| *** openstackgerrit has joined #openstack-barbican | 01:47 | |
| openstackgerrit | pengyuesheng proposed openstack/python-barbicanclient master: Add [testenv:releasenotes] to tox.ini https://review.opendev.org/667285 | 01:47 |
|---|---|---|
| *** whoami-rajat has joined #openstack-barbican | 03:04 | |
| *** mmethot has quit IRC | 05:46 | |
| *** dpawlik has joined #openstack-barbican | 06:05 | |
| *** pcaruana has joined #openstack-barbican | 06:27 | |
| *** Luzi has joined #openstack-barbican | 08:31 | |
| openstackgerrit | pengyuesheng proposed openstack/castellan master: Add Python 3 Train unit tests https://review.opendev.org/667551 | 08:40 |
| *** jaosorior has quit IRC | 09:22 | |
| *** jaosorior has joined #openstack-barbican | 09:24 | |
| *** xek has joined #openstack-barbican | 09:55 | |
| *** dpawlik has quit IRC | 10:37 | |
| *** dpawlik has joined #openstack-barbican | 10:38 | |
| *** dpawlik has quit IRC | 10:42 | |
| *** dpawlik has joined #openstack-barbican | 10:45 | |
| *** dpawlik has quit IRC | 10:50 | |
| *** dpawlik has joined #openstack-barbican | 10:53 | |
| *** dpawlik has quit IRC | 11:00 | |
| *** dpawlik has joined #openstack-barbican | 11:01 | |
| *** raildo has joined #openstack-barbican | 11:43 | |
| *** Luzi has quit IRC | 12:35 | |
| *** dpawlik has quit IRC | 12:40 | |
| *** dave-mccowan has joined #openstack-barbican | 12:51 | |
| *** dpawlik has joined #openstack-barbican | 12:55 | |
| *** mmethot has joined #openstack-barbican | 12:57 | |
| *** abishop has joined #openstack-barbican | 13:04 | |
| *** xek_ has joined #openstack-barbican | 13:05 | |
| *** xek has quit IRC | 13:07 | |
| *** mmethot is now known as mmethot|brb | 13:10 | |
| *** livelace has joined #openstack-barbican | 13:24 | |
| *** raildo has quit IRC | 13:27 | |
| *** mmethot|brb is now known as mmethot | 13:29 | |
| *** raildo has joined #openstack-barbican | 13:39 | |
| *** raildo has quit IRC | 13:44 | |
| *** raildo has joined #openstack-barbican | 13:46 | |
| *** raildo has quit IRC | 13:52 | |
| *** raildo has joined #openstack-barbican | 14:23 | |
| *** xek__ has joined #openstack-barbican | 15:03 | |
| *** xek_ has quit IRC | 15:05 | |
| *** whoami-rajat has quit IRC | 15:22 | |
| *** dpawlik has quit IRC | 15:28 | |
| *** whoami-rajat has joined #openstack-barbican | 15:38 | |
| kklimonda | Hi, I'm looking through barbican documentation at how to integrate it with dogtag/IPA - I'm trying to have 3 different barbican deployments (3 OS clouds) to integrate with the same dogtag, but the documentation on how it all fits together seems sparse. | 15:46 |
| redrobot | hi kklimonda. I'm a little busy at the moment, but I'll try to help out. | 15:52 |
| kklimonda | @redrobot: itโs not urgent, you can ping me when you have some spare cycles. Iโll be around for few more hours today. | 15:56 |
| redrobot | kklimonda, have you looked at https://github.com/openstack/barbican/blob/master/doc/source/install/barbican-backend.rst#dogtag-plugin ? | 16:05 |
| kklimonda | @redrobot yes, but I have a problem with mapping that to multiple barbican deployments - do I create separate agents in KRA, one per barbican, and then client certificate is used to differentiate between them? | 16:08 |
| kklimonda | also, dogtag_host defaults to localhost, and doesn't seem to be a list - how do I configure multiple dogtag instances for HA? | 16:09 |
| redrobot | kklimonda, oh man, you've got the hard questions... ๐ ๐ ๐ | 17:47 |
| redrobot | kklimonda, unfortunately I'm not familiar enough with DogTag to help. | 17:47 |
| redrobot | and even more unfortunately, our DogTag expert is out on PTO for the next 3 weeks. | 17:47 |
| redrobot | I'm gonna ask around about the the kra agents | 17:50 |
| *** altlogbot_0 has quit IRC | 17:55 | |
| *** altlogbot_2 has joined #openstack-barbican | 17:56 | |
| *** altlogbot_2 has quit IRC | 17:57 | |
| *** altlogbot_3 has joined #openstack-barbican | 17:58 | |
| redrobot | kklimonda, for barbican->dogtag connections we use the dogtag library https://www.dogtagpki.org/wiki/Python_Key_Client | 17:58 |
| redrobot | kklimonda, I'm not sure what the HA support is like in that lib. I think we just pass through the DogTag instace, so I don't know how HA is suported. | 17:59 |
| *** altlogbot_3 has quit IRC | 18:01 | |
| *** altlogbot_3 has joined #openstack-barbican | 18:02 | |
| *** whoami-rajat has quit IRC | 19:22 | |
| *** altlogbot_3 has quit IRC | 19:45 | |
| *** altlogbot_2 has joined #openstack-barbican | 19:46 | |
| kklimonda | @redrobot: thanks, Iโll take a look at the library and see how it works underneath | 19:50 |
| *** altlogbot_2 has quit IRC | 20:15 | |
| *** altlogbot_0 has joined #openstack-barbican | 20:18 | |
| *** altlogbot_0 has quit IRC | 20:43 | |
| *** altlogbot_2 has joined #openstack-barbican | 20:44 | |
| *** altlogbot_2 has quit IRC | 21:00 | |
| *** altlogbot_0 has joined #openstack-barbican | 21:04 | |
| *** pcaruana has quit IRC | 21:05 | |
| *** raildo has quit IRC | 21:30 | |
| *** xek__ has quit IRC | 22:10 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!