| *** mrunge_ is now known as mrunge | 00:54 | |
| *** jroll09 is now known as jroll0 | 06:28 | |
| *** ralonsoh_ is now known as ralonsoh | 07:50 | |
| capt | Hi everyone, We are currently working on designing credential/secret management for our platform built on OpenStack, and we are trying to reason about it from first principles instead of assuming the default OpenStack approach. Our requirement is tenant-level secure credential storage (similar to a KMS) where identities/secrets are not stored directly on disk. We looked at Barbican, but from our understanding it does not fully behave like a ten | 12:45 |
|---|---|---|
| capt | ntial store in the way a typical KMS does. Questions: Has anyone implemented tenant-level secret storage / credential management on top of OpenStack? Did you extend Barbican, integrate an external KMS (like Hashicorp Vault), or use some other pattern? How do you avoid storing sensitive identities or credentials directly on disk? Appreciate any thoughts or references. Thanks! | 12:45 |
| capt | Hi afox do you have any idea on this | 12:52 |
| opendevreview | Ghanshyam Maan proposed openstack/governance master: Update Ghanshyam email id https://review.opendev.org/c/openstack/governance/+/980328 | 17:16 |
Generated by irclog2html.py 4.1.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!