| *** zhurong has joined #openstack-barbican | 00:01 | |
| *** zhurong has quit IRC | 00:20 | |
| *** openstackgerrit has joined #openstack-barbican | 00:49 | |
| openstackgerrit | OpenStack Proposal Bot proposed openstack/barbican master: Updated from global requirements https://review.openstack.org/537027 | 00:49 |
|---|---|---|
| openstackgerrit | OpenStack Proposal Bot proposed openstack/castellan master: Updated from global requirements https://review.openstack.org/537030 | 00:49 |
| *** hieulq_ has quit IRC | 01:42 | |
| *** liujiong has joined #openstack-barbican | 01:55 | |
| *** hieulq_ has joined #openstack-barbican | 01:59 | |
| openstackgerrit | Jeremy Liu proposed openstack/barbican-tempest-plugin master: Remove duplicate configuration https://review.openstack.org/537223 | 02:35 |
| *** haint93 has joined #openstack-barbican | 02:55 | |
| *** haint_ has quit IRC | 02:58 | |
| *** annp has joined #openstack-barbican | 03:48 | |
| *** dave-mccowan has quit IRC | 04:27 | |
| *** annp has quit IRC | 04:33 | |
| *** annp has joined #openstack-barbican | 04:34 | |
| *** dpawar has joined #openstack-barbican | 05:31 | |
| *** annp has quit IRC | 07:10 | |
| *** pcaruana has joined #openstack-barbican | 07:10 | |
| *** pcaruana has quit IRC | 07:21 | |
| *** pcaruana has joined #openstack-barbican | 07:22 | |
| openstackgerrit | Nam Nguyen Hoai proposed openstack/barbican master: Create multiple phases to upgrade Barbican database https://review.openstack.org/473658 | 07:56 |
| *** pcaruana has quit IRC | 08:01 | |
| *** l_sekalski_ has joined #openstack-barbican | 08:22 | |
| l_sekalski_ | Hi guys. Got a question regarding RBAC defined in Barbicans policy.json. How come that a User with creator Role can not delete Secret Order that he/she issued? What is the motivation behind it? | 08:27 |
| openstackgerrit | Nam Nguyen Hoai proposed openstack/barbican master: [WIP] Add RPC version for rolling upgrade https://review.openstack.org/466247 | 08:28 |
| *** pcaruana has joined #openstack-barbican | 08:39 | |
| l_sekalski_ | Hi guys. Got a question regarding RBAC defined in Barbicans policy.json. How come that a User with creator Role can not delete Secret Order that he/she issued? What is the motivation behind it? | 09:01 |
| openstackgerrit | Jeremy Liu proposed openstack/barbican master: Add sample config and policy to documentation https://review.openstack.org/537310 | 09:07 |
| l_sekalski_ | Hi guys. Got a question regarding RBAC defined in Barbicans policy.json. How come that a User with creator Role can not delete Secret Order that he/she issued? What is the motivation behind it? | 09:52 |
| *** salmankhan has joined #openstack-barbican | 09:55 | |
| *** liujiong has quit IRC | 09:56 | |
| *** jaosorior has quit IRC | 10:16 | |
| *** jaosorior has joined #openstack-barbican | 10:17 | |
| *** pbourke has quit IRC | 10:35 | |
| *** salmankhan has quit IRC | 10:36 | |
| *** pbourke has joined #openstack-barbican | 10:36 | |
| *** salmankhan has joined #openstack-barbican | 10:39 | |
| openstackgerrit | Juan Antonio Osorio Robles proposed openstack/barbican master: Revert "Ensure only api app initializes secret store" https://review.openstack.org/537345 | 10:50 |
| *** salmankhan has quit IRC | 10:54 | |
| *** salmankhan has joined #openstack-barbican | 10:56 | |
| *** salmankhan has quit IRC | 11:34 | |
| *** salmankhan has joined #openstack-barbican | 11:34 | |
| *** salmankhan has quit IRC | 12:06 | |
| *** dave-mccowan has joined #openstack-barbican | 12:09 | |
| *** zhurong has joined #openstack-barbican | 12:10 | |
| *** salmankhan has joined #openstack-barbican | 12:20 | |
| *** raildo has joined #openstack-barbican | 12:27 | |
| l_sekalski_ | Hi guys. Got a question regarding RBAC defined in Barbicans policy.json. How come that a User with creator Role can not delete Secret Order that he/she issued? What is the motivation behind it? | 12:39 |
| *** noslzzp has joined #openstack-barbican | 12:44 | |
| *** dpawar has quit IRC | 13:01 | |
| *** abishop has joined #openstack-barbican | 13:04 | |
| *** abishop has quit IRC | 13:06 | |
| *** abishop has joined #openstack-barbican | 13:06 | |
| *** salmankhan has quit IRC | 13:06 | |
| *** salmankhan has joined #openstack-barbican | 13:09 | |
| *** daidv has quit IRC | 13:50 | |
| *** ssathaye has quit IRC | 13:55 | |
| *** ssathaye has joined #openstack-barbican | 13:55 | |
| *** jaosorior has quit IRC | 14:05 | |
| *** zhurong has quit IRC | 14:18 | |
| l_sekalski_ | Hi guys. Got a question regarding RBAC defined in Barbicans policy.json. How come that a User with creator Role can not delete Secret Order that he/she issued? What is the motivation behind it? | 14:21 |
| *** salmankhan has quit IRC | 14:25 | |
| *** salmankhan has joined #openstack-barbican | 14:25 | |
| *** noslzzp has quit IRC | 14:27 | |
| *** dpawar has joined #openstack-barbican | 14:41 | |
| *** serlex has joined #openstack-barbican | 14:46 | |
| *** dpawar has quit IRC | 15:00 | |
| *** dpawar has joined #openstack-barbican | 15:04 | |
| *** dpawar has quit IRC | 15:21 | |
| *** dave-mccowan has quit IRC | 15:22 | |
| *** dpawar has joined #openstack-barbican | 15:22 | |
| -openstackstatus- NOTICE: gerrit has been suffering from a full disk, some mails may have been lost in the last couple of hours. we will now restart gerrit to address ongoing slowness, too | 15:23 | |
| *** dpawar has quit IRC | 15:26 | |
| *** noslzzp has joined #openstack-barbican | 15:29 | |
| *** dave-mccowan has joined #openstack-barbican | 15:45 | |
| *** pcaruana has quit IRC | 16:35 | |
| *** salmankhan has quit IRC | 16:43 | |
| *** salmankhan has joined #openstack-barbican | 16:43 | |
| ssathaye | hello dave-mccowan - do you have a 30 min window when we can chat over the phone? | 16:50 |
| ssathaye | (or Google Hangout?) | 16:51 |
| dave-mccowan | ssathaye sure. how's 2pm EST today? | 16:51 |
| ssathaye | dave-mccowan unfortunately in meetings that hour - what's your next avail slot? | 16:52 |
| dave-mccowan | l_sekalski_ if a creator could delete a secret, he would be the same as an admin. don't get bogged down by the names, the role named "creator" gives an operator the opportunity to have users who can't delete secrets (maybe for policy reasons). | 16:53 |
| dave-mccowan | ssathaye what's your next slot this afternoon? | 16:53 |
| ssathaye | 4pm Eastern? | 16:54 |
| dave-mccowan | ssathaye ok | 16:54 |
| ssathaye | great - I will send an invite - which email? | 16:54 |
| ssathaye | dave-mccowan not sure if you want to give our email id/phone numbers on IRC, though :-) | 16:55 |
| dave-mccowan | ssathaye i sent via IRC direct message, did you get it? | 16:56 |
| ssathaye | dave-mccowan - ah yes - got it | 16:56 |
| ssathaye | thanks | 16:56 |
| ssathaye | will talk to you then | 16:56 |
| *** nkinder has quit IRC | 16:59 | |
| *** serlex has quit IRC | 17:05 | |
| *** nkinder has joined #openstack-barbican | 17:44 | |
| alee | dave-mccowan, hey | 17:51 |
| dave-mccowan | alee yo | 17:51 |
| alee | dave-mccowan, we're running into some as yet undefined issuewiththe initialization of the secret store in the multiple backend case | 17:51 |
| alee | dave-mccowan, for some reason, now it just doesn't run | 17:52 |
| alee | dave-mccowan, I'm going to create a patch that optionally allows you to do it during the db-sync | 17:52 |
| alee | dave-mccowan, that way, you know it gets done there - and you dont have to run it on startup | 17:52 |
| alee | dave-mccowan, initialization being the syncing of the secret_store db table with the config | 17:53 |
| dave-mccowan | alee i like doing all setup before start up, but it'd be a bummer to leave a potentially latent bug. | 17:54 |
| alee | dave-mccowan, yeah - I just don't know how to solve it -- this happens intermittently when running barbican in a container -- so I need to be able to attach a debugger to a starting container and step through | 17:56 |
| alee | dave-mccowan, not exactly the best debugging experience | 17:56 |
| dave-mccowan | alee sounds similar to the timing issue jeremy fixed recently | 17:56 |
| alee | dave-mccowan, and remember still possibly suscepible to race conditions .. if you have multiple controllers | 17:57 |
| alee | dave-mccowan, which one? | 17:57 |
| dave-mccowan | alee https://review.openstack.org/#/c/515339/ | 17:58 |
| openstackgerrit | OpenStack Release Bot proposed openstack/castellan master: Update reno for stable/queens https://review.openstack.org/537478 | 17:59 |
| *** pcaruana has joined #openstack-barbican | 19:27 | |
| *** pcaruana has quit IRC | 19:27 | |
| *** muttley has joined #openstack-barbican | 19:32 | |
| *** muttley has quit IRC | 19:48 | |
| *** dave-mccowan has quit IRC | 19:58 | |
| *** noslzzp has quit IRC | 20:02 | |
| *** noslzzp has joined #openstack-barbican | 20:04 | |
| *** salmankhan has quit IRC | 20:23 | |
| *** dave-mccowan has joined #openstack-barbican | 20:41 | |
| *** noslzzp has quit IRC | 21:11 | |
| *** raildo has quit IRC | 21:17 | |
| *** noslzzp has joined #openstack-barbican | 21:25 | |
| *** dave-mccowan has quit IRC | 21:25 | |
| *** salmankhan has joined #openstack-barbican | 21:43 | |
| *** salmankhan has quit IRC | 21:47 | |
| *** rmcall has quit IRC | 22:09 | |
| *** abishop has quit IRC | 22:13 | |
| *** noslzzp has quit IRC | 22:46 | |
| *** noslzzp has joined #openstack-barbican | 22:47 | |
| *** noslzzp has quit IRC | 22:47 | |
| *** abishop has joined #openstack-barbican | 22:49 | |
| *** noslzzp has joined #openstack-barbican | 23:23 | |
| openstackgerrit | Ihar Hrachyshka proposed openstack/barbican-tempest-plugin master: Validate instances are accessible before messing with their disks https://review.openstack.org/535491 | 23:39 |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!