Thursday, 2014-12-18

*** chrisshattuck has quit IRC		00:00
*** packet has quit IRC		00:00
*** marcoemorais has quit IRC		00:00
*** samueldmq has joined #openstack-keystone		00:03
*** marcoemorais has joined #openstack-keystone		00:03
*** marcoemorais has quit IRC		00:09
jamielennox	ugh, zuul	00:12
*** stevemar has quit IRC		00:12
*** stevemar has joined #openstack-keystone		00:13
*** ChanServ sets mode: +v stevemar		00:13
stevemar	jamielennox, it has not been fixed yet AFAIK	00:22
stevemar	dstanek, i like dsvm	00:22
openstackgerrit	Rodrigo Duarte proposed openstack/keystonemiddleware: Adds Memcached dependencies doc https://review.openstack.org/134993	00:32
*** hdd has joined #openstack-keystone		00:34
*** zzzeek has quit IRC		00:40
openstackgerrit	Jorge Munoz proposed openstack/keystone-specs: Read/Write LDAP drivers https://review.openstack.org/140175	00:40
*** jdennis1 has quit IRC		00:44
*** r-daneel has quit IRC		00:46
*** hdd has quit IRC		00:47
*** radez is now known as radez_g0n3		00:54
*** lhcheng_ has joined #openstack-keystone		00:59
*** lhcheng has quit IRC		01:02
*** zz_avozza is now known as avozza		01:10
*** jdennis has joined #openstack-keystone		01:11
*** nellysmitt has joined #openstack-keystone		01:12
openstackgerrit	wanghong proposed openstack/keystone: invalidate cache when updating catalog objects https://review.openstack.org/142079	01:16
*** jdennis has quit IRC		01:16
*** rm_work is now known as rm_work\|away		01:17
*** nellysmitt has quit IRC		01:17
*** avozza is now known as zz_avozza		01:20
*** timcline has joined #openstack-keystone		01:28
*** timcline has quit IRC		01:29
*** timcline has joined #openstack-keystone		01:29
*** jdennis has joined #openstack-keystone		01:34
*** gyee has quit IRC		01:37
*** wpf has joined #openstack-keystone		01:43
*** jungleboyj has joined #openstack-keystone		01:46
*** _cjones_ has quit IRC		01:47
*** mitz has joined #openstack-keystone		01:54
*** lhcheng_ has quit IRC		02:00
*** erkules_ has joined #openstack-keystone		02:03
*** mitz_ has joined #openstack-keystone		02:04
stevemar	bump, also asking for a review of https://review.openstack.org/#/c/138253/	02:05
*** erkules has quit IRC		02:05
*** timcline has quit IRC		02:10
*** david-lyle is now known as david-lyle_afk		02:10
*** jasondotstar has joined #openstack-keystone		02:11
*** richm1 has quit IRC		02:15
*** zz_avozza is now known as avozza		02:18
*** timcline has joined #openstack-keystone		02:21
openstackgerrit	wanghong proposed openstack/keystone: Can't update catalog objects when using kvs driver https://review.openstack.org/130180	02:21
*** timcline_ has joined #openstack-keystone		02:22
*** timcline has quit IRC		02:26
*** timcline_ has quit IRC		02:26
*** timcline has joined #openstack-keystone		02:27
*** gordc has quit IRC		02:27
*** gordc has joined #openstack-keystone		02:30
openstackgerrit	wanghong proposed openstack/keystone: Can't update catalog objects when using kvs driver https://review.openstack.org/130180	02:30
*** avozza is now known as zz_avozza		02:33
*** gordc has quit IRC		02:35
openstackgerrit	wanghong proposed openstack/keystone: set endpoint enabled default to True if not specified(kvs) https://review.openstack.org/142316	02:38
openstackgerrit	wanghong proposed openstack/keystone: add circular check when updating region https://review.openstack.org/130474	02:41
openstackgerrit	Steve Martinelli proposed openstack/keystone: sync to oslo commit 1cf2c6 https://review.openstack.org/138253	02:43
openstackgerrit	Steve Martinelli proposed openstack/keystone: switch from sample_config.sh to oslo-config-generator https://review.openstack.org/113905	02:44
openstackgerrit	Steve Martinelli proposed openstack/keystone: update sample conf using oslo-config-generator https://review.openstack.org/138508	02:46
*** jaosorior has quit IRC		02:53
openstackgerrit	Steve Martinelli proposed openstack/keystone: Remove oslo incubator's config generator https://review.openstack.org/142652	02:53
stevemar	let's use oslo-config-generator!!	02:54
stevemar	follow that patch chain!	02:54
openstackgerrit	Merged openstack/keystone: Update docs to no longer show XML support https://review.openstack.org/125753	02:56
*** erkules has joined #openstack-keystone		03:01
*** lhcheng has joined #openstack-keystone		03:01
*** timcline has quit IRC		03:02
*** erkules_ has quit IRC		03:03
*** lhcheng has quit IRC		03:06
*** nellysmitt has joined #openstack-keystone		03:13
*** nellysmitt has quit IRC		03:18
*** zz_avozza is now known as avozza		03:26
openstackgerrit	ayoung proposed openstack/identity-api: request unscoped token https://review.openstack.org/142658	03:38
*** davechen_ has quit IRC		03:40
*** LinstatSDR has joined #openstack-keystone		03:43
*** avozza is now known as zz_avozza		03:44
*** LinstatSDR has quit IRC		03:48
*** LinstatSDR has joined #openstack-keystone		03:52
*** dims__ has quit IRC		03:53
*** chrisshattuck has joined #openstack-keystone		03:53
*** dims__ has joined #openstack-keystone		03:54
*** timcline has joined #openstack-keystone		04:00
*** dims__ has quit IRC		04:01
*** dims__ has joined #openstack-keystone		04:02
*** timcline has quit IRC		04:04
*** timcline has joined #openstack-keystone		04:06
*** dims__ has quit IRC		04:07
*** harlowja is now known as harlowja_away		04:19
openstackgerrit	Jamie Lennox proposed openstack/python-keystoneclient: Make tests run against original client and session https://review.openstack.org/117089	04:25
*** timcline has quit IRC		04:27
*** timcline has joined #openstack-keystone		04:27
openstackgerrit	Steve Martinelli proposed openstack/keystone: Provide additional detail if OAuth headers are missing https://review.openstack.org/142191	04:34
openstackgerrit	Steve Martinelli proposed openstack/keystone: Update federation docs to point to specs.o.org https://review.openstack.org/134590	04:34
*** zz_avozza is now known as avozza		04:36
*** timcline has quit IRC		04:50
*** lhcheng has joined #openstack-keystone		04:50
*** esp has left #openstack-keystone		04:52
*** lhcheng has quit IRC		04:55
*** avozza is now known as zz_avozza		04:56
*** chrisshattuck has quit IRC		05:09
*** nellysmitt has joined #openstack-keystone		05:14
*** lhcheng has joined #openstack-keystone		05:16
*** nellysmitt has quit IRC		05:19
*** timcline has joined #openstack-keystone		05:22
*** timcline has quit IRC		05:27
*** ajayaa has joined #openstack-keystone		05:32
*** rushiagr_away is now known as rushiagr		05:39
openstackgerrit	Lin Hua Cheng proposed openstack/keystone: Always return the service name in the catalog https://review.openstack.org/135808	05:40
*** jasondotstar has quit IRC		05:48
*** zz_avozza is now known as avozza		05:48
*** jasondotstar has joined #openstack-keystone		05:49
openstackgerrit	ChangBo Guo(gcb) proposed openstack/keystone: Add library oslo.concurrency in file oslo.config.generator.rc https://review.openstack.org/137270	06:04
*** ajayaa has quit IRC		06:05
openstackgerrit	OpenStack Proposal Bot proposed openstack/keystone: Imported Translations from Transifex https://review.openstack.org/136243	06:05
openstackgerrit	Steve Martinelli proposed openstack/keystone-specs: Add a spec for implemeting WebSSO https://review.openstack.org/133529	06:06
*** avozza is now known as zz_avozza		06:08
*** dims__ has joined #openstack-keystone		06:09
*** k4n0 has joined #openstack-keystone		06:10
*** dims__ has quit IRC		06:13
*** hdd has joined #openstack-keystone		06:16
*** timcline has joined #openstack-keystone		06:23
*** timcline has quit IRC		06:27
*** hdd has quit IRC		06:55
*** zz_avozza is now known as avozza		07:01
*** rushiagr is now known as rushiagr_away		07:02
*** stevemar has quit IRC		07:14
*** nellysmitt has joined #openstack-keystone		07:15
*** avozza is now known as zz_avozza		07:18
*** nellysmitt has quit IRC		07:20
*** linstatsdr_ has joined #openstack-keystone		07:24
*** timcline has joined #openstack-keystone		07:24
*** LinstatSDR has quit IRC		07:27
*** timcline has quit IRC		07:28
openstackgerrit	Merged openstack/keystone: Change config option examples to v3 https://review.openstack.org/131004	07:34
openstackgerrit	Marek Denis proposed openstack/keystone: Identify groups by name/domain in mapping rules. https://review.openstack.org/139013	07:41
*** lhcheng has quit IRC		07:41
openstackgerrit	Marek Denis proposed openstack/keystone: Identify groups by name/domain in mapping rules. https://review.openstack.org/139013	07:44
openstackgerrit	Marek Denis proposed openstack/keystone: Implements whitelist and blacklist mapping rules https://review.openstack.org/142573	07:44
*** lufix has joined #openstack-keystone		07:47
*** ajayaa has joined #openstack-keystone		07:51
openstackgerrit	Abhishek Kekane proposed openstack/keystone: Eventlet green threads not released back to pool https://review.openstack.org/130824	07:55
*** pcaruana has joined #openstack-keystone		07:56
*** linstatsdr_ has quit IRC		07:57
*** zz_avozza is now known as avozza		07:58
*** Shohei has joined #openstack-keystone		08:13
*** nellysmitt has joined #openstack-keystone		08:14
*** wanghong has quit IRC		08:18
*** timcline has joined #openstack-keystone		08:25
*** timcline has quit IRC		08:29
*** wanghong has joined #openstack-keystone		08:31
*** ajayaa has quit IRC		08:40
openstackgerrit	Merged openstack/keystone: Remove unnecessary ldap import https://review.openstack.org/142192	09:11
*** wanghong has quit IRC		09:16
*** timcline has joined #openstack-keystone		09:25
*** timcline has quit IRC		09:27
*** timcline has joined #openstack-keystone		09:27
*** wanghong has joined #openstack-keystone		09:28
*** timcline has quit IRC		09:32
*** jamielennox is now known as jamielennox\|away		09:32
*** nellysmitt has quit IRC		09:50
*** rushiagr_away is now known as rushiagr		10:06
*** nellysmitt has joined #openstack-keystone		10:09
openstackgerrit	OpenStack Proposal Bot proposed openstack/pycadf: Updated from global requirements https://review.openstack.org/142714	10:20
openstackgerrit	Marek Denis proposed openstack/keystone: Do not map directly rules with keywords. https://review.openstack.org/142715	10:20
*** timcline has joined #openstack-keystone		10:28
*** timcline has quit IRC		10:32
*** ajayaa has joined #openstack-keystone		10:36
openstackgerrit	Marek Denis proposed openstack/keystone: Map directly rules with keywords. https://review.openstack.org/142715	10:52
openstackgerrit	Marek Denis proposed openstack/keystone: Map directly rules with keywords. https://review.openstack.org/142715	11:09
openstackgerrit	Marek Denis proposed openstack/keystone: Map directly rules with keywords. https://review.openstack.org/142715	11:11
*** dims__ has joined #openstack-keystone		11:17
*** samueldmq has quit IRC		11:17
*** avozza is now known as zz_avozza		11:20
*** wpf has quit IRC		11:21
*** xxj has quit IRC		11:21
*** dims__ has quit IRC		11:22
*** junhongl has quit IRC		11:22
*** aix has quit IRC		11:23
*** timcline has joined #openstack-keystone		11:29
*** timcline has quit IRC		11:33
*** dims__ has joined #openstack-keystone		11:53
openstackgerrit	Marco Fargetta proposed openstack/keystone: Multiple IdP authentication URL https://review.openstack.org/142743	12:11
*** andreaf_ is now known as andreaf		12:13
openstackgerrit	Sergey Kraynev proposed openstack/python-keystoneclient: Using correct keyword for region in v3 https://review.openstack.org/118383	12:18
*** diegows has joined #openstack-keystone		12:20
*** zz_avozza is now known as avozza		12:24
*** timcline has joined #openstack-keystone		12:30
*** aix has joined #openstack-keystone		12:32
*** timcline has quit IRC		12:34
*** afaranha has quit IRC		12:35
*** stone_ has joined #openstack-keystone		12:39
*** stone_ has quit IRC		12:45
openstackgerrit	Will Foster proposed openstack/keystone: skip assignment rows migrate if duplicate entry exists. https://review.openstack.org/136946	12:57
*** andreaf is now known as andreaf_		13:16
rushiagr	ayoung: ping	13:20
rushiagr	ayoung: thanks for your views on policy rules thing	13:21
rushiagr	ayoung: I completely agree with you that doing one-offs like what I'm doing is bad	13:21
rushiagr	ayoung: I basically started this seeing that oslo.policy is not present yet (not graduated)	13:22
rushiagr	ayoung: and while looking at my patch from a distance, I realize that it's not only the changes to policy.py, but the whole thing I was trying to achieve is going to be provided by the upcoming oslo policy stuff	13:23
rushiagr	ayoung: so, can you point me to the place where I need to submit it in Olso?	13:24
rushiagr	ayoung: I am unable to find oslo.policy repo. Should this change go to oslo-incubator?	13:24
*** raildo has joined #openstack-keystone		13:30
*** timcline has joined #openstack-keystone		13:30
lbragstad	dstanek: around? I have a quick question on jsd	13:33
lbragstad	dstanek: does jsd hanlde the ability to pass additional jsonschema properties to a jsd Object? Like 'minLength' and 'maxLength' here: https://github.com/openstack/keystone/blob/master/keystone/common/validation/parameter_types.py#L25-L29	13:34
*** timcline has quit IRC		13:35
*** richm1 has joined #openstack-keystone		13:36
*** gordc has joined #openstack-keystone		13:43
*** ajayaa has quit IRC		13:53
*** ajayaa has joined #openstack-keystone		13:53
openstackgerrit	Merged openstack/python-keystoneclient: get_endpoint should return the override https://review.openstack.org/131408	14:00
openstackgerrit	Merged openstack/python-keystoneclient: Take plugin params from ENV rather than default https://review.openstack.org/132240	14:05
*** richm1 has quit IRC		14:08
*** tellesnobrega has joined #openstack-keystone		14:08
*** richm has joined #openstack-keystone		14:12
*** radez_g0n3 is now known as radez		14:18
tellesnobrega	morganfainberg, ping	14:18
*** afaranha has joined #openstack-keystone		14:20
openstackgerrit	Lance Bragstad proposed openstack/keystone: Implement validation on the Identity V3 API https://review.openstack.org/132122	14:20
*** hdd has joined #openstack-keystone		14:25
*** k4n0 has quit IRC		14:29
*** timcline has joined #openstack-keystone		14:31
*** afaranha has quit IRC		14:31
openstackgerrit	Dave Chen proposed openstack/keystone: Remove local conf information from paste-ini {WIP} https://review.openstack.org/134124	14:33
*** jungleboyj has quit IRC		14:35
*** timcline has quit IRC		14:36
openstackgerrit	Merged openstack/keystone-specs: Add requirement for APIImpact flag https://review.openstack.org/132303	14:42
*** amakarov_away is now known as amakarov		14:43
ayoung	rushiagr, getting it promoted is happening now-ish. Lets see...	14:43
*** packet has joined #openstack-keystone		14:43
rushiagr	ayoung: okay	14:44
rushiagr	ayoung: thanks!	14:44
ayoung	rushiagr, the review is in the infrastructure gerrit	14:45
ayoung	looking...	14:45
ayoung	morganfainberg, samuelms where is the oslo.policy graduation stuff?	14:45
rodrigods	ayoung, spec or repo?	14:46
ayoung	repo	14:46
ayoung	rodrigods, all of it really, but repo first	14:47
rodrigods	ayoung, https://github.com/rodrigods/oslo.policy	14:47
ayoung	rodrigods, rushiagr has been beting on this from the cinder side	14:47
ayoung	rodrigods, and the review for that to make it official?	14:47
rodrigods	ayoung, thought this was morganfainberg task	14:47
ayoung	rodrigods, yeah...or mine	14:47
* ayoung shrugs		14:48
rodrigods	ayoung, spec https://review.openstack.org/#/c/140161/	14:48
ayoung	OK...and we need a review to create the repo. jamielennox\|away did that for the client kerberos one, let's see...	14:49
*** LinstatSDR has joined #openstack-keystone		14:50
ayoung	OK we need something like this rushiagr rodrigods https://review.openstack.org/#/c/120310/	14:50
ayoung	I can do that	14:51
rodrigods	ayoung, ++	14:51
rodrigods	ayoung, anything else from my side?	14:51
ayoung	rodrigods, just keeping pushing that boulder, Sisyphus.	14:52
rushiagr	ayoung: rodrigods: thanks for all of this information..	14:52
rushiagr	ayoung: so you saying policy should be a part of keystone rather than oslo?	14:52
ayoung	rushiagr, I was asked to do exactly what you are trying to do back in portland	14:52
ayoung	Its good to have more people pushing on the issue	14:53
ayoung	rushiagr, here's the split	14:53
ayoung	the oslo library is a general purpose rules enging	14:53
ayoung	engine	14:53
ayoung	it should be usable by other projects, especially congress	14:53
ayoung	policy for access control is a keystone thing	14:53
ayoung	so anything that deals with roles, capabilities (the apis that require access control) and tokens is the keystone domain	14:54
openstackgerrit	Dave Chen proposed openstack/keystone: Remove local conf information from paste-ini https://review.openstack.org/134124	14:54
ayoung	so "what can I do with this token" is a cross cutting concern for services, based on the data from keystone	14:54
*** raildo has quit IRC		14:54
rushiagr	ayoung: got that. Very clear now..	14:55
ayoung	just like Sahara should not be doing things with networks or block devices, but should instead be working through Neutron and Cinder for those things	14:55
rodrigods	tellesnobrega, ^ Sahara	14:56
ayoung	rushiagr, thanks for driving this, though. It validates the overall effort and approach I've been proposing and promoting	14:56
rushiagr	ayoung: but since policy files are still not all moved to keystone, does this mean we'll have to wait till we get there?	14:57
ayoung	rushiagr, you can help make things happen inside the keystone effort	14:57
ayoung	rushiagr, there are two things	14:57
ayoung	1 getting the policy enforcement done in a libraray	14:57
ayoung	2 getting a default policy file that works across nova, cinder, keystone, etc all cleaned up	14:58
ayoung	rushiagr, also, you can rework your patch on top of rodrigods 's work and make sure that the cinder side is ready to go once we have his	14:58
ayoung	it just means that your stuff can't land until all the prereqs are in, but it avoids duplicating effort	14:59
openstackgerrit	Alexander Makarov proposed openstack/keystone: LDAP additional attribute mappings description https://review.openstack.org/118590	14:59
rushiagr	ayoung: understood.	14:59
openstackgerrit	Alexander Makarov proposed openstack/keystone: Trust redelegation https://review.openstack.org/126897	14:59
rodrigods	rushiagr, ayoung ++	15:00
openstackgerrit	Alexander Makarov proposed openstack/keystone: Memcache connection pool excess check https://review.openstack.org/140681	15:00
rodrigods	let me know if you need anything	15:00
openstackgerrit	Alexander Makarov proposed openstack/keystone: Assignment sql backend create_grant refactoring https://review.openstack.org/141352	15:00
rushiagr	ayoung: I had a different idea in mind. I thought I'll first get this moving in Cinder, and as soon as other projects also want to have this, will put it in a common librarly .. somewhere in Oslo	15:00
openstackgerrit	Alexander Makarov proposed openstack/keystone: Role revocation invalidates too many tokens https://review.openstack.org/141397	15:00
openstackgerrit	Alexander Makarov proposed openstack/keystone: Group role revocation invalidates all user tokens https://review.openstack.org/141854	15:00
ayoung	rushiagr, and usually that is exactly the right approach	15:01
ayoung	you just had the misfortune to hit it right as we were also reworking this	15:01
ayoung	but the more people focused on it, the more common the implementation	15:01
ayoung	more people from more projects	15:01
rushiagr	ayoung: right. There is never one way which is right :)	15:02
rushiagr	ayoung: agree. Let's get this part done :)	15:02
rodrigods	rushiagr, ayoung, nice to have the same effort going from different projects	15:03
rushiagr	rodrigods: yes :)	15:03
*** dims__ has quit IRC		15:04
rushiagr	ayoung: rodrigods: I'll go through the resources I've got..	15:04
rushiagr	thanks	15:04
*** dims__ has joined #openstack-keystone		15:04
rodrigods	ayoung, who can we ping in order to have some reviews going in the graduation spec?	15:05
rodrigods	it there for a while	15:05
ayoung	rushiagr, one goal is to unify all of the delegation mechanism in Keystone. In order to do that, we need to be able to break a big role down into little ones, which in turn implies being able to make roles hierarchical...if you keep pushing, it ends up with all of this	15:05
rodrigods	it's*	15:05
ayoung	rodrigods, let me get the repo chang in , and then I'll make a pest of myself	15:06
rodrigods	heh	15:06
rodrigods	ayoung, ++	15:06
rushiagr	:)	15:06
*** david-lyle_afk has quit IRC		15:07
ayoung	https://review.openstack.org/142813	15:09
*** dims_ has joined #openstack-keystone		15:10
*** esp has joined #openstack-keystone		15:10
rodrigods	ayoung, can't I even give a +1? :(	15:10
*** dims__ has quit IRC		15:10
rodrigods	lunch time	15:13
ayoung	rodrigods, I can't either...wierd	15:14
*** thedodd has joined #openstack-keystone		15:18
*** timcline has joined #openstack-keystone		15:19
*** jungleboyj has joined #openstack-keystone		15:19
*** __TheDodd__ has joined #openstack-keystone		15:22
*** thedodd has quit IRC		15:23
*** stevemar has joined #openstack-keystone		15:25
*** ChanServ sets mode: +v stevemar		15:25
stevemar	hands up if you have 0 meetings left this year! \o/	15:26
marekd	\o/	15:27
openstackgerrit	Brant Knudson proposed openstack/python-keystoneclient: Add get certificates for v2.0 https://review.openstack.org/142122	15:29
openstackgerrit	Brant Knudson proposed openstack/python-keystoneclient: Add sample certificate fixtures https://review.openstack.org/142817	15:29
openstackgerrit	Alexander Makarov proposed openstack/keystone-specs: Trust redelegation documentation https://review.openstack.org/131541	15:29
*** __TheDodd__ is now known as thedodd		15:31
openstackgerrit	Brant Knudson proposed openstack/python-keystoneclient: Add OS-SIMPLE-CERT support for v3. https://review.openstack.org/142200	15:32
openstackgerrit	Alexander Makarov proposed openstack/keystone-specs: Trust redelegation documentation https://review.openstack.org/131541	15:32
*** ajayaa has quit IRC		15:34
openstackgerrit	Brant Knudson proposed openstack/keystonemiddleware: Correct incorrect rst in docstrings https://review.openstack.org/141924	15:37
openstackgerrit	Alexander Makarov proposed openstack/keystone: Assignment sql backend create_grant refactoring https://review.openstack.org/141352	15:38
*** r-daneel has joined #openstack-keystone		15:44
*** hdd has quit IRC		15:44
*** topol has joined #openstack-keystone		15:47
*** ChanServ sets mode: +v topol		15:47
*** rushiagr is now known as rushiagr_away		15:50
*** chrisshattuck has joined #openstack-keystone		15:52
openstackgerrit	Alexander Makarov proposed openstack/keystone-specs: Trust redelegation documentation https://review.openstack.org/131541	15:53
*** andreaf has joined #openstack-keystone		15:55
openstackgerrit	Steve Martinelli proposed openstack/keystone: Update federation docs to point to specs.o.org https://review.openstack.org/134590	15:57
openstackgerrit	Alexander Makarov proposed openstack/keystone: Assignment sql backend create_grant refactoring https://review.openstack.org/141352	15:58
*** zzzeek has joined #openstack-keystone		16:01
*** david-lyle has joined #openstack-keystone		16:02
morganfainberg	tellesnobrega: I'm hopping on a plane. Will be back when I get to altitude.	16:04
amakarov	stevemar, hello! I've noticed you've made cadf notifications for role_assignment. I think we have to change something there, can you please take a look? https://review.openstack.org/#/c/141854/	16:04
marekd	morganfainberg: how do you connect while flying?	16:04
*** andreaf has quit IRC		16:04
marekd	4g or onboard wifi?	16:04
morganfainberg	marekd: in-flight wifi	16:04
marekd	whoa, nice	16:05
stevemar	amakarov, looking now!	16:06
bknudson	sounds expensive	16:06
morganfainberg	Yeah. Costs like $10 or so a flight.	16:06
morganfainberg	It's not fast but usually good enough for code review and irc.	16:06
marekd	totally worth it.	16:06
dstanek	lbragstad: yes and no - not in a great way right now	16:07
morganfainberg	Yeah. Oh haha. Annd my flight is now delayed.	16:07
breton	give me a hint please, who is from oslo.db team here?	16:08
marekd	yeah, i am flying back home tomorrow. #yay	16:08
morganfainberg	We might be swapping planes :(	16:08
morganfainberg	Doh!	16:09
bknudson	where's marekd?	16:09
marekd	here	16:09
tellesnobrega	morganfainberg, thanks, i already solved it	16:09
breton	dhellmann: zzzeek: hey! Why is migration_cli in oslo.db undocumented? Should I use it?	16:11
zzzeek	breton: im not sure	16:12
*** rushiagr_away is now known as rushiagr		16:14
openstackgerrit	Steve Martinelli proposed openstack/keystone: Provide additional detail if OAuth headers are missing https://review.openstack.org/142191	16:16
*** raildo has joined #openstack-keystone		16:17
*** andreaf has joined #openstack-keystone		16:18
lbragstad	dstanek: ok, that makes sense	16:19
lbragstad	I had to dig out the review you had on it	16:19
lbragstad	def Name(required=False):	16:19
lbragstad	return jsd.String(min_len=1, max_len=255, required=required)	16:19
lbragstad	or something like that	16:19
lbragstad	dstanek: the classes that inherit from _Type would need to be able to handle extra attributes that describe the schema, right?	16:21
*** chrisshattuck has quit IRC		16:24
openstackgerrit	Marco Fargetta proposed openstack/keystone: Multiple IdP authentication URL https://review.openstack.org/142743	16:24
dstanek	lbragstad: yeah, i have something somewhere - let me find it and get it public for you to see	16:24
lbragstad	dstanek: awesome!	16:24
lbragstad	dstanek: that would be nice to have to define this type of stuff https://github.com/openstack/keystone/blob/master/keystone/common/validation/parameter_types.py#L25-L29	16:25
dstanek	lbragstad: i don't remember where i left off because there didn't seem to be much interest. i have a lot a time over the next two weeks to work on it if it's thought to be a good idea	16:25
lbragstad	dstanek: if you think it would make our schemas more manageable, then I think it would be good	16:26
lbragstad	or easier to read?	16:26
*** chrisshattuck has joined #openstack-keystone		16:27
openstackgerrit	Brant Knudson proposed openstack/keystone: Split the assignments manager/driver. https://review.openstack.org/130954	16:27
lbragstad	dstanek: we also define two different schemas for each object. One for the create operation and one for the update.	16:28
*** pcaruana has quit IRC		16:33
morganfainberg	Ok I'm going to release keystoneclient as soon as we get to elevation / wifi is on.	16:41
morganfainberg	Same with middleware.	16:41
bknudson	morganfainberg: so, regarding the assignments split... I haven't heard any compelling argument for splitting out roles into their own backend...	16:43
bknudson	https://review.openstack.org/#/c/130954/	16:43
bknudson	so I'm leaning towards not splitting until we've got a use case.	16:44
morganfainberg	bknudson: ack	16:44
*** chrisshattuck has quit IRC		16:46
*** diegows has quit IRC		16:47
dstanek	lbragstad: with jsd you wouldn't have to do that	16:49
*** chrisshattuck has joined #openstack-keystone		16:49
lbragstad	dstanek: have two schemas?	16:52
lbragstad	dstanek: and we could cover all these use cases with one schema http://paste.openstack.org/show/88951/ ?	16:52
bknudson	also with all the changes in https://review.openstack.org/#/c/130954/ it's impossible to review.	16:52
bknudson	it's gotten a few +1s and stevemar gave it a +2, so maybe he can explain all the changes to me.	16:54
*** ajayaa has joined #openstack-keystone		16:54
dstanek	lbragstad: yeah, that was the plan	16:54
lbragstad	dstanek: sweet,	16:55
lbragstad	that would be cool	16:55
openstackgerrit	ayoung proposed openstack/identity-api: Registry of token formats https://review.openstack.org/142842	16:55
ayoung	lbragstad, ^^ that is, I think, a pre-req to AE tokens. Take a look	16:55
ayoung	I know there will be some discussion over it....	16:56
lbragstad	ayoung: ok, I'll take a look	16:57
*** dims_ has quit IRC		16:59
*** dims__ has joined #openstack-keystone		16:59
stevemar	bknudson, theres been a significant increase in LoC since i've looked at it...	17:00
*** andreaf has quit IRC		17:00
*** andreaf has joined #openstack-keystone		17:01
bknudson	stevemar: +1873, -1322 to +2288, -1605 ... you'll have to review it all over again.	17:02
bknudson	I hope you can remember how it all worked before.	17:02
stevemar	yep	17:02
stevemar	well, IIRC, back on PS 21 it was just a straight moving around	17:02
bknudson	that's what I was expecting.	17:03
stevemar	role_assignments were taken out of the assignments backend, leaving just roles/projects/domains	17:03
*** rdo_ is now known as rdo		17:03
*** dims__ has quit IRC		17:03
stevemar	but then it was mentioned, why keep the roles and role_assignments separated, are they even useful if split apart	17:04
*** _cjones_ has joined #openstack-keystone		17:05
*** gyee has joined #openstack-keystone		17:05
*** ChanServ sets mode: +v gyee		17:05
morganfainberg	stevemar: bknudson it would be a lot of code if it was just moving stuff. I do agree that it would be more reviewable that way. (Sometimes moves are a lot of code)	17:07
morganfainberg	ayoung: don't propose to identity-api repo	17:07
morganfainberg	ayoung: ;)	17:08
*** EmilienM has quit IRC		17:08
bknudson	morganfainberg: that's easy to review but if it also includes removing a bunch of code from ProjectApi like in https://review.openstack.org/#/c/130954/35/keystone/assignment/backends/ldap.py I have no idea what's going on.	17:08
morganfainberg	bknudson: I absolutely agree	17:08
*** thedodd has quit IRC		17:09
*** chrisshattuck has quit IRC		17:09
*** EmilienM has joined #openstack-keystone		17:09
*** rm_work\|away is now known as rm_work		17:09
*** avozza is now known as zz_avozza		17:11
ayoung	morganfainberg, this is API level stuff	17:11
ayoung	I can remove the new values...those are there more to trigger discussions	17:11
morganfainberg	All api docs are in keystone-specs repo	17:11
morganfainberg	It's not a judgement of the proposal, just the wrong place. That's all	17:11
ayoung	I thought those were just for those with corresponding spevs	17:12
ayoung	specs	17:12
ayoung	OK...I can move it	17:12
morganfainberg	Nope. :)	17:12
bknudson	is there a way to disable push for the repo?	17:12
morganfainberg	I'm working to get identity-api mothballed to the attic asap. Meaning it'll disappear from gerrit in that location and off github.	17:12
morganfainberg	ayoung: the benefit is we now have a published and rendered (official) spec location we can link to, and not worry about GitHub being silly and changing url structure or something.	17:13
*** thedodd has joined #openstack-keystone		17:14
openstackgerrit	ayoung proposed openstack/keystone-specs: registry of token formats. https://review.openstack.org/142847	17:15
ayoung	morganfainberg, lbragstad ^^	17:16
morganfainberg	ayoung: cool thnx	17:16
*** ayoung is now known as ayoung-afk		17:16
*** diegows has joined #openstack-keystone		17:17
*** dims__ has joined #openstack-keystone		17:17
*** chrisshattuck has joined #openstack-keystone		17:18
*** thedodd has quit IRC		17:19
*** thedodd has joined #openstack-keystone		17:19
*** stevemar has quit IRC		17:23
*** stevemar has joined #openstack-keystone		17:23
*** ChanServ sets mode: +v stevemar		17:23
*** zz_avozza is now known as avozza		17:25
morganfainberg	ok i'm going to do the keystoneclient and middleware releases.	17:29
nkinder	morganfainberg: yay!	17:30
raildo	morganfainberg, :)	17:33
*** f13o has quit IRC		17:33
morganfainberg	well crap...	17:34
*** f13o has joined #openstack-keystone		17:34
morganfainberg	i may not be able to release this till i get home	17:34
*** lhcheng has joined #openstack-keystone		17:39
*** lhcheng has quit IRC		17:42
morganfainberg	releases have been cut, will send the email announcing it shortly	17:44
morganfainberg	keystoneclient 1.0.0 and keystonemiddleware 1.3.0 are/will be available very soon on pypi	17:44
*** gyee has quit IRC		17:48
*** lhcheng has joined #openstack-keystone		17:49
dstanek	bknudson: i agree, the split patch is really too big	17:52
*** hdd has joined #openstack-keystone		18:00
*** thedodd has quit IRC		18:03
*** thedodd has joined #openstack-keystone		18:04
*** thedodd has quit IRC		18:04
*** thedodd has joined #openstack-keystone		18:04
*** dims__ has quit IRC		18:08
*** thedodd has quit IRC		18:09
*** dims__ has joined #openstack-keystone		18:10
*** thedodd has joined #openstack-keystone		18:12
*** dims_ has joined #openstack-keystone		18:19
*** dims__ has quit IRC		18:20
*** nkinder has quit IRC		18:21
*** boris-42 has quit IRC		18:23
*** harlowja_away is now known as harlowja		18:23
*** dims_ has quit IRC		18:26
*** lhcheng_ has joined #openstack-keystone		18:28
*** dims__ has joined #openstack-keystone		18:28
*** lhcheng has quit IRC		18:31
*** aix has quit IRC		18:33
*** rushiagr is now known as rushiagr_away		18:37
*** boris-42 has joined #openstack-keystone		18:44
*** jungleboyj has quit IRC		18:46
*** afaranha has joined #openstack-keystone		18:56
*** lhcheng_ is now known as lhcheng		19:01
*** _cjones_ has quit IRC		19:02
*** ajayaa has quit IRC		19:03
*** amakarov is now known as amakarov_away		19:10
*** rushiagr_away is now known as rushiagr		19:14
*** ayoung-afk is now known as ayoung		19:21
*** rushiagr is now known as rushiagr_away		19:26
*** hdd has quit IRC		19:27
stevemar	dstanek, it was OK at one point	19:29
stevemar	but now, yeah, i'd have to agree it's too many things at once	19:29
*** _cjones_ has joined #openstack-keystone		19:32
*** nkinder has joined #openstack-keystone		19:34
morganfainberg	stevemar, i think it was ok when it was moving things.. after that it turned towards what it is now.	19:39
*** nkinder has quit IRC		19:42
openstackgerrit	Marek Denis proposed openstack/keystone: Scope federated token with 'token' identity method https://review.openstack.org/130593	19:48
stevemar	morganfainberg, yeah, shoulda put the newer stuff in a dependent PS	19:51
stevemar	err patch	19:52
morganfainberg	stevemar, ++	19:52
*** jungleboyj has joined #openstack-keystone		19:52
dstanek	stevemar: ++	19:53
stevemar	morganfainberg, dstanek can i get eyes on https://review.openstack.org/#/c/138253/	19:53
stevemar	morganfainberg, are you still on a flight?	19:53
dstanek	stevemar: shore	19:56
stevemar	dstanek, i think we finally ironed out the kinks with oslo config generator	19:57
stevemar	i think it's all ready to be used now	19:57
stevemar	and we can ditch that one we've been maintaining under tools/	19:57
dstanek	stevemar: i'm seeing a bunch of deleted files after running the update	20:08
stevemar	dstanek, the commit msg: Note: had to undo the deletes to config.py,	20:10
stevemar	importutils.py and gettextutils.py, since they are	20:10
stevemar	still being used	20:10
dstanek	ah hmm...	20:12
dstanek	stevemar: what's config.py?	20:13
stevemar	dstanek, oops openstack/common/config/*	20:14
*** raildo is now known as raildo_away		20:15
openstackgerrit	Dolph Mathews proposed openstack/keystone: create _member_ role as specified in CONF https://review.openstack.org/142897	20:15
*** jdennis has quit IRC		20:17
openstackgerrit	Dolph Mathews proposed openstack/keystone: create _member_ role as specified in CONF https://review.openstack.org/142897	20:18
dstanek	stevemar: do you want to fix the commit message to include config directory and readme? just left a comment on the review	20:22
stevemar	dstanek, yeah sure	20:22
openstackgerrit	Steve Martinelli proposed openstack/keystone: sync to oslo commit 1cf2c6 https://review.openstack.org/138253	20:22
stevemar	dstanek, better-ish?	20:23
*** RichardRaseley has joined #openstack-keystone		20:23
openstackgerrit	ayoung proposed openstack/keystone: default policy https://review.openstack.org/140113	20:31
morganfainberg	stevemar, my fight was delayed by ~3hrs	20:32
morganfainberg	stevemar, so... yeah i'm still on a flight :(	20:32
stevemar	morganfainberg, hehe	20:32
morganfainberg	stevemar, had to change planes... something was broken	20:33
morganfainberg	waited an hour to hear that	20:33
morganfainberg	then 2hrs to change planes	20:33
morganfainberg	stevemar, so currently somewhere over ... Indiana it looks like	20:33
stevemar	morganfainberg, great, so you can review https://review.openstack.org/#/c/138253/ and the dependent patches :P	20:34
morganfainberg	i'm looking at ti now actuallt	20:34
morganfainberg	y	20:34
morganfainberg	stevemar, there is a --online thing bknudson tends to like/do when he syncs the oslo incubator	20:35
morganfainberg	to put in the commit message - though i'd need to go look up the specifcs, but it gets a nice output of patches to stick in the commit msg	20:35
*** _cjones_ has quit IRC		20:36
stevemar	morganfainberg, but i'm not fancy like bknudson :P	20:38
morganfainberg	lol	20:39
*** harlowja has quit IRC		20:45
*** harlowja_ has joined #openstack-keystone		20:45
*** _cjones_ has joined #openstack-keystone		20:46
*** _cjones_ has quit IRC		20:52
*** _cjones_ has joined #openstack-keystone		20:53
*** _cjones_ has quit IRC		20:59
*** _cjones_ has joined #openstack-keystone		21:00
*** erkules_ has joined #openstack-keystone		21:01
*** topol has quit IRC		21:02
*** erkules has quit IRC		21:03
*** _cjones_ has quit IRC		21:05
*** nellysmitt has quit IRC		21:10
*** jasondotstar has quit IRC		21:10
*** afaranha has quit IRC		21:11
*** jasondotstar has joined #openstack-keystone		21:12
*** RichardRaseley has quit IRC		21:13
*** _cjones_ has joined #openstack-keystone		21:13
*** stevemar has quit IRC		21:16
*** _cjones_ has quit IRC		21:22
*** _cjones_ has joined #openstack-keystone		21:28
*** ayoung has quit IRC		21:29
*** diegows has quit IRC		21:29
*** _cjones_ has quit IRC		21:33
*** ayoung has joined #openstack-keystone		21:37
*** ChanServ sets mode: +v ayoung		21:37
*** _cjones_ has joined #openstack-keystone		21:38
morganfainberg	dstanek, lbragstad, ah moving to a descriptor based schema validator?	21:43
lbragstad	morganfainberg: dstanek I've been meaning to write down all the discussions we had on validation with respect to JSD but never got around to it.	21:45
lbragstad	there was a bunch of stuff/reviews around that idea though	21:46
morganfainberg	or well descriptor-like i don't think that is actually a descriptor as it's missing some magic methods	21:46
lbragstad	yeah	21:46
* morganfainberg is so ready to sit in traffic after this flight >.<		21:46
lbragstad	said no one ever!	21:47
dstanek	lbragstad: morganfainberg: i downloaded the reviews locally and abandoned them over the weekend - i'll update jsd and revive the reviews to see if anyone is interested	21:50
lbragstad	I like what can be done with JSD so far,	21:51
*** gordc has quit IRC		21:51
lbragstad	dstanek: didn't you say some others were already using it?	21:51
dstanek	lbragstad: i had at least 2 people tell me that they started using it, but it can't be in a significant way	21:52
dstanek	lots of downloads though - not sure how those are counted	21:53
* lbragstad was one of those		21:53
lbragstad	:)	21:53
*** atiwari has joined #openstack-keystone		22:08
*** thedodd has quit IRC		22:12
*** hichtakk has joined #openstack-keystone		22:13
*** timcline has quit IRC		22:25
*** dims__ has quit IRC		22:35
*** avozza is now known as zz_avozza		22:37
*** zz_avozza is now known as avozza		22:42
*** atiwari has quit IRC		22:53
*** david-ly_ has joined #openstack-keystone		22:58
*** packet has quit IRC		22:58
*** david-lyle has quit IRC		23:03
*** mitz has quit IRC		23:03
*** jamielennox\|away is now known as jamielennox		23:05
*** mitz has joined #openstack-keystone		23:06
jamielennox	morganfainberg: maybe i'm more excited than i should be as inflight wifi hasn't made it here yet - however i hope that "released from the skies" was in the announcement or notes for these releases	23:07
richm	"handed down from on high"	23:09
jamielennox	richm: better	23:10
*** nellysmitt has joined #openstack-keystone		23:11
jamielennox	morganfainberg: is there a patch for requirements to bump keystoneclient version?	23:13
morganfainberg	jamielennox, not yet	23:14
jamielennox	morganfainberg: ok - i can do that quickly	23:14
morganfainberg	jamielennox, was going to wait till i got home to do that unless someone else gets it first	23:14
morganfainberg	jamielennox, sure go for it! :)	23:14
*** jorge_munoz has quit IRC		23:15
*** nellysmitt has quit IRC		23:16
*** jdennis has joined #openstack-keystone		23:18
*** EmilienM is now known as EmilienM\|pto		23:21
*** r-daneel has quit IRC		23:44
*** chrisshattuck has quit IRC		23:49
*** gyee has joined #openstack-keystone		23:51
*** ChanServ sets mode: +v gyee		23:51
*** LinstatSDR has quit IRC		23:58
openstackgerrit	Merged openstack/keystone: sync to oslo commit 1cf2c6 https://review.openstack.org/138253	23:59

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!