisa2 has joined #openstack-barbican00:00
*** lisa1 has quit IRC00:01
*** ametts has quit IRC00:02
*** lisa2 has quit IRC00:08
*** rm_work is now known as rm_work|away00:21
*** david-lyle is now known as david-lyle_afk00:35
*** kebray has quit IRC00:52
*** kebray has joined #openstack-barbican00:59
*** kgriffs is now known as kgriffs|afk01:02
*** kebray has quit IRC01:11
*** SheenaG1 has joined #openstack-barbican01:13
*** ryanpetrello has quit IRC01:27
*** ryanpetrello has joined #openstack-barbican01:32
*** bdpayne has quit IRC01:46
*** gyee has quit IRC02:09
*** ryanpetrello has quit IRC02:19
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Delete secret from plugin only if there's metadata  https://review.openstack.org/14196302:30
openstackgerritgreghaynes proposed openstack/barbican: WIP Create snakoil certificate plugin  https://review.openstack.org/14057502:30
openstackgerritgreghaynes proposed openstack/barbican: Create snakoil certificate plugin  https://review.openstack.org/14057502:31
*** lisaclark has joined #openstack-barbican02:37
*** SheenaG1 has quit IRC02:40
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Delete secret from plugin only if there's metadata  https://review.openstack.org/14196302:48
*** jaosorior has joined #openstack-barbican02:52
*** SheenaG1 has joined #openstack-barbican03:30
*** kebray has joined #openstack-barbican03:45
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Actually run type order creation test  https://review.openstack.org/14197403:51
*** stanzi has joined #openstack-barbican03:56
*** Stanzi_ has joined #openstack-barbican03:56
openstackgerritJohn Wood proposed openstack/barbican: Add I18n-related unit tests (Part 3)  https://review.openstack.org/14153504:17
*** lisaclark has quit IRC04:23
*** reaperhulk has quit IRC04:34
*** reaperhulk_ has joined #openstack-barbican04:34
*** zz_dimtruck has quit IRC04:35
*** lbragstad has quit IRC04:35
*** jraim_ has quit IRC04:36
*** zz_dimtruck has joined #openstack-barbican04:38
*** lbragstad has joined #openstack-barbican04:38
*** jraim has joined #openstack-barbican04:38
*** zz_dimtruck is now known as dimtruck04:38
*** ayoung has quit IRC04:52
*** kebray has quit IRC04:52
*** kebray has joined #openstack-barbican04:53
openstackgerritgreghaynes proposed openstack/barbican-specs: WIP Snakeoil CA  https://review.openstack.org/14198105:21
*** ajc___ has joined #openstack-barbican05:24
openstackgerritgreghaynes proposed openstack/barbican: Create snakeoil certificate plugin  https://review.openstack.org/14057505:42
openstackgerritgreghaynes proposed openstack/barbican: Create snakeoil certificate plugin  https://review.openstack.org/14057505:43
*** Stanzi_ has quit IRC05:51
*** stanzi has quit IRC05:51
*** stanzi_ has joined #openstack-barbican05:52
*** Stanzi has joined #openstack-barbican05:52
*** stanzi_ has quit IRC05:56
*** Stanzi has quit IRC05:56
*** Stanzi_ has joined #openstack-barbican06:01
*** stanzi has joined #openstack-barbican06:01
*** jaosorior has quit IRC06:03
*** Stanzi_ has quit IRC06:17
*** stanzi has quit IRC06:17
*** stanzi_ has joined #openstack-barbican06:18
*** Stanzi has joined #openstack-barbican06:18
*** stanzi_ has quit IRC06:22
*** Stanzi has quit IRC06:22
openstackgerritJohn Wood proposed openstack/barbican: Add I18n-related unit tests (Part 3)  https://review.openstack.org/14153506:26
*** stanzi has joined #openstack-barbican06:49
*** Stanzi_ has joined #openstack-barbican06:49
*** Stanzi_ has quit IRC06:57
*** stanzi has quit IRC06:57
*** jamielennox is now known as jamielennox|away07:01
*** lisa1 has joined #openstack-barbican07:55
*** lisa1 has quit IRC07:59
*** darrenmoffat has quit IRC08:47
*** darrenmoffat has joined #openstack-barbican08:48
*** lisa3 has joined #openstack-barbican08:49
*** lisa3 has quit IRC08:54
*** woodster_ has quit IRC09:10
*** lisa3 has joined #openstack-barbican09:44
*** lisa3 has quit IRC09:48
*** darrenmoffat has quit IRC10:11
*** darrenmoffat has joined #openstack-barbican10:18
*** Stanzi has joined #openstack-barbican10:18
*** Stanzi has quit IRC10:22
*** lisa3 has joined #openstack-barbican11:32
*** lisa3 has quit IRC11:37
*** jraim_ has joined #openstack-barbican12:12
*** dougwig_ has joined #openstack-barbican12:12
*** erw_ has joined #openstack-barbican12:13
*** jraim has quit IRC12:14
*** jraim_ is now known as jraim12:14
*** dougwig has quit IRC12:14
*** erw has quit IRC12:14
*** dougwig_ is now known as dougwig12:14
*** ajc___ has quit IRC12:29
*** woodster_ has joined #openstack-barbican12:51
openstackgerritTim Kelsey proposed openstack/barbican: Adding client certificates to connection credentials  https://review.openstack.org/13521712:59
openstackgerritTim Kelsey proposed openstack/barbican: Removing conditional logic around KMIP tests  https://review.openstack.org/14209613:14
openstackgerritJohn Wood proposed openstack/barbican: Add I18n-related unit tests (Part 3)  https://review.openstack.org/14153513:16
*** alee has quit IRC13:18
openstackgerritJohn Wood proposed openstack/barbican: Add I18n-related unit tests (Part 3)  https://review.openstack.org/14153513:20
*** reaperhulk_ is now known as reaperhulk13:22
*** alee has joined #openstack-barbican13:28
*** alee has quit IRC13:34
*** SheenaG1 has quit IRC13:58
*** kebray has quit IRC14:37
*** ametts has joined #openstack-barbican14:47
*** alee has joined #openstack-barbican14:48
*** dimtruck is now known as zz_dimtruck14:49
aleewoodster_, ping14:52
*** ayoung has joined #openstack-barbican14:53
woodster_alee: good morning14:53
aleewoodster_, morning14:53
aleewoodster_, I started working on the cert api patches and have changed my mind on the whole separate methods on the plugin interface thing14:54
aleewoodster_, that is -- I no longer think that we need to implement different methods issue_cmc_*()14:55
*** kgriffs|afk is now known as kgriffs14:55
aleebut rather continue to use issue_cert_request()14:55
aleewoodster_, there were two reasons I originally thought we should do that ..14:56
alee1. the outputs of those methods would be different as they would be handling cmc responses.  We've decided that would no longer happen.14:57
alee2. I wanted to solve the "out-of-date" plugin problem14:57
aleewhat I realized though is that having separate methods would not solve the out-of date plugin problem.14:58
aleewoodster_, so imagine that a year from now we decide we want to support ACME requests.14:59
woodster_alee that makes sense14:59
aleeand we have five plugins we know of (and any number of private plugins we don't know of)14:59
aleehow do we ensure that ACME requests do not get routed accidentally to a plugin that does not support them?15:00
alee(or that does not yet support them)15:00
*** zz_dimtruck is now known as dimtruck15:00
aleeone way is to have different methods -- as I described in the BP15:01
aleethen when we route the request, we would call a method which the plugin has not yet implemented -- and the default implementation would say "NotImplemented"15:01
aleethats not a very clean way of solving this though ..15:02
aleea better way is to beef up the supports() method.15:02
aleethat is -- instead of supports() returning true/false, it would return a list of methods that it does support.15:04
aleeso something like {"request_type": ["simple-cmc", "full-cmc", "stored-key", "custom"]}15:05
aleefor example ..15:05
aleethen when a plugin supports "acme", it will add it to the string returned by supports()15:05
aleewoodster_, what do you think?15:06
aleewoodster_, for backwards compatibility  - we can call the new method provides() ..15:08
aleewith a default implementation of "custom" ..15:08
*** lisaclark has joined #openstack-barbican15:10
woodster_alee: that makes sense. Are you fine with plugins having type logic then when they support more than one? Works for me, but I recall that being a concern15:12
aleewoodster_, type logic? -- meaning they have to do different things based on request_type?  I think thats inevitable.  I was concerned with requests going to plugins that did support the type.15:14
aleeand trusting the plugin to have an up-to-date supports() method15:14
aleewoodster_, the mechanism I descibe above forces the plugin to update its supports() method if it wants to get requests of a different type.15:15
woodster_Oh got it. I thought up front verification to see if a plugin supported a request was already planned though?15:16
aleewoodster_, yeah - we had just left that vague and up to the plugin though15:16
aleewoodster_, that is -- we said something like this ..15:17
aleeyour supports method should look like ---15:17
aleeif request_type == a, return true; if if b: return false; else return false15:18
aleethat would work because a new type "c" would return false15:18
aleebut - I think its poor design to specify the format of the plugin code.  Rather we should specify the interface (input/output)15:19
aleeand the interface should be -- supports() will return the list of supported methods .. and the plugin will be selected accordingly15:20
aleeif we end up thinking of how a plugin should implement a method, then its probably a good idea to implement that method in barbican-core15:20
aleewoodster_, so yeah - I think I'm going to add a provides() method and use that instead of supports() and have it return as above.15:22
aleewoodster_, unless you think I can reuse supports()?15:22
woodster_alee: that makes sense to me. So those choices should be enums. That's also a contract break unless we also check for Boolean15:23
aleewoodster_, well - its a contract break unless I use a new method (provides())15:24
aleeon the other hand -- very few plugins are out there right now15:24
*** alee has quit IRC15:25
*** alee has joined #openstack-barbican15:25
*** ayoung has quit IRC15:25
*** ayoung has joined #openstack-barbican15:25
aleeso if we want to break the contract, nows a good time.  especically as the supports() method really did not do much at this point in any case.15:25
alee(all existing plugins I think just return True)15:26
*** rellerreller has joined #openstack-barbican15:26
woodster_Supports also performs validation15:31
aleewoodster_, yes -- although noone quite knows what that means that now ..15:32
aleewoodster_, what kind of validation did you have in mind?15:32
aleewoodster_, I'm ok with using another method provides() if we think that supports() will do something else useful.  right now, I;m not sure what that is ..15:34
*** stanzi has joined #openstack-barbican15:35
*** Stanzi_ has joined #openstack-barbican15:35
aleewoodster_, for cases 1-3 , we will do a bunch of validation in pki-core15:35
aleecase 4 (custom) validation cannot be defintion be done in core -- but I would argue that its up to the plugin to do that validation in issue_cert_request() and then fail there.15:36
aleecertainly in  the custom case, it can't go anywhere else.15:37
aleesorry s/pki-core/barbican-core15:37
alee(dogtag is delivered in a pki-core package :))15:37
*** SheenaG1 has joined #openstack-barbican15:42
*** Stanzi_ has quit IRC15:42
*** stanzi has quit IRC15:42
*** Stanzi has joined #openstack-barbican15:42
*** stanzi_ has joined #openstack-barbican15:42
aleeredrobot, ping15:46
aleewoodster_, ?15:46
*** stanzi_ has quit IRC15:47
*** Stanzi has quit IRC15:47
*** SheenaG1 has quit IRC15:49
*** SheenaG1 has joined #openstack-barbican15:52
*** stanzi has joined #openstack-barbican15:55
*** Stanzi_ has joined #openstack-barbican15:55
*** Stanzi_ has quit IRC15:58
*** stanzi has quit IRC15:58
*** Stanzi has joined #openstack-barbican15:58
*** stanzi_ has joined #openstack-barbican15:58
*** Stanzi has quit IRC16:06
*** stanzi_ has quit IRC16:06
*** Stanzi has joined #openstack-barbican16:07
*** stanzi_ has joined #openstack-barbican16:07
*** kebray has joined #openstack-barbican16:08
*** stanzi_ has quit IRC16:11
*** Stanzi has quit IRC16:11
*** lisa2 has joined #openstack-barbican16:14
*** stanzi_ has joined #openstack-barbican16:17
*** Stanzi has joined #openstack-barbican16:17
*** lisa2 has quit IRC16:19
*** Stanzi has quit IRC16:24
*** stanzi_ has quit IRC16:24
*** Stanzi has joined #openstack-barbican16:24
*** stanzi_ has joined #openstack-barbican16:24
*** stanzi_ has quit IRC16:29
*** Stanzi has quit IRC16:29
*** Stanzi_ has joined #openstack-barbican16:36
*** stanzi has joined #openstack-barbican16:36
woodster_alee: sorry for the delay...I think we'll need to validate via plugin no matter what...even if the case 1-3 formats are correct, plugins still might take issue with the actual data provided in the call, and waiting until the worker processes pick that up would not be a great user experience.16:37
aleewoodster_, yeah - thats fine -- I started implementing with provides() in any case16:38
*** ryanpetrello has joined #openstack-barbican16:39
*** Stanzi_ has quit IRC16:42
*** stanzi has quit IRC16:42
*** stanzi has joined #openstack-barbican16:43
*** Stanzi_ has joined #openstack-barbican16:43
woodster_alee, so would the API sequence be like this: client requests cert of type X, barbican looks for plugins that have the type available in the provides() call, barbican core does first-order validation based on type, barbican calls the selected plugin's supports() method to validate, and finally barbican enqueues the cert order for worker processing.16:43
*** stanzi has quit IRC16:43
*** Stanzi_ has quit IRC16:43
*** david-lyle_afk is now known as david-lyle16:44
*** Stanzi has joined #openstack-barbican16:44
*** stanzi_ has joined #openstack-barbican16:44
*** jaosorior has joined #openstack-barbican16:44
aleewoodster_, yup - I'll post some code for get_plugin() in just a sec16:45
*** kgriffs is now known as kgriffs|afk16:45
woodster_alee: wonder what the performance of all that will be :)16:47
jaosorioralee: what's up? Working on something cool?16:47
aleewoodster_, pretty minimal I think16:47
aleejaosorior, working on first patches for cert api16:47
jaosoriorNiiiiice16:48
aleejaosorior, should have something for initial review today16:48
aleeie. framework (with lots of stuff to fill in)16:48
jaosoriorOk, lemme know :O16:48
*** lisaclark has quit IRC16:51
*** Stanzi has quit IRC16:55
*** stanzi_ has quit IRC16:55
*** stanzi has joined #openstack-barbican16:55
*** Stanzi_ has joined #openstack-barbican16:55
aleewoodster_, http://fpaste.org/160280/48931141/16:55
*** rm_work|away is now known as rm_work16:55
aleeredrobot, ?16:55
aleeredrobot, SheenaG1 : any deals on hotels for the mid cycle meetup?16:56
aleeI recall there was a racker rate for hotels in SA ..16:57
*** Stanzi_ has quit IRC17:00
*** stanzi has quit IRC17:00
*** paul_glass has joined #openstack-barbican17:06
*** kebray has quit IRC17:06
*** kebray has joined #openstack-barbican17:07
*** Stanzi_ has joined #openstack-barbican17:07
*** stanzi has joined #openstack-barbican17:07
*** Stanzi_ has quit IRC17:11
*** stanzi has quit IRC17:11
*** stanzi has joined #openstack-barbican17:12
*** Stanzi_ has joined #openstack-barbican17:12
*** kgriffs|afk is now known as kgriffs17:16
*** Stanzi_ has quit IRC17:16
*** stanzi has quit IRC17:16
*** rm_you|wtf has quit IRC17:29
*** rm_you|wtf has joined #openstack-barbican17:30
*** bdpayne has joined #openstack-barbican17:33
SheenaG1alee: I'll have to check, I'm not aware of any off the top of my head for Austin since we're a smaller presence there17:41
aleeSheenaG1, thanks - let me know what you find out.17:42
*** lisaclark has joined #openstack-barbican17:51
*** paul_glass has quit IRC17:53
*** rm_mobile has joined #openstack-barbican17:56
*** rm_mobile has quit IRC17:56
*** rm_mobile has joined #openstack-barbican17:56
*** lisaclark has quit IRC18:02
*** kebray has quit IRC18:03
*** jamielennox|away is now known as jamielennox18:08
greghaynesalee: Awesome (re: backscroll) :)18:12
greghaynesalee: this means the request_type can also be optional when plugins support the cmc request api by deault18:13
aleegreghaynes, yeah - I figured you'd like that :)18:13
greghaynesalee: I think im goingt to start work on barbican-client to support cmc requests very soo, fyi18:15
greghayness/soo/soon18:15
aleegreghaynes, well .. right now, the default is "custom" to maintain backward compatibility18:15
aleegreghaynes, awesome18:15
greghaynesYep, so if a plugins custom API is a strict superset of the cmc request API (which might be a good way to try and design them when possible) then the cmc api 'just works' as well18:16
aleegreghaynes, yes - if your plugin's custom api simply does cmc , then it just works18:20
greghaynesMight be a good thing to push for in new plugins :)18:21
*** rm_mobile has quit IRC18:28
*** lisaclark has joined #openstack-barbican18:30
*** gyee has joined #openstack-barbican18:31
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Support containers without a name  https://review.openstack.org/14218118:40
*** Stanzi_ has joined #openstack-barbican18:41
*** stanzi has joined #openstack-barbican18:41
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Support containers without a name  https://review.openstack.org/14218118:41
*** kgriffs is now known as kgriffs|afk18:45
*** dimtruck is now known as zz_dimtruck18:45
*** paul_glass has joined #openstack-barbican18:49
*** Stanzi_ has quit IRC18:50
*** stanzi has quit IRC18:50
*** Stanzi_ has joined #openstack-barbican18:50
*** stanzi has joined #openstack-barbican18:50
*** zz_dimtruck is now known as dimtruck18:52
*** Stanzi_ has quit IRC18:55
*** stanzi has quit IRC18:55
*** ametts has quit IRC18:56
*** lisa1 has joined #openstack-barbican18:57
*** Stanzi_ has joined #openstack-barbican18:57
*** stanzi has joined #openstack-barbican18:57
*** Stanzi_ has quit IRC18:59
*** stanzi has quit IRC18:59
*** stanzi_ has joined #openstack-barbican19:00
*** Stanzi has joined #openstack-barbican19:00
*** Stanzi has quit IRC19:00
*** stanzi_ has quit IRC19:00
*** lisa1 has quit IRC19:01
*** Stanzi_ has joined #openstack-barbican19:01
*** stanzi has joined #openstack-barbican19:01
*** kgriffs|afk is now known as kgriffs19:05
*** Stanzi_ has quit IRC19:06
*** stanzi has quit IRC19:06
openstackgerritMerged openstack/barbican: Actually run type order creation test  https://review.openstack.org/14197419:19
*** ryanpetrello_ has joined #openstack-barbican19:30
*** ryanpetrello has quit IRC19:31
*** ryanpetrello_ is now known as ryanpetrello19:31
*** kgriffs is now known as kgriffs|afk19:45
thiagopredrobot: I was reading about the need for Barbican to listen Keystone's notifications in order to delete secrets when the tenant is deleted19:46
thiagopredrobot: I couldn't find anything related to implementation of this, although the spec is approved19:46
redrobotthiagop the BP has been implemented https://blueprints.launchpad.net/barbican/+spec/consume-keystone-events19:47
redrobotthiagop it will be released this week as part of the Kilo 1 Milestone19:47
redrobotthiagop https://launchpad.net/barbican/+milestone/kilo-119:48
thiagopredrobot: nice, but once the secret-tenant association is removed, is there a plan of how will Barbican handle it?19:49
*** Stanzi_ has joined #openstack-barbican19:50
*** stanzi has joined #openstack-barbican19:50
*** lisa1 has joined #openstack-barbican19:51
*** Stanzi__ has joined #openstack-barbican19:51
*** stanzi___ has joined #openstack-barbican19:51
redrobotthiagop I can't recall the spec mentioning it specifically...  The spec is just to remove the table though, the secret->tenant association will still be there, it just won't have a separate table for it.19:52
thiagopredrobot: I see...19:52
*** kebray has joined #openstack-barbican19:52
thiagopredrobot: another tricky question: I found a lot of sources saying that Barbican has a problem with PKI tokens on Keystone. Is it yet valid? What about PKIZ tokens?19:53
*** Stanzi_ has quit IRC19:54
*** stanzi has quit IRC19:54
redrobotthiagop I don't think Barbican itself has a problem with them.  PKI tokens are problematic because of their size, which tends to break many web servers.19:54
redrobotthiagop we defer token processing to the keystone middleware, so if the webserver and middleware are configured correctly, PKI tokens should wokr.19:55
*** lisa1 has quit IRC19:56
redrobotthiagop *work19:56
*** stanzi___ has quit IRC19:56
*** stanzi_ has joined #openstack-barbican19:56
*** Stanzi has joined #openstack-barbican19:56
thiagopredrobot: Yeah, I was working on a Horizon stuff to bypass the token size problem. It was overflowing the session max size...19:56
*** Stanzi__ has quit IRC19:57
*** paul_glass has quit IRC20:00
*** Stanzi has quit IRC20:01
*** stanzi_ has quit IRC20:01
*** Stanzi_ has joined #openstack-barbican20:02
*** stanzi has joined #openstack-barbican20:02
*** lisaclark has quit IRC20:03
*** rellerreller has quit IRC20:03
*** lisaclark has joined #openstack-barbican20:06
*** lisaclark has quit IRC20:06
*** kgriffs|afk is now known as kgriffs20:07
*** paul_glass has joined #openstack-barbican20:09
*** lisaclark has joined #openstack-barbican20:10
openstackgerritAde Lee proposed openstack/barbican: Initial commit for certificate-order-api  https://review.openstack.org/14220920:16
*** lisaclark has quit IRC20:19
*** lisaclark has joined #openstack-barbican20:21
*** dstufft has quit IRC20:27
openstackgerritAde Lee proposed openstack/barbican: Second commit for Common Cert API  https://review.openstack.org/14221220:27
aleewoodster_, greghaynes , reaperhulk , rm_work , chellygel - ^^ let me know what ya'll think so far ..20:30
*** kgriffs is now known as kgriffs|afk20:37
*** Stanzi_ has quit IRC20:44
*** stanzi has quit IRC20:44
*** stanzi has joined #openstack-barbican20:45
*** Stanzi_ has joined #openstack-barbican20:45
*** Stanzi_ has quit IRC20:49
*** stanzi has quit IRC20:49
*** lisaclark has quit IRC20:51
*** rellerreller has joined #openstack-barbican20:53
*** kgriffs|afk is now known as kgriffs20:57
*** dstufft has joined #openstack-barbican21:01
rm_workalee: looking in a moment :)21:03
aleethanks21:03
rm_workwe're talking about that (kinda) at Octavia hackathon21:03
aleecool21:03
*** stanzi has joined #openstack-barbican21:04
*** Stanzi_ has joined #openstack-barbican21:04
*** kgriffs is now known as kgriffs|afk21:07
*** Stanzi_ has quit IRC21:07
*** stanzi has quit IRC21:07
*** stanzi has joined #openstack-barbican21:08
*** Stanzi_ has joined #openstack-barbican21:08
*** mikedillion has joined #openstack-barbican21:27
*** mikedillion has quit IRC21:27
greghaynesalee: Are you going to update the spec as well?21:29
aleegreghaynes, yes - once we get these commits in.21:30
aleegreghaynes, no point in updating until we get this all decided.  Its a lot easier how the spec will work out once we actually have some code.21:31
*** lisaclark has joined #openstack-barbican21:32
greghaynesheh, yea, theres a real chicken and the egg issue that goes on with specs. This is why I always try to push for leaving out decision making where we dont have to21:32
greghaynesin tripleo we tend to get a super minimal spec out, write some code, add to spec, etx21:32
greghayness/etx/etc21:32
*** paul_glass has quit IRC21:34
*** bdpayne has quit IRC21:34
rellerrellerwoodster_ I commented on your comments on the content-types etherpad21:37
*** paul_glass1 has joined #openstack-barbican21:39
aleegreghaynes, part of the problem is my tendency to write very detailed specs.  that said, if the specs are detailed - deviations from the spec tend to be pretty small.21:43
*** paul_glass1 has quit IRC21:47
*** paul_glass has joined #openstack-barbican21:48
*** paul_glass has quit IRC21:52
*** Stanzi_ has quit IRC21:58
*** stanzi has quit IRC21:58
*** Stanzi has joined #openstack-barbican21:59
*** stanzi_ has joined #openstack-barbican21:59
jaosorioranybody familiar with stevedore?22:02
*** stanzi_ has quit IRC22:03
*** Stanzi has quit IRC22:03
*** ayoung has quit IRC22:04
aleerellerreller, I'll finish commenting later tonight22:05
*** ametts has joined #openstack-barbican22:08
*** SheenaG1 has quit IRC22:08
*** dimtruck is now known as zz_dimtruck22:10
*** kebray has quit IRC22:11
*** alee has quit IRC22:13
*** kgriffs|afk is now known as kgriffs22:16
rellerrelleralee thanks22:17
rellerrellerI'm trying to think if 'password' should be a new secret type. I lean toward no, but think about that while you are reading it.22:17
*** paul_glass has joined #openstack-barbican22:19
*** lisaclark has quit IRC22:21
*** lisa1 has joined #openstack-barbican22:31
*** lisa1 has quit IRC22:35
openstackgerritMerged openstack/barbican: Support containers without a name  https://review.openstack.org/14218122:35
woodster_jaosorior, are you still there?22:44
jaosorioryup22:45
jaosoriorwhattup?22:45
woodster_jaosorior, did you figure out stevedore then?22:49
jaosoriormore or less22:50
jaosoriorI haven't figured out a way for it to actually give a None object instead of a valid plugin22:51
jaosoriorbut I think that would be a really obscure corner case22:51
jaosoriorthis question was related to this CR: https://review.openstack.org/#/c/141963/22:51
*** zz_dimtruck is now known as dimtruck22:57
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Use keystone v3 credentials for functional tests  https://review.openstack.org/14225423:04
*** rellerreller has quit IRC23:11
openstackgerritgreghaynes proposed openstack/barbican: Create snakeoil certificate plugin  https://review.openstack.org/14057523:22
*** bdpayne has joined #openstack-barbican23:23
*** lisa1 has joined #openstack-barbican23:25
*** paul_glass has quit IRC23:25
openstackgerritgreghaynes proposed openstack/barbican-specs: Snakeoil CA  https://review.openstack.org/14198123:26
greghayneswoodster_: responded to your comments and uploaded new version ^23:27
greghaynesre: file locking23:27
*** lisa1 has quit IRC23:30
*** kgriffs is now known as kgriffs|afk23:32
*** dimtruck is now known as zz_dimtruck23:34
*** alee has joined #openstack-barbican23:34
*** zz_dimtruck is now known as dimtruck23:41
*** lisaclark has joined #openstack-barbican23:43
*** lisaclark has quit IRC23:51
*** dimtruck is now known as zz_dimtruck23:53
« Monday, 2014-12-15 Index Wednesday, 2014-12-17 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!