Wednesday, 2015-06-24

« Tuesday, 2015-06-23 Index Thursday, 2015-06-25 »
*** arunkant__ has joined #openstack-barbican00:11
*** arunkant_ has quit IRC00:14
*** darrenmoffat has quit IRC00:28
*** darrenmoffat has joined #openstack-barbican00:28
*** kfarr has quit IRC01:25
*** arunkant_ has joined #openstack-barbican01:48
*** arunkant__ has quit IRC01:51
*** arunkant has joined #openstack-barbican01:52
openstackgerritMerged openstack/barbican: Make db-manage script use same config file as barbican  https://review.openstack.org/19466501:54
*** arunkant_ has quit IRC01:55
*** arunkant_ has joined #openstack-barbican01:56
*** arunkant has quit IRC01:59
*** arunkant__ has joined #openstack-barbican02:05
*** arunkant_ has quit IRC02:08
*** zz_dimtruck is now known as dimtruck02:12
*** kebray_ has joined #openstack-barbican02:15
*** kebray has quit IRC02:18
*** nkinder has joined #openstack-barbican02:18
*** nkinder has quit IRC02:39
*** nkinder has joined #openstack-barbican02:40
*** woodster_ has quit IRC02:51
*** nkinder has quit IRC02:52
*** nkinder has joined #openstack-barbican02:57
*** chlong has quit IRC02:57
*** chlong has joined #openstack-barbican02:58
*** nkinder has quit IRC03:06
*** nkinder has joined #openstack-barbican03:06
*** tkelsey has joined #openstack-barbican03:08
*** tkelsey has quit IRC03:12
*** dave-mccowan has quit IRC03:31
*** dave-mccowan has joined #openstack-barbican03:34
*** dave-mccowan has quit IRC03:52
*** dimtruck is now known as zz_dimtruck04:02
*** arunkant_ has joined #openstack-barbican04:20
*** arunkant__ has quit IRC04:24
*** kebray_ has quit IRC05:09
*** shohel has joined #openstack-barbican06:02
*** shohel has quit IRC06:06
*** shohel has joined #openstack-barbican06:20
*** kfarr has joined #openstack-barbican06:40
*** kfarr has quit IRC06:48
*** chlong has quit IRC08:01
*** openstack has quit IRC08:25
*** openstack has joined #openstack-barbican08:25
*** shohel has quit IRC08:45
zigoCan barbican works with MySQL?09:22
zigoI can't get it to do barbican-db-manage upgrade ...09:22
zigohockeynut: ^09:28
*** tkelsey has quit IRC10:30
*** arunkant__ has joined #openstack-barbican10:44
*** arunkant_ has quit IRC10:48
*** arunkant_ has joined #openstack-barbican10:58
*** arunkant__ has quit IRC11:02
*** jaosorior has joined #openstack-barbican11:15
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Remove ProjectSecret table-related code  https://review.openstack.org/19428311:22
*** SheenaG has joined #openstack-barbican11:51
*** dave-mccowan has joined #openstack-barbican12:26
openstackgerritJuan Antonio Osorio Robles proposed openstack/barbican: Remove ProjectSecret table-related code  https://review.openstack.org/19428312:55
jaosoriorzigo: How did the packetization go?12:58
*** nkinder has quit IRC13:06
*** SheenaG has left #openstack-barbican13:10
*** dave-mccowan has quit IRC13:35
*** dave-mccowan has joined #openstack-barbican13:51
*** dave-mccowan has quit IRC13:56
*** SheenaG has joined #openstack-barbican14:03
*** pglass has joined #openstack-barbican14:09
*** dave-mccowan has joined #openstack-barbican14:09
*** zz_dimtruck is now known as dimtruck14:10
*** ccneill_ has joined #openstack-barbican14:10
*** ccneill_ has quit IRC14:15
*** Kevin_Bishop has joined #openstack-barbican14:24
*** pglass has quit IRC14:32
*** ccneill_ has joined #openstack-barbican14:34
*** pglass has joined #openstack-barbican14:34
*** silos has joined #openstack-barbican14:34
*** claudiub has joined #openstack-barbican14:35
openstackgerritOpenStack Proposal Bot proposed openstack/barbican: Updated from global requirements  https://review.openstack.org/19483014:37
*** ccneill_ has quit IRC14:41
redrobotzigo we use sqlachemy, so in theory it should work with MySQL.14:58
redrobotzigo at Rackspace we do all our testing/deployment with PostgreSQL, though.14:58
zigoredrobot: http://paste.debian.net/260165/14:59
jaosoriorzigo, did you find an issue with MySQL?14:59
zigojaosorior: I believe so, I can't do a db-sync.14:59
jaosoriorzigo: damn... I use postgres too... uhm... redrobot, do you remember if someone had been testing with MySQL? I remember there was someone but not sure who it was15:00
redrobotjaosorior was it arunkant_ maybe?15:00
zigojaosorior: Also, your patch didn't help, I have to put a --dburl param.15:00
redrobotzigo so elmiko did a ton of work to get the Kilo release to work with MySQL before it went out.15:01
jaosoriorzigo: was sq_connection defined in the configuration?15:01
elmikohi15:01
redrobotzigo maybe a permissions issue?15:01
zigoredrobot: It wouldn't be this kind of trace.15:01
redrobotelmiko have you seen this before http://paste.debian.net/260165/ ?15:02
* elmiko looks15:02
jaosoriorzigo: But anyway, I could also upload a patch where you explicitly give it the configuration file.15:02
zigo# cat /etc/barbican/barbican-api.conf | grep sql_connection15:02
zigosql_connection = mysql://barbican-common:XXXXXX@localhost/barbicandb15:02
zigoSo it's set ...15:02
elmikothat looks vaguely reminiscent  of errors i was seeing15:03
jaosoriorzigo, do you have a public repo where you have your debian packaging rules and such?15:03
elmikozigo: is it true mysql or mariadb?15:03
zigoelmiko: True MySQL.15:03
elmikok15:03
zigojaosorior: Vcs-Browser: http://anonscm.debian.org/gitweb/?p=openstack/barbican.git;a=summary15:03
zigoVcs-Git: git://anonscm.debian.org/openstack/barbican.git15:03
elmikothat is similar to errors i was getting, but not the same. usually the errors i got had a more definitive error condition.15:04
zigojaosorior: If you run Sid, you can do: debcheckout -a --git-track='*' barbican15:04
openstackgerritChristopher Solis proposed openstack/barbican-specs: Add spec for multiple-kmip-servers  https://review.openstack.org/19429815:05
jaosoriorzigo: I see why it didn't work15:07
zigoAh?15:07
jaosoriorthis commit was not in kilo https://review.openstack.org/#/c/187297/15:08
jaosoriorand that is needed to get the configurations we need15:09
jaosoriorinstead, there are some helper functions in that module http://anonscm.debian.org/cgit/openstack/barbican.git/tree/barbican/common/config.py15:09
jaosoriorSo there are two options15:09
jaosorioreither you could try to backport that commit to your branch15:09
jaosorioror I could upload a patch that enables the db-manage script to take a config-file as a parameter15:10
jaosoriorwhat do you prefer?15:10
*** nkinder has joined #openstack-barbican15:10
jaosoriorso, zigo, any preference?15:11
zigojaosorior: So, i should get this commit and try again?15:13
jaosoriorzigo: if it's straight forward to backport that commit, then I really think that commit will work15:13
zigojaosorior: Ok, trying then.15:13
zigojaosorior: No, it doesn't apply on master.15:14
zigoOn kilo, sorry.15:14
zigojaosorior: http://paste.debian.net/260167/15:15
jaosoriorzigo: yeah... thought it could be a bit problematic15:15
zigoIt's going to take me some time to backport it...15:16
jaosoriorzigo: So now there are other two options: I could try to help out on your branch, and upload a fix there. Or I could do something on our master branch15:16
zigoI usually don't package master branch stuff.15:17
zigoI'd very much prefer a fix for kilo.15:17
jaosoriorzigo: Well, you could file a bug and I could fix it on kilo/stable15:17
zigoOk.15:18
zigoI'll first try to do the backport of this patch.15:18
zigoThough I fail to understand how it could fix alembic migrations.15:19
jaosoriorzigo: I'm also puzzled by that O_o...and yeah, that HAS to get fixed15:20
jaosoriorredrobot: any idea on who we could ask for help regarding that?15:21
zigoIt doesn't seem to touch any alembic stuff at all, and only deals with config stuff ...15:21
zigojaosorior: Isn't there's something to fix in the Alembic migration code rather than this?15:21
jaosoriorzigo: The patch I was talking about was to fix the issue you had with reading the config file. That's why I said that patch would actually make the patch I submitted work for you15:22
jaosoriorzigo: Other than that, I haven't really looked that deep into the error you're seeing, would need to install MySQL in my machine to be able to test that15:22
zigojaosorior: I can somehow deal with the config stuff later on, though I think it'd be nice to get the alembic migration code to work with MySQL first.15:23
zigojaosorior: If the patch fixes reading from barbican-api.conf, then I'll backport it, yes.15:23
zigo(it doesn't seem hard to do that...)15:23
zigoBut it's uselss if I don't have a db ...15:23
chellygelhockeynut, saw your message, ty15:24
elmikoredrobot: man, you've really got your finger on the pulse ;)15:24
zigojaosorior: Does Barbican work with SQLite ?15:24
redrobotelmiko I just finally figured out how to get my irc client to ping me when anyone mentions barbican lol15:24
elmikoha!15:24
hockeynutchellygel np, working on a CR to get the containers to handle filtering - then will look at how to use orders meta to filter15:25
jaosoriorzigo: Well, last time I checked you couldn't really do the migration scripts on SQLite, but it does work if you just run the application15:25
zigojaosorior: Did you test with SQLA 1.x ?15:25
zigoIt fixes lots of stuff wrt SQLite.15:25
jaosoriorzigo: I'm using Postgres15:25
jaosoriorbut like redrobot said, I think arunkant_ was using MySQL. and I'm not sure what dave-mccowan is using O_o15:26
zigoThe issue with /usr/lib/python2.7/dist-packages/barbican/model/migration/alembic_migrations/versions/13d127569afa_create_secret_store_metadata_table.py seems to be sa.ForeignKeyConstraint(['secret_id'], ['secrets.id'],),15:26
elmikoi thought sqlite was being discouraged upstream by the openstack tc?15:26
zigoThen there's another one after that...15:26
* elmiko hunts for link15:27
zigo/usr/lib/python2.7/dist-packages/barbican/model/migration/alembic_migrations/versions/1e86c18af2dd_add_new_columns_type_meta_containerid.py15:27
zigoProgrammingError: (ProgrammingError) (1146, "Table 'barbicandb.orders' doesn't exist") 'ALTER TABLE orders ADD COLUMN container_id VARCHAR(36)' ()15:27
zigojaosorior: Are you saying that Barbican can work without any db?15:27
jaosoriorzigo: I don't know where I implied that15:28
jaosoriorzigo: but no15:28
zigojaosorior: You were saying "just run the application" (which was, without running the dbsync).15:29
jaosoriorthe application itself will fill the database15:29
*** nkinder has quit IRC15:30
jaosoriorzigo: https://github.com/openstack/barbican/blob/master/barbican/model/repositories.py#L18715:30
elmikozigo: re: sqlite migrations, have you seen this https://wiki.openstack.org/wiki/OpenStack_and_SQLAlchemy#SQLite_Support15:30
zigoAh...15:30
zigoelmiko: That's wrong since the last version of SQLA 1.015:31
zigoelmiko: SQLA now supports ALTER tables for SQLite.15:31
elmikozigo: ah ok, my bad15:31
jaosoriorzigo: So if it's a first time installation then there is no need to run upgrade. But if you're updating, then that's needed15:31
jaosoriorI gotta go, though I'll be back in some hours15:33
zigoOk, I'll try some more stuff then.15:35
*** diazjf has joined #openstack-barbican15:44
*** kfarr has joined #openstack-barbican16:04
*** kfarr1 has joined #openstack-barbican16:09
*** kfarr has quit IRC16:10
*** kfarr1 has quit IRC16:15
*** kfarr has joined #openstack-barbican16:16
*** pglass has quit IRC16:16
*** pglass has joined #openstack-barbican16:16
*** kebray has joined #openstack-barbican16:17
kfox1111does barbican have a hard spec freeze like nova does?16:21
zigoWhat's the use of barbican-keystone-listener ?16:22
kfox1111I believe its to listen for project/user deletes.16:23
*** kfarr has quit IRC16:25
zigokfox1111: So it listen on rabbitmq?16:26
kfox1111I believe so.16:26
redrobotkfox1111 yes, hard spec freeze is liberty-216:35
redrobotzigo kfox1111  that is correct.  we listen for project delete events to clean up the db16:35
kfox1111zigo: if setting it up, be careful if you have ceilometer enabled. you have to use a seperate queue for barbican.16:37
kfox1111designate has the same problem. :/16:37
kfox1111redrobot: ok, thanks.16:37
*** kebray has quit IRC16:38
zigoredrobot: kfox1111: I get barbican-keystone-listener dying somehow, I'm investigating it.16:39
zigoThough everything else seems working (ie barbican-worker and the api thourgh uwsgi are working).16:40
*** kfarr has joined #openstack-barbican16:40
jkfAfter looking through my scrollback from earlier this morning, I did a successful alembic migration on mariadb from stable/juno to stable/kilo, although I did have other problems afterward.16:41
*** dontalton has joined #openstack-barbican16:52
*** kebray has joined #openstack-barbican16:53
*** gyee_ has joined #openstack-barbican16:55
*** kebray has quit IRC17:04
*** openstackgerrit has quit IRC17:38
*** openstackgerrit has joined #openstack-barbican17:38
*** diazjf has quit IRC17:42
*** jaosorior has quit IRC18:05
*** SheenaG has quit IRC18:07
*** xaeth_afk is now known as xaeth18:13
*** diazjf has joined #openstack-barbican18:14
*** jaosorior has joined #openstack-barbican18:16
*** kebray has joined #openstack-barbican18:28
*** xaeth is now known as xaeth_afk18:28
*** diazjf has quit IRC18:28
*** diazjf has joined #openstack-barbican18:29
*** kebray has quit IRC18:31
openstackgerritDouglas Mendizábal proposed openstack/barbican: Remove left over reference to admin endpoint  https://review.openstack.org/19525118:32
silosWere there changes to the PyKMIP sample KMIP server recently? I pulled down the latest code and can't seem to run the server now.18:32
redrobotsilos afaik, the server part of pykmip is yet to be written.18:32
redrobotsilos but kfarr would know for sure18:32
silosah k. thanks redrobot.18:33
jaosoriorredrobot18:33
kfarrredrobot, a basic, basic server is written18:33
kfarrsilos, I was watching the merge requests this morning and I think there was a bug18:33
jaosoriorgot a workflow for this one? https://review.openstack.org/#/c/178601/18:33
kfarrand it might be fixed now18:33
kfarrtry pulling again?18:33
siloskfarr: sure. I'll try right now.18:33
redrobotjaosorior I was just about to ping people about that18:34
redrobotjaosorior trying to get \some\ BPs landed for liberty-118:34
redrobotjaosorior release manager wanted bps, and I figured this one would be close.18:34
jaosoriorredrobot: Basically this commit lands a BP https://review.openstack.org/#/c/194283/18:34
redrobotjaosorior maybe kfarr can +W since she's already got a +2 there?18:34
redrobotjaosorior k, I'll review that one and poke some peeps for more reviews18:35
jaosoriorwoodster is probably interested in that one18:35
jaosoriorbut yeah, it's the last commit to finish that BP18:36
siloskfarr: I think I found the sample server but it doesn't seem to be pulling from the kmipconfig.ini file. It just prints out, "Starting Kmip Server"18:36
jaosoriorkfarr: Workflow for this? https://review.openstack.org/#/c/178601/ :D18:36
kfox1111any more review love for https://review.openstack.org/#/c/190404 ? :)18:36
kfarrjoasorior one sec!18:36
kfarrsilos, ah ok, what is it you expect it should be doing?18:37
*** stanzi has joined #openstack-barbican18:38
siloskfarr: When I ran it a few weeks ago it was pulling the host, port, and all specs from a kmipconfig.ini file but now it doesn't seem to be doing that. Just wondering if it's suppose to be doing that or that was gotten rid of.18:39
*** crc32 has joined #openstack-barbican18:44
jaosoriorkfarr: thanks for the workflow :D18:45
jaosoriorkfox1111: will give that spec another read tomorrow18:46
diazjfkfox1111, just added a comment18:53
diazjfjust asked a question on the paths used in the API18:53
*** stanzi has quit IRC18:53
*** stanzi has joined #openstack-barbican18:54
kfox1111jaosorior: thanks.18:54
kfox1111diazjf: thanks. I'll take a look. :)18:54
*** SheenaG has joined #openstack-barbican18:58
*** stanzi has quit IRC18:59
*** nkinder has joined #openstack-barbican19:01
diazjfkfox1111, no prob :)19:03
*** Kevin_Bishop has quit IRC19:04
redrobotkfarr he what was that hotel that is being built that you mentioned will be ready for the mid-cycle?19:04
openstackgerritMerged openstack/barbican: Display all versions info in versions controller  https://review.openstack.org/17860119:07
jaosorioryay! :D19:08
jaosoriorNow heads up people, barbican-api-paste.ini changed with that commit19:09
* redrobot makes a note of the ini change19:09
siloskfarr: Think I found the problem. Looks like there was an update to server.py and some stuff got shuffled around. THe server still works just not printing out what it use to.19:16
*** Kevin_Bishop has joined #openstack-barbican19:19
*** nkinder has quit IRC19:24
*** stanzi has joined #openstack-barbican19:24
kfox1111ah... finally have a meeting with the pnnl cert maintainers to figure out how to make progress on getting certs for designate managed subdomains.19:27
kfox1111should come up with some interesting requirements for barbican/designate integration. :)19:27
redrobotjvrbanac got a sec to review https://review.openstack.org/#/c/194283/419:28
redrobothockeynut how about you?  time to review https://review.openstack.org/#/c/194283/4 ?19:29
*** stanzi has quit IRC19:33
*** diazjf has quit IRC19:36
kfarrredrobot: http://homewoodsuites3.hilton.com/en/hotels/maryland/homewood-suites-by-hilton-columbia-laurel-BALCMHW/index.html19:37
redrobotkfarr awesome!  Thanks!19:37
kfarrsilos, glad you got it working!  Sorry, I have not actually tried running it in awhile19:37
kfarrcuz we were mostly testing against hardward19:38
kfarr* hardware19:38
kfox1111redrobot: is there a previous migration script that migrated the data out of the table?19:38
kfox1111cause it just drops the table in that review.19:38
redrobotkfox1111 yeah http://git.openstack.org/cgit/openstack/barbican/commit/barbican?id=131c34e8824e3cecee6a5759c1f5f31de582c47119:39
redrobotkfox1111 it's CR # 3/319:39
kfox1111ah. I see. ok. :)19:39
kfox1111looks good to me. :)19:40
redrobotkfox1111 thanks for the review! ...  I'll get to yours eventually.  Just trying to get this one landed so we can cut liberty-119:40
kfox1111np. :)19:42
kfox1111yeah, no rush on mine. so long as its done sometime in liberty. :)19:43
kfox1111I've still got my fingers crossed for the instance user thing in liberty. I'm getting pretty worried about it though. :/19:43
kfox1111diazjf: thanks for the review. Question. So, I was told there would only ever be one barbican api hostname. so why use the whole secret_ref instead of just the uuid?19:47
redrobotkfox1111 premature optimization for federation use cases19:47
redrobotkfox1111 eventually we'll support some sort of federation story19:48
redrobotkfox1111 so that hybrid cloud users can stand up a barbican inside their perimeter and federate secrets out to the public barbican.19:48
kfox1111but you should contact the api endpoint for that secret rather then pass the whole url to the api for a server not hosting the secret?19:49
kfox1111or is this just a way for the client to store the uuid and the server endpoint info together in one field and the clients expected to be able to parse it?19:50
redrobotkfox1111 from the point of view of a client that does not know where a secret is stored, the full ref is necessary.19:50
*** diazjf has joined #openstack-barbican19:50
rm_workkfox1111: theoretically you could have multiple barbican deployments in your cloud too, i think?19:50
rm_workit seems like that would be totally possible19:50
kfox1111yeah, but usually you use regions to handle that.19:51
rm_worki mean like, we could have our own for neutron19:51
rm_workif we wanted19:51
kfox1111yeah, the region is the contstruct in keystone that lets you have multiple instances of a service. one per region.19:51
rm_workright but we could have two or three per region19:52
diazjfkfox1111, sorry got disconnected, what were your questions19:52
kfox1111rm_work: I don't think keystone supports that.19:52
rm_workit doesn19:52
rm_workt19:52
rm_workwhich is why full-ref :P19:52
kfox1111you usually make your single endpoint scalable.19:52
rm_workyeah, but it is possible you could have requirements like, using a different kind of HSM19:53
rm_workor something like that19:53
rm_worki don't know, i'm arguing devil's advocate here19:53
kfox1111so, take cinder with the lvm driver as an example.19:53
kfox1111you may have 4 storage bricks each with lvm.19:53
kfox1111one cinder api in front. the user only ever see's a uuid.19:53
kfox1111the api picks which actual storage brick the requests for a given uuid are bound to when its created.19:54
kfox1111it routes requests to it at the api level. the user never knows if there is just 1, or 100.19:54
kfox1111same with nova.19:54
rm_worki could see it being cross-region though, too19:54
rm_workwhy not allow someone to use their barbican secrets from one region, in an app in another19:55
openstackgerritDouglas Mendizábal proposed openstack/barbican: Remove left over reference to admin endpoint  https://review.openstack.org/19525119:55
kfox1111You can, so long as you know the endpoint to send it too.19:55
rm_workour service doesn't actually care19:55
rm_workyeah, but that'd require the full-ref19:55
kfox1111but none of the UI's do cross region out of the box.19:55
rm_workbecause how would the service know which region to look in based on the UUID>19:55
kfox1111it requires a full-ref, or a uuid and an endpoint.19:55
rm_workwhich is essentially the same thing19:56
rm_worksince the endpoint would have to be provided by the user19:56
rm_workand the full-ref is endpoint+uuid19:56
kfox1111almost. the main difference is, in the full-ref case,19:56
kfox1111the identifier is something you expect the user to be able to understand the contents of and use it in some way.19:56
kfox1111where the uuid is an opaque structure the user isn't expected to understand.19:56
kfox1111its just odly inconsistent with all the other openstack api's.19:57
kfox1111I can see why you want it,19:57
kfox1111but if you can't ever give a full-ref to an api server that the front part of the full-ref specifies,19:58
kfox1111then it would be nice if you could return to it just the uuid as well as the full ref.19:58
kfox1111since its cheeper to store just the uuid.19:58
kfox1111so, for example the heat barbican secret resource coudl store just the uuid.19:59
kfox1111darn. gota meeting to go to. bbiab.19:59
rm_workhmm19:59
rm_workk19:59
*** Kevin_Bishop has quit IRC20:19
*** Kevin_Bishop has joined #openstack-barbican20:24
openstackgerritOpenStack Proposal Bot proposed openstack/barbican: Updated from global requirements  https://review.openstack.org/19483020:35
*** diazjf has quit IRC20:40
openstackgerritMerged openstack/barbican: Remove ProjectSecret table-related code  https://review.openstack.org/19428320:42
*** kfarr has quit IRC21:03
*** SheenaG has quit IRC21:06
*** diazjf has joined #openstack-barbican21:10
*** dave-mccowan has quit IRC21:12
*** SheenaG has joined #openstack-barbican21:19
*** morganfainberg is now known as ayspryn21:24
*** ayspryn is now known as morganfainberg21:24
*** jaosorior has quit IRC21:25
*** silos has left #openstack-barbican21:26
diazjfredrobot, I would like to know more about federated barbican. Any specs on this?21:33
*** dave-mccowan has joined #openstack-barbican21:36
*** SheenaG has quit IRC21:43
openstackgerritChelsea Winfree proposed openstack/barbican: Add retry server and functional tests to DevStack  https://review.openstack.org/17089621:45
redrobotdiazjf nope.  just a blip on the roadmap.21:46
diazjfredrobot, thanks. I'm interested to see these upcoming items :)21:50
*** diazjf has left #openstack-barbican21:56
*** pglass has quit IRC22:00
*** Kevin_Bishop has quit IRC22:23
*** SheenaG has joined #openstack-barbican22:29
openstackgerritOpenStack Proposal Bot proposed openstack/barbican: Updated from global requirements  https://review.openstack.org/19483022:39
openstackgerritMerged openstack/barbican: Change naming convention for Barbican config files  https://review.openstack.org/18943422:42
kfox1111back. finally.22:46
kfox1111so... one of the main options the cert folks said is we can get an ad account and use certutil to manage certs with the microsoft ca.22:47
kfox1111so, we're probably going to want a way to hook that into barbican+designate such that if you have the designate domain foo.cloud.pnnl.gov, your allowed to create server certs for x.foo.cloud.pnnl.gov22:48
*** arunkant_ has quit IRC22:48
*** dimtruck is now known as zz_dimtruck22:52
*** arunkant has joined #openstack-barbican22:56
*** crc32 has quit IRC23:15
*** chlong has joined #openstack-barbican23:18
*** stanzi has joined #openstack-barbican23:22
*** stanzi has quit IRC23:26
*** crc32 has joined #openstack-barbican23:33
*** crc32 has quit IRC23:48
« Tuesday, 2015-06-23 Index Thursday, 2015-06-25 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!