Friday, 2017-01-13

« Thursday, 2017-01-12 Index Saturday, 2017-01-14 »
*** chlong has quit IRC00:01
*** stingaci has joined #openstack-keystone00:02
*** edtubill has joined #openstack-keystone00:03
*** lucas__ has quit IRC00:04
*** stingaci has quit IRC00:07
*** guoshan has joined #openstack-keystone00:09
*** guoshan has quit IRC00:14
*** agrebennikov has quit IRC00:19
morganstevemar: huh. supposedly authContext should have protected against changing user_id... but clearly it didnt00:29
morganoooh maybe it did00:29
ayoungmorgan, remove your change and run the test00:30
morganooor. it didn't.00:30
morganayoung: i just did doesn't get caught properly in the __setitem__ for AuthContext00:31
ayoungah...so not the first time someone thought of it.00:31
*** itisha has quit IRC00:32
morganayoung: yeah my test fails w/o special code to verify no change. plugins should not under any circumstance be able to change some values in AuthContext00:34
morganso something wonky is happening00:34
morganhttps://www.irccloud.com/pastebin/lhxZyDDY/00:35
morgan^ that should totally prevent my test from failing00:35
morgantests of setting directly on AuthContext show that is in-fact the case.00:36
morgani think.00:36
morganyeah direct test of AuthContext object shows correct behavior.00:37
morganbut the auth controller behaves differently00:37
*** thorst_ has joined #openstack-keystone00:38
*** jose-phillips has quit IRC00:40
*** thorst_ has quit IRC00:43
morganhuh. this is weird.00:43
*** hoangcx has joined #openstack-keystone00:48
*** tqtran has joined #openstack-keystone00:49
*** gyee has quit IRC00:54
*** edtubill has quit IRC00:56
*** thorst_ has joined #openstack-keystone00:59
*** thorst_ has quit IRC01:03
morganayoung: i think i found the issue...01:04
morganayoung: our tests suck01:04
ayoungmorgan, this is news?01:04
*** thorst_ has joined #openstack-keystone01:04
morganyeah we explicitly make a dict() in tests01:04
morganinstead of using the AuthContext object01:04
*** thorst_ has quit IRC01:04
morgan*facepalm*01:04
morganayoung: i'm inclined to require controllers.Auth.authenticate() to receive an AuthContext item not a dict01:06
morgani know that isn't pythonic...but...01:06
morganit would ensure we are actually testing things.01:06
*** liujiong has joined #openstack-keystone01:16
ayoungdicts are not pythonic01:16
ayoungmorgan, did I mention that I am working in golang now?01:17
morganayoung: you have.01:18
ayoungmorgan, it still does not have a preprocessor, so you can't do some essential things to avoid boilerplate code, but it is nice having a real type system again01:19
ayoungmorgan, headed into the office tomorrow.  Meeting with BU/MOC folks.  Hoping to have a team of students to work on the policy stuff for this semester01:21
morgancool01:23
*** ayoung has quit IRC01:28
*** guoshan has joined #openstack-keystone01:34
*** guoshan has quit IRC01:39
*** guoshan has joined #openstack-keystone01:40
openstackgerritMorgan Fainberg proposed openstack/keystone: Force use of AuthContext object in .authentcate()  https://review.openstack.org/41969301:51
*** adrian_otto has quit IRC01:52
*** edtubill has joined #openstack-keystone02:00
*** thorst_ has joined #openstack-keystone02:05
*** phalmos has quit IRC02:05
*** thorst_ has quit IRC02:08
*** markvoelker has quit IRC02:09
*** browne has quit IRC02:09
*** dave-mccowan has joined #openstack-keystone02:17
*** edtubill has quit IRC02:43
openstackgerritJaivish Kothari(janonymous) proposed openstack/keystonemiddleware: Fix logging usage from oslo.log  https://review.openstack.org/41972402:46
*** spzala has joined #openstack-keystone02:51
*** guoshan has quit IRC02:55
*** guoshan has joined #openstack-keystone03:02
*** edtubill has joined #openstack-keystone03:03
*** edtubill has quit IRC03:03
*** guoshan has quit IRC03:07
*** guoshan has joined #openstack-keystone03:07
*** tqtran has quit IRC03:09
*** adrian_otto has joined #openstack-keystone03:22
*** edtubill has joined #openstack-keystone03:23
openstackgerritJaivish Kothari(janonymous) proposed openstack/keystonemiddleware: use oslo.log instead of logging  https://review.openstack.org/41972403:24
*** thorst_ has joined #openstack-keystone03:35
stevemarmorgan: looks like some tests fail :(03:36
*** thorst_ has quit IRC03:37
morganstevemar: hmm.03:37
morganstevemar: weird. it passed locally03:38
morganstevemar: but it's agood thing anywhere that test is failing, we are not protecting against auth plugins providing inaccurant and inconsistent data03:38
morganstevemar: we can ditch the new test actually03:41
*** adrian_otto has quit IRC03:41
morganstevemar: do you think that error should be 500 or 401?03:52
morganstevemar: see rodrigods ' comment03:52
*** links has joined #openstack-keystone03:54
*** guoshan has quit IRC03:55
stevemarmorgan: def 40103:59
morganok fixed the errors (the dsvm error looks transient)04:01
morganwaitng for another local run04:01
morganwill push then04:01
*** spzala has quit IRC04:02
*** tqtran has joined #openstack-keystone04:09
*** kiran-r has joined #openstack-keystone04:09
*** tqtran has quit IRC04:11
*** nicolasbock has quit IRC04:16
stevemarwhy did i just find out about https://www.eventbrite.com/e/pycaribbean-2017-tickets-2562521270104:19
*** adriant has quit IRC04:23
*** dikonoor has joined #openstack-keystone04:24
*** guoshan has joined #openstack-keystone04:27
*** guoshan has quit IRC04:31
*** guoshan has joined #openstack-keystone04:32
*** guoshan has quit IRC04:37
*** markvoelker has joined #openstack-keystone04:52
*** masber has joined #openstack-keystone04:57
openstackgerritMerged openstack/keystone: Adds projects mapping to the mapping engine  https://review.openstack.org/41094904:58
*** lucas__ has joined #openstack-keystone05:09
*** adrian_otto has joined #openstack-keystone05:13
*** lucas__ has quit IRC05:15
openstackgerritSteve Martinelli proposed openstack/keystone: fix broken links  https://review.openstack.org/41976305:17
openstackgerritSteve Martinelli proposed openstack/keystonemiddleware: fix broken links  https://review.openstack.org/41976405:20
*** markvoelker_ has joined #openstack-keystone05:22
openstackgerritMorgan Fainberg proposed openstack/keystone: Force use of AuthContext object in .authentcate()  https://review.openstack.org/41969305:25
*** v1k0d3n has joined #openstack-keystone05:26
*** markvoelker has quit IRC05:26
*** dave-mccowan has quit IRC05:27
*** guoshan has joined #openstack-keystone05:37
*** thorst_ has joined #openstack-keystone05:37
*** adrian_otto has quit IRC05:40
*** guoshan has quit IRC05:42
*** thorst_ has quit IRC05:42
*** hoangcx has quit IRC05:47
*** stingaci has joined #openstack-keystone06:04
*** stingaci has quit IRC06:08
*** guoshan has joined #openstack-keystone06:09
*** hoangcx has joined #openstack-keystone06:10
*** v1k0d3n has quit IRC06:12
*** dikonoor has quit IRC06:16
*** hoangcx has quit IRC06:19
*** guoshan has quit IRC06:24
*** guoshan has joined #openstack-keystone06:24
*** oomichi has quit IRC06:25
*** oomichi has joined #openstack-keystone06:26
*** oomichi has quit IRC06:30
*** oomichi has joined #openstack-keystone06:31
*** kiran-r has quit IRC06:35
*** oomichi has quit IRC06:38
*** oomichi has joined #openstack-keystone06:40
*** richm has quit IRC06:41
*** oomichi has quit IRC06:55
*** oomichi has joined #openstack-keystone06:57
*** Jack_I has joined #openstack-keystone07:05
Jack_IFolks!07:05
Jack_IWho's broken newton?07:06
Jack_I:)07:06
Jack_Iopenstack endpoint list: __init__() got an unexpected keyword argument 'app_name'07:06
*** tqtran has joined #openstack-keystone07:11
*** tesseract has joined #openstack-keystone07:11
*** tqtran has quit IRC07:13
openstackgerritTovin Seven proposed openstack/keystone: Add DB operations tracing  https://review.openstack.org/29453507:23
*** voelzmo has joined #openstack-keystone07:23
*** nikhil has quit IRC07:28
*** hyakuhei has quit IRC07:30
*** dhellmann has quit IRC07:30
*** portdirect has quit IRC07:30
*** voelzmo has quit IRC07:31
*** nikhil has joined #openstack-keystone07:31
*** portdirect has joined #openstack-keystone07:32
*** dhellmann has joined #openstack-keystone07:35
*** thorst_ has joined #openstack-keystone07:39
*** hyakuhei has joined #openstack-keystone07:39
*** AlexeyAbashkin has joined #openstack-keystone07:39
*** voelzmo has joined #openstack-keystone07:41
*** thorst_ has quit IRC07:43
*** stingaci has joined #openstack-keystone07:51
*** stingaci has quit IRC07:55
*** guoshan has quit IRC07:55
*** guoshan has joined #openstack-keystone07:56
*** hyakuhei has quit IRC07:57
*** aloga has quit IRC08:05
*** aloga has joined #openstack-keystone08:05
*** hyakuhei has joined #openstack-keystone08:06
*** stingaci has joined #openstack-keystone08:10
*** guoshan has quit IRC08:21
*** guoshan has joined #openstack-keystone08:21
*** zzzeek has quit IRC09:00
*** zzzeek has joined #openstack-keystone09:00
*** mvk has quit IRC09:25
*** voelzmo has quit IRC09:29
*** voelzmo has joined #openstack-keystone09:50
*** mvk has joined #openstack-keystone09:56
*** sheel has joined #openstack-keystone09:56
*** hyakuhei has quit IRC09:58
*** hyakuhei has joined #openstack-keystone09:58
*** hyakuhei has quit IRC09:58
*** hyakuhei has joined #openstack-keystone09:58
*** voelzmo has quit IRC10:07
*** liujiong has quit IRC10:08
*** openstackgerrit has quit IRC10:18
*** voelzmo has joined #openstack-keystone10:26
*** guoshan has quit IRC10:31
*** richm has joined #openstack-keystone11:13
*** openstackgerrit has joined #openstack-keystone11:19
openstackgerritBoris Bobrov proposed openstack/keystone: Drop type in filters  https://review.openstack.org/41945111:19
openstackgerritXuepeng Ji proposed openstack/python-keystoneclient: Removes unnecessary utf-8 encoding  https://review.openstack.org/41988911:26
*** nicolasbock has joined #openstack-keystone11:40
*** thorst_ has joined #openstack-keystone11:40
*** thorst_ has quit IRC11:45
stevemarbreton & rodrigods since you two reviewed the keystone patch, how about the keystonemiddleware patch too? https://review.openstack.org/#/c/419764/11:45
stevemarwhos ready for some bug stomping action? :) lbragstad dstanek11:47
*** voelzmo has quit IRC11:47
*** openstackgerrit has quit IRC11:47
*** voelzmo has joined #openstack-keystone11:50
*** voelzmo has quit IRC11:50
*** voelzmo has joined #openstack-keystone11:52
*** voelzmo has quit IRC11:57
*** ayoung has joined #openstack-keystone11:57
*** ChanServ sets mode: +v ayoung11:57
bretoni'll be ready in 1.5h12:05
*** openstackgerrit has joined #openstack-keystone12:05
openstackgerritMerged openstack/keystone: fix broken links  https://review.openstack.org/41976312:05
stevemarbreton: sounds good to me12:18
*** voelzmo has joined #openstack-keystone12:19
*** thiagolib has joined #openstack-keystone12:23
*** catintheroof has joined #openstack-keystone12:30
*** catintheroof has quit IRC12:31
*** catintheroof has joined #openstack-keystone12:32
*** thorst_ has joined #openstack-keystone12:41
openstackgerritSteve Martinelli proposed openstack/keystone: update sample config for ocata release  https://review.openstack.org/41994912:58
*** voelzmo has quit IRC13:03
*** thorst_ has quit IRC13:05
*** thorst_ has joined #openstack-keystone13:09
*** asettle__ has joined #openstack-keystone13:19
*** asettle has quit IRC13:19
openstackgerritMerged openstack/python-keystoneclient: Removes unnecessary utf-8 encoding  https://review.openstack.org/41988913:22
*** Dinesh_Bhor has quit IRC13:29
openstackgerritMerged openstack/keystonemiddleware: fix broken links  https://review.openstack.org/41976413:30
*** asettle__ is now known as asettle13:33
*** voelzmo has joined #openstack-keystone13:37
*** AlexeyAbashkin has quit IRC13:37
*** AlexeyAbashkin has joined #openstack-keystone13:40
*** edmondsw has joined #openstack-keystone13:45
bretonwhat to fix?13:55
stevemarbreton: you had something cooking didn't you?13:55
stevemarbreton: mapping purge?13:56
stevemarbreton: morgan also proposed https://review.openstack.org/#/c/419693/13:56
stevemarif you want to take over an old patch: https://review.openstack.org/#/c/304489/13:56
stevemartheres a bug here: https://docs.google.com/spreadsheets/d/156q820cXcEc8Y9YWQgoc_hyOm3AZ2jtMQM3zdDhwGFU/edit?usp=sharing13:57
bretonstevemar: i had 2 things -- check the patch that adds a query to fetch users with expiring passwords and the issue with shadow users not getting added to a group13:57
breton*to any groups13:57
stevemarbreton: ++13:57
stevemarbreton: rderose has been doing some of the shadow user work13:58
bretonthe first one is a new feature and the second one is too big and relies on other patches13:58
stevemarbreton: https://review.openstack.org/#/q/topic:bug/164268713:58
bretonso i will probably take over https://review.openstack.org/#/c/304489/13:58
morganmornin'13:58
stevemarmorgan: you're up early13:58
stevemari mean, i was up at the same time, but because a little humanoid woke me13:59
morganyah. making breakfast :)13:59
stevemarbreton: for 304489, i think only the test needs to be moved (for now)13:59
*** jaugustine has joined #openstack-keystone14:02
stevemarbreton: we both commented on the same bug :P14:04
*** v1k0d3n has joined #openstack-keystone14:11
stevemarbreton: thanks for doing a bunch of bug triaging the last few months14:13
bretonstevemar: happy to help14:17
knikollahey all. i'll be missing the keystone office hours today. have to be offsite. :(14:17
*** jperry has joined #openstack-keystone14:18
*** edtubill has quit IRC14:23
*** Ephur has joined #openstack-keystone14:37
morganknikolla: it happens14:39
*** tqtran has joined #openstack-keystone14:39
*** tqtran has quit IRC14:41
dstanekknikolla: offsite doing something fun i hope14:42
*** chlong has joined #openstack-keystone14:45
*** markvoelker has joined #openstack-keystone14:51
*** markvoelker_ has quit IRC14:51
openstackgerritBoris Bobrov proposed openstack/keystone: Handling of 'region' parameter as None  https://review.openstack.org/30448914:51
*** spzala has joined #openstack-keystone14:51
*** edtubill has joined #openstack-keystone14:55
*** jperry has quit IRC14:56
*** jperry has joined #openstack-keystone14:57
*** sheel has quit IRC14:57
*** edtubill has quit IRC14:59
*** dave-mccowan has joined #openstack-keystone15:00
lbragstadstevemar o/15:04
*** jaosorior has joined #openstack-keystone15:05
bretonthat feel when forgot password from local postgres15:06
stevemarhehe15:06
*** jaosorior has quit IRC15:07
*** ayoung has quit IRC15:09
lbragstadhas anyone happen to see http://lists.openstack.org/pipermail/openstack-dev/2017-January/110060.html ?15:12
*** jaosorior has joined #openstack-keystone15:16
*** jaosorior has quit IRC15:19
*** jaosorior has joined #openstack-keystone15:22
*** dancn has quit IRC15:27
*** markvoelker has quit IRC15:28
*** chris_hultin|AWA is now known as chris_hultin15:29
*** edtubill has joined #openstack-keystone15:32
*** dancn has joined #openstack-keystone15:40
*** phalmos has joined #openstack-keystone15:45
lbragstadif anyone is looking for a relatively straight forward bug to work on - https://bugs.launchpad.net/keystone/+bug/1656026 might be a good candidate15:48
openstackLaunchpad bug 1656026 in OpenStack Identity (keystone) "Exception don't follow a punctuation convention" [Undecided,New]15:48
*** mvk has quit IRC15:51
edtubilllbragstad: So I think I figured out what was happening to my federation environment from yesterday. It seems that validating scoped federated tokens won't work for UUID tokens but it works for fernet tokens. I switched to fernet tokens and federated token validation started working again :)15:51
*** agrebennikov has joined #openstack-keystone15:52
lbragstadedtubill huh...15:52
lbragstadedtubill that's concerning15:53
lbragstadcc stevemar dstanek ^15:53
edtubilllbragstad: So I guess I'll file a bug for someone to verify?15:53
*** markvoelker has joined #openstack-keystone15:54
lbragstadedtubill yeah15:54
lbragstadedtubill and the *only* change you made was switching `keystone.conf [token] provider = fernet` right?15:55
*** markvoelker_ has joined #openstack-keystone15:55
openstackgerritRodrigo Duarte proposed openstack/keystone: Cascade delete federated_user fk  https://review.openstack.org/41590615:55
*** markvoelker has quit IRC15:55
edtubillAnd I ran that command `keystone-manage fernet_tokens`15:55
*** spzala has quit IRC15:55
lbragstad`keystone-manage fernet_setup`?15:56
*** spzala has joined #openstack-keystone15:56
edtubilloh yeah that one... couldn't remember it exactly.15:56
lbragstadcool - ok15:56
lbragstadrderose o/15:56
rderoselbragstad: morning15:57
lbragstadrderose morning!15:57
lbragstadrderose do you know if we removed support for federated token types?15:57
rderoselbragstad: no, not yet15:57
lbragstadok15:57
*** phalmos has quit IRC15:57
lbragstadedtubill and just to confirm, you used a devstack installation, right?15:58
edtubillyup with saml15:59
lbragstadedtubill did you setup the federated bits by hand or did you rely on some sort of automation (through devstack/ansible/etc..)?15:59
morganrderose: allo!16:00
*** spzala has quit IRC16:00
edtubillI have a vagrant setup that runs a bash script to setup the environment.16:00
rderosemorgan: allo!16:01
edtubillso it runs devstack and then a bash script to setup federation.16:01
*** spzala has joined #openstack-keystone16:01
lbragstadedtubill got it16:02
lbragstadedtubill well - i'm going to start standing up an environment16:03
morganstevemar: i cna't get reno to generate a release note thing for me16:03
morganthe venv wont even build16:04
morgansomething wrong locally on my machine16:04
lbragstadmorgan that doesn't sound good16:04
morganyeah it's just something wrong here.16:04
lbragstadedtubill let me know if/when you file the bug so that I can track what I find there, too16:04
morganlbragstad: i can hand add a reno for my bug fix16:05
morganbut it's not going to be auto-generated16:05
lbragstadmorgan what change?16:05
morgan(honestly, i really dislike the "generate a reno stub" workflow)16:05
morganthe authcontext fix16:05
lbragstadmorgan if you want to push what you have, I can add the release note for you16:05
lbragstadah16:05
morgani need to supply a typo fix16:05
morganbut otherwise it just needs the reno16:05
morganlike i said, i can do it by hand16:06
morgannbd16:06
lbragstadmorgan https://review.openstack.org/#/c/419693/16:06
morganyah16:06
lbragstadmorgan do release notes need to be auto generated?16:06
morgannah. just easier than needing to hand-build a uuid-thing name16:07
lbragstadmorgan actually - I think what i meant to ask was "when release notes are built, is the releasenotes/notes/ directory just parse:16:07
lbragstadparsed*?16:07
morganyah afaik16:07
lbragstadah - ok16:07
lbragstadedtubill were you using a specific distro?16:08
*** voelzmo has quit IRC16:08
*** voelzmo has joined #openstack-keystone16:08
*** voelzmo has quit IRC16:08
*** phalmos has joined #openstack-keystone16:10
bretonhow do i run mysql upgrade tests on a live database?16:11
bretonthere was some username/password that i was expected to use16:12
lbragstadbreton yep16:12
lbragstadbreton trying to find the link16:13
openstackgerritMorgan Fainberg proposed openstack/keystone: Force use of AuthContext object in .authentcate()  https://review.openstack.org/41969316:14
morganlbragstad: ^16:14
lbragstadmorgan awesome16:15
lbragstadmorgan you had some comments on https://review.openstack.org/#/c/285315/416:15
bretonopenstack_citest16:15
*** adrian_otto has joined #openstack-keystone16:16
morganlbragstad: hehe16:16
lbragstadbreton yeah - that's it16:16
morganlbragstad: sigh. i think i'm giving up on taking over python-memcached and going to spin a replacement patch for us16:16
lbragstadbreton that's a page documenting everything for it, but I can't seem to find it16:17
*** stingaci has quit IRC16:17
morganit's been really hard to coordinate the handover from the current maintainer.16:17
morgani think i can do it all with pymemcached now or memcachedclient16:17
lbragstadmorgan what's your replacement patch going to be?16:17
morganpymemcached being the clear better choice.16:17
morganit's just going to change oslo.cache to lean on pymemcached first16:17
morgani also need to catch up with zzzeek and check on dogpile.cache and get back involved there16:18
lbragstadah - sure16:18
lbragstadthat makes sense16:18
zzzeekmorgan: woop!16:18
morganthere is some pending cleanup patches I owe him.16:18
morganzzzeek: ;)16:18
morganzzzeek: thankfully dogpile is nice and stable16:18
lbragstadmorgan but oslo.cache will have a direct dependency on pymemcached, right?16:18
* lbragstad loves stable 16:19
morganlbragstad: well possibly16:19
morganlbragstad: haven't gotten that far. need to see what it does16:19
morganbut in short i want to build pymemcached backend for dogpile first, then lean on it as the default in oslo.cache16:19
lbragstadsure16:19
morganthen we can just divorce ourselves from python-memcached in openstack16:19
morgansince python-memcached is sortof (at best) py3 workable16:20
morganand the explicit thread.local leaning is bad news16:20
lbragstadmorgan i know i've asked this before - but what was the reason for conditional importing of python-memcached?16:20
morgani think we can also untangle dogpile.cache from leaning on it.16:20
morganlbragstad: deployers got cranky about the package16:20
morganand it was buggy/weird/hard-to-work-with16:20
lbragstadmorgan ah16:21
morganalso packagers disliked it (hi zigo! :) )16:21
lbragstadmorgan are we sure pymemcached doesn't have those problems16:21
lbragstad?16:21
morganyes16:21
lbragstadcool16:21
morganit is very good code16:21
morganand maintained by pinterest16:22
morganif we have issues i'll go chase down jogo16:22
morgan;)16:22
openstackgerritRon De Rose proposed openstack/keystone: WIP - Add domain_id to the user table  https://review.openstack.org/40987416:23
lbragstadpymemcached is?!16:25
morganyep16:26
lbragstadhuh - nice16:26
morganhttps://github.com/pinterest/pymemcache16:26
lbragstadmorgan so - another dumb question, if we wanted to use that instead of python-memcached, all we'd really need to do is get oslo.cache using it?16:28
*** stingaci has joined #openstack-keystone16:28
morganand change the default(s) in either oslo.cache or the overrides we set16:29
morganpreferably just switch oslo.cache to lean on pymemcache impl instead for the next (Pike) release16:30
lbragstadbecause most things (with the exception of keystonemiddleware) should be using oslo.cache?16:30
morganyep16:30
lbragstadcool16:30
morganand ksm should be too16:30
morganftr16:30
lbragstadso - keystonemiddleware should be16:30
bretonoh these talks on dropping python-memcached again16:30
bretonwhat issues does it cause now?16:30
morganbreton: yeah but it's much easier now16:30
*** phalmos has quit IRC16:30
morganbreton: i've been trying to take it over so we can maintain it16:30
morganit still isn't really py3 friendly and still leans too much on thread.local16:30
lbragstadmorgan gotcha - is there any tribal knowledge around why ksm doesn't use oslo.cache now?16:31
morganwe want to just dump it for those reasons16:31
morganlbragstad: uhm... i think it is related to thread.local issues with custom wsgi impls16:31
morganbut i can work around that now.16:31
morganthe fact that most projects can't be run under uwsgi or apache is the issue.16:31
lbragstadmorgan so ksm uses python-memcached directly to get around those issues?16:32
morganlbragstad: as i recall that was why i didn't convert it to dogpile16:32
morganbut oslo.cache makes this easier16:32
*** stingaci has quit IRC16:32
morganalso we dont memoize in ksm16:33
lbragstadmorgan does ksm rely on thread.local for certain things?16:33
morganwhich meant it had a lot of extra code loaded in.16:33
morganlbragstad: no. but since eventlet is still a thing16:33
morganwe need thread.locals to make it "functional" in base configs where a pool is not configured16:33
morganit's "wonky"16:33
lbragstadoh - because some services don't run in apache16:33
morganbasically, no one spent the time to convert it yet16:33
morganand caching is hard(tm)16:34
lbragstader - a non-eventlet environment16:34
lbragstadcaching is hard..16:34
morganit's one of the two hardest problems in compture science16:34
morgancaching, naming things, and off-by-one errors16:34
edtubilllbragstad: I was using ubuntu trusty6416:34
lbragstadmorgan don't forget revocation16:34
lbragstadedtubill cool16:35
morgandolphm: i have to brag a little today. cooked eggs in my carbon steel pan... better non-stick seasoning than the "non-stick" pans16:35
morgandolphm: literally wiped the food out of the pan after cooling. nothing left over ^_^16:35
morganlbragstad: ^ carbon steel > all other pans (for skillets/crepe pans/similar shape)16:36
lbragstadmorgan s/carbon steel/cast iron/16:36
morganthough i want to upgrade to the "de Buyer" pans.16:36
lbragstad;)16:36
morganlbragstad: if you like cast iron, you'll love carbon steel16:36
morgani have both16:36
*** pcaruana has joined #openstack-keystone16:36
morgani use carbon steel far far more often16:36
lbragstadmorgan yeah?16:37
morgan(very similar, but carbon steel tends to be 25% lighter)16:37
morgancarbon steel only comes in a few shapes though16:37
morganbut right now only de Buyer is really making quality ones16:37
morganalso the handles there are riveted instead of spot welded.16:37
morganseems like the other pans (like i have) are having some QC issues with the welding16:38
morganlbragstad: but yeah, get some carbon steel skillets. they really are amazing16:38
*** chlong has quit IRC16:38
morgan"de Buyer Mineral B Element" is  what you should look at16:39
morganmaybe $50-$100 per pan, really not bad.16:39
morganfor the larger ones16:39
lbragstadoooof16:39
morganlike 15-17" diameter16:39
morganthe small ones are usually in the $40 range16:39
morganor so16:39
morganand these are the best ones I've seen16:40
morganso you pay a bit premium16:40
lbragstadi will say that is one of the biggest reason why I like cast iron, you can usually find them for dirt cheap16:40
lbragstadand with a little sand paper and some sweat - you can restore them16:41
morgan$75 for a 17" skillet is pretty reasonable (because shipping and such)16:41
morganalso, if you have burners to use a 17" skillet on...16:41
*** stingaci has joined #openstack-keystone16:41
morgani mena... those are gigantic16:41
lbragstadmorgan right... even 15" skillets are hard to cook with if you want the entire thing hot16:41
morganlbragstad: yeah carbon steel is the same, worst case you scrub them down with seriously abrasive stuff and they are restorable16:42
morganas long as rust hasn't eaten through them16:42
bknudsonI cooked up pork loin using sous vide last night and it was delicious16:42
morganniiiiice16:42
lbragstadbknudson you've taken up sous vide?!?!16:42
bknudsonyes, it's easy. just need the cooker16:42
*** chlong has joined #openstack-keystone16:43
morganwe did stuffed chicken breast a few nights ago16:43
morganturned out amazing16:43
morgansear it with some panko then toss the whole skillet in the oven16:43
morganand then nom.16:43
* lbragstad has never tried sous vide16:43
morgansous vide is awesome16:43
morganbut the cooker is important16:43
lbragstadhmmm16:43
morgani don't have room for the cooker/storing it16:44
morganor i'd consider it16:44
morganwill have to wait until i have a bigger kitchen16:44
bknudsonyou can get a sous vide heater that's just a wand.16:44
morganbknudson: not really the same imo16:44
lbragstadbknudson so you can do sous vide in your tub?16:44
lbragstador your sink?16:44
*** lamt has joined #openstack-keystone16:45
lbragstador any apparatus that holds water16:45
bknudsonyou can do it in a pot16:45
bknudsonyes, or a plastic tub16:45
morganlbragstad: lol nah in a big pot16:45
morganbknudson: ick in a plastic tub... just no :P16:45
* morgan also needs a giant jar boiling pot again16:45
bknudsonI got a gourmia like this: http://greatestcookers.com/gourmia-gmc650p-11-in-1-sous-vide-multi-cooker-purple-stainless-steel-lcd-display-multiple-cooking-options-bonus-accessories-cookbook/16:45
morganbut again, no room16:45
bknudsonsince I didn't have a slow cooker already16:46
lbragstadI'm a fan of a good sear on whatever i'm cooking16:46
morganbknudson: yeah those are nice16:46
bknudsonyou sear it on a pan after you take it out of the water16:46
bknudsonotherwise it looks like a turd16:46
morganbknudson: not crazy or too fancy, just basic and functional16:46
lbragstadbknudson lol - you're not selling it16:46
lbragstad;)16:46
bknudsonthe result is delicious16:47
*** jose-phillips has joined #openstack-keystone16:47
morgannext big task for me is to start making my own bread, and soup stock.16:47
lbragstadi eat with my eyes :)16:47
bknudsonit looks good after it's done on the stove.16:47
morganbknudson: ++16:47
lbragstadmorgan we make all of our own bread16:47
morganlbragstad: yeah i have a kitchen i can do that now.16:47
lbragstadmorgan and by we I mean my wife16:48
morganlbragstad: so going to start doing it. debating on a sourdough starter16:48
lbragstadmorgan it can be alot of work - but it's worth it16:48
*** chlong has quit IRC16:48
morganlbragstad: hehe my gf and I share the cooking16:48
morganher dad is an amazing chef.16:48
morganso we are getting some awesome recipes16:48
morganwe're going to start making east-coast style bagels ;)16:49
lbragstadmorgan don't hesitate to send some my way ;)16:49
morganand even our own english muffins.16:49
morganand work up to home made croissants16:49
morganand pastries16:49
*** AlexeyAbashkin has quit IRC16:49
* lbragstad drools 16:49
morganlbragstad: for sure16:49
dolphmmorgan: i still have that one pan you recommended in my amazon saved items -- trying to justify getting rid of another one to buy it16:50
morgandolphm: hehe get the de buyer version now16:50
morgandolphm: the one i got a year ago is having serious QC issues now16:50
lbragstadlol16:50
morganthe welds don't hold up16:50
morgande buyer is riveted16:50
lbragstaddolphm if you want to off load any cast iron, you know where to send it16:50
morganbasically they got recommended by 2 or three big "kitchen" article places16:51
dolphmlbragstad: my cast iron dutch oven is the prime candidate16:51
morganand ramped up production and things got bad :(16:51
morganoooh I have a williams sonoma gift card somewhere...16:51
lbragstaddolphm prime as in prime to get rid of?16:51
morgani should use that16:51
dolphmmorgan: oh, boo16:51
dolphmlbragstad: yes16:51
morgandolphm: de buyer stuff is ~+$10-15 more16:52
morganand way higher quality16:52
dolphmlbragstad: it weighs like 35 pounds empty, and it's not easy to wipe out because the lid is spiked16:52
morganjust get the mineral b element16:52
morgandolphm: oh i'd never use that as you just described =/16:52
*** lamt has quit IRC16:52
lbragstaddolphm 5 qt?16:52
lbragstador 7?16:52
dolphmlbragstad: i would have estimated 616:53
dolphmlbragstad: probably 5-616:53
morganlbragstad: i'd guess 7 with 35lbs16:53
dolphmit's the same size as my 6 quart, but the interior capacity might be less16:53
morgandolphm: ahh16:53
dolphmactually, maybe it is 7 ... it's probably taller too16:53
morganyeah if it isn't "easy to clean", I tend to stop using the thing16:53
dolphmmorgan: yeah... if anything splatters on the lid it's no fun16:54
morgani have a cast iron (with enamel on the bottom for ease of cleaning) but it is a PITA to clean because the shape... i stopped using it16:54
lbragstadthose le cruset dutch ovens are awesome...16:54
morgani have things that are better suited for the ame thing.16:54
morganlbragstad: they sure do cook things well.16:55
dolphmtype of lid: http://thumbs.worthpoint.com/zoom/images2/1/0614/19/vintage-lodge-10cf2-12-cast-iron-deep_1_2c66a340484ece379c5e9c4b80d20642.jpg16:55
lbragstadi've been trying to come up with an excuse to get one16:55
morgandolphm: #nope16:55
morgan:P16:55
dolphmtheoretically they return condensed moisture back to the food, but ... it seems more like a good idea than a useful feature16:56
morgani just reseasoned the carbon steel... i think i'm up to ~10-15 nice layers on it and the thing is almost black colored now. nothing sticks to it. so great16:56
lbragstaddolphm i've wondered if you really need that many spikes to achieve that though16:57
dolphmlbragstad: exactly16:57
morganthough the 15" one i have i have to oven season, i can't heat it enough on the stove to properly season it16:57
morganlbragstad: i also want a stove with a french burner16:57
lbragstaddolphm even half the amount would make that easier to clean16:57
dolphmlbragstad: i bet one in the middle with a properly shape to the interior of the lid would do a better job16:57
morgandolphm: ++16:57
lbragstadthe spacing is just dense enough to be a PITA16:57
morgandolphm: probably16:57
dolphmlbragstad: ++16:57
*** stingaci has quit IRC16:59
*** chlong has joined #openstack-keystone16:59
lbragstaddolphm I don't think the le cruset dutch oven lids have that concept17:00
lbragstadbut i also can't find a picture17:00
morganlbragstad: they dont afaik17:02
stevemarthis hackathon has turned into a cookout17:03
*** phalmos has joined #openstack-keystone17:03
lbragstadyou know - that would be an awesome idea for a "team bonding event"17:03
morganstevemar: nothing wrong with it17:04
morganlbragstad: ++17:04
lbragstadmorgan dolphm and I talked about doing a seafood boil for a team event once or twice17:06
*** chlong has quit IRC17:09
*** phalmos has quit IRC17:11
morganlbragstad: hehe17:13
lbragstadmorgan i even built a tool for it ;) https://github.com/lbragstad/boiler17:14
morganlol nice17:15
openstackgerritMerged openstack/keystone: update sample config for ocata release  https://review.openstack.org/41994917:16
*** lamt has joined #openstack-keystone17:18
openstackgerritSamuel Pilla proposed openstack/keystone: Update endpoint api for optional region_id and extras  https://review.openstack.org/42008517:20
lbragstadrodrigods ping? is there a way to use the functional keystone plugins to setup federation stuff with devstack?17:20
*** asettle has quit IRC17:23
*** adrian_otto has quit IRC17:24
openstackgerritSteve Martinelli proposed openstack/keystone: Force use of AuthContext object in .authentcate()  https://review.openstack.org/41969317:29
*** tqtran has joined #openstack-keystone17:33
openstackgerritSamuel Pilla proposed openstack/keystone: Update endpoint api for optional region_id  https://review.openstack.org/42008517:33
*** mvk has joined #openstack-keystone17:38
*** stephen-la has quit IRC17:48
rodrigodslbragstad, yep, we already do this in the v3-only job17:53
lbragstadrodrigods sweet17:53
rodrigodslbragstad, and now that https://review.openstack.org/#/c/415906/ is going to merge17:53
lbragstadi just got done installing a new devstack17:53
rodrigodseverything should work fine17:53
rodrigodslbragstad, did you enable the keystone-saml2-federation service?17:54
lbragstadcool17:54
lbragstadrodrigods i didn't17:54
lbragstadrodrigods do i have to start over?17:54
lbragstadrodrigods also - i'm looking for docs on the process but wasn't able to find any17:54
rodrigodslbragstad, so you need to enable the keystone plugin and the keystone-saml2-service in local.conf17:54
lbragstadrodrigods ok17:55
rodrigodslbragstad, https://github.com/openstack-infra/project-config/blob/master/jenkins/jobs/keystone.yaml#L101-L10217:55
rodrigodslbragstad, so you put the following lines in your local.conf prior stack.sh17:55
lbragstadah - cool17:55
lbragstadrodrigods so that is going to set up keystone to be a service provider, complete with idp, mapping, etc... right?17:56
rodrigodslbragstad, http://paste.openstack.org/raw/594872/17:56
rodrigodslbragstad, yes... the idp is testshib17:56
lbragstadrodrigods so - that is what goes in local.conf?17:56
rodrigodslbragstad, http://paste.openstack.org/raw/594872/17:56
lbragstadrodrigods is this documented anywhere?18:00
lbragstadlike - for developers?18:00
rodrigodslbragstad, good question18:00
rodrigodsi don't think so heh18:01
lbragstadrodrigods :)18:02
lbragstadrodrigods "psh - what docs? we have docs?"18:02
rodrigods:)18:02
lbragstadrodrigods i also assume when you do this you trim the enabled services for devstack?18:03
rodrigodslbragstad, never executed it enabling another service18:03
stevemarleaving for lunch soon, please leave me a list of reviews to look over! :)18:04
lbragstadrodrigods http://paste.openstack.org/raw/594872/ is your local.conf right?18:04
rodrigodslbragstad, hmm i have a [localrc] there i think18:05
lbragstadoh - ok18:05
lbragstadrodrigods http://cdn.pasteraw.com/g0wabxe4kjio8o8q82udj1ybtm0s2p118:06
rodrigodslbragstad, my local.conf18:06
rodrigodslbragstad, http://paste.openstack.org/raw/594876/18:07
lbragstadrodrigods so once you have that you run 'stack.sh'?18:09
rodrigodslbragstad, yes18:09
lbragstadrodrigods sweet - thanks!18:10
lbragstadrodrigods testing it out now18:10
rodrigodslbragstad, ++ let me know if you have more questions18:10
lbragstadrodrigods will do18:10
*** links has quit IRC18:12
lbragstadrodrigods going to use https://etherpad.openstack.org/p/keystone-tempest-federated-setup as a notepad18:12
lbragstadthen - based on ^ I'll propose a doc patch18:12
rodrigodslbragstad, awesome :)18:13
lbragstadrodrigods feel free to brain dump there18:13
rodrigodslbragstad, devstack still recognizes localrc?18:13
lbragstadrodrigods doesn't look like it18:14
lbragstadfixed18:14
rodrigodscool18:14
lbragstadcc dstanek ^18:14
lbragstaddstanek we're going to use https://etherpad.openstack.org/p/keystone-tempest-federated-setup to gather notes on setting up federation using the keystone_tempest plugin18:14
rodrigodslbragstad, the plugin also sets up a basic env for the tests: https://github.com/openstack/keystone/blob/master/devstack/lib/federation.sh#L90-L9818:16
rodrigodslbragstad, and... sets some settings used by the tests: https://github.com/openstack/keystone/blob/master/devstack/lib/federation.sh#L15-L2918:16
lbragstadrodrigods cool18:16
*** browne has joined #openstack-keystone18:16
rodrigodsif you need to add anything for the shadow mapping tests18:16
lbragstadrodrigods the only thing would probably be a new mapping18:17
rodrigodslbragstad, the mapping we build in the test itself...18:17
rodrigodslet me find here18:17
rodrigodslbragstad, https://github.com/openstack/keystone/blob/master/keystone_tempest_plugin/tests/scenario/test_federated_authentication.py#L58-L8618:18
lbragstado18:18
lbragstadok18:18
lbragstadsweet18:18
lbragstadthat makes sense18:18
*** spzala has quit IRC18:18
rodrigodslbragstad, i think you can basically reuse the class there and add verifications that makes sense for shadow mapping18:18
lbragstadcool18:19
lbragstadrodrigods thanks!18:19
*** spzala has joined #openstack-keystone18:22
*** pcaruana has quit IRC18:26
*** Jack_V has joined #openstack-keystone18:28
*** Jack_I has quit IRC18:32
*** Jack_V has quit IRC18:37
*** pcaruana has joined #openstack-keystone18:39
openstackgerritMerged openstack/keystone: Cascade delete federated_user fk  https://review.openstack.org/41590618:40
*** Jack_I has joined #openstack-keystone18:40
rodrigodsbreton, ^ thanks for testing this18:41
*** Jack_I has quit IRC18:52
*** tesseract has quit IRC18:53
*** chris_hultin is now known as chris_hultin|AWA18:56
*** openstack has joined #openstack-keystone18:57
*** chris_hultin|AWA is now known as chris_hultin18:58
*** pcaruana has quit IRC19:02
*** phalmos has joined #openstack-keystone19:05
kfox1111can a username or a domain name contain a '\' ?19:09
*** jamielennox is now known as jamielennox|away19:12
*** chlong has joined #openstack-keystone19:14
*** adrian_otto has joined #openstack-keystone19:15
rodrigodskfox1111, yes19:16
kfox1111rodrigods: k. thanks.19:18
kfox1111any reserved characters?19:18
*** asettle has joined #openstack-keystone19:19
*** markvoelker_ has quit IRC19:19
*** markvoelker has joined #openstack-keystone19:20
*** markvoelker has quit IRC19:25
*** phalmos has quit IRC19:38
*** phalmos has joined #openstack-keystone19:40
*** jdennis has joined #openstack-keystone19:41
*** jdennis1 has quit IRC19:41
*** adrian_otto has quit IRC19:43
*** spzala has quit IRC19:45
*** Guest87783 is now known as med_19:47
*** med_ has joined #openstack-keystone19:47
*** med_ is now known as medberry19:47
*** openstackstatus has quit IRC19:57
*** openstack has joined #openstack-keystone19:57
*** openstackstatus has joined #openstack-keystone19:58
*** ChanServ sets mode: +v openstackstatus19:58
*** stingaci has joined #openstack-keystone19:59
*** david-lyle is now known as baling-wire20:00
morganby default, no20:02
morgankfox1111: we have discussed requiring web-safe20:02
morganbut ... we haven't implemented that iirc for users20:02
morgan(it is optional for projects iirc)20:03
morganmaybe domains have optional web-safe requirement20:03
morgani know we did it for one of the resources20:03
morganlbragstad, rodrigods: should be a quick +3 https://review.openstack.org/#/c/419693/20:04
*** stingaci has quit IRC20:04
kfox1111morgan: k.20:11
kfox1111the k8s folks are trying to munge domain/user/password authentication in again rather then do token based.20:11
kfox1111I didn't think there was a safe way to put domain/user into one field.20:12
openstackgerritRon De Rose proposed openstack/keystone: WIP - Add domain_id to the user table  https://review.openstack.org/40987420:16
morgankfox1111: there isn't, but it could be represented as json... each time20:18
*** iurygregory has quit IRC20:18
kfox1111they are trying to make their existing username/passowrd based, server side authentication work.20:21
kfox1111it only takes two fields from users, 'username' and 'password'.20:21
kfox1111json would work, but really ugly for a user to type.20:21
kfox1111I keep telling them its a bad model alltogether though.20:21
*** spzala has joined #openstack-keystone20:21
kfox1111they should just pass a keystone token from the client to the server and have the server validate the token with keystone.20:22
kfox1111and just call out to 'openstack token issue' from kubecli to get a token.20:22
kfox1111safer, more flexible, and works with the config piplelines already established for other openstack cli's.20:22
portdirectkfox1111: they support openIDC?20:23
portdirect^^ thats a question :)20:23
kfox1111not sure.20:23
kfox1111but they seem to think keystone is something you just authenticate against.20:24
kfox1111not that keystone is really about multitenant authorization.20:24
portdirectyeah - but at the moment k8s is not really following keystones model20:24
portdirect:(20:24
openstackgerritMerged openstack/keystone: Changed 'Driver' reference to 'TokenDriverBase'  https://review.openstack.org/41966320:25
kfox1111portdirect: pm20:25
*** openstackstatus has quit IRC20:27
*** openstack has joined #openstack-keystone20:27
stevemarbreton: still around?20:28
*** openstackstatus has joined #openstack-keystone20:28
*** ChanServ sets mode: +v openstackstatus20:28
stevemarrderose: you are the king of patch sets20:28
stevemarrderose: you must have been that guy who hit ctrl+s to save his word doc every 5 minutes :P20:29
morganstevemar: this looks like much much too big of a try-block20:39
morganhttps://github.com/openstack/keystone/blob/master/keystone/auth/controllers.py#L425-L45820:39
*** raildo has quit IRC20:41
openstackgerritGage Hugo proposed openstack/keystone: Exclude 'keystone_tempest_plugin' in doc build  https://review.openstack.org/42017120:42
gagehugo^ that might be an iffy change20:42
*** chris_hultin is now known as chris_hultin|AWA20:42
rderosestevemar: that's me!20:44
rderoseI'm that guy :)20:44
*** jaosorior has quit IRC20:45
*** jaosorior has joined #openstack-keystone20:45
rderosebtw stevemar, I think that issue we had where we needed the repo files to be unique has raised it's ugly head again:20:45
morgangagehugo: that isa fine change20:45
rderosehttp://logs.openstack.org/74/409874/29/check/gate-keystone-python27-db-ubuntu-xenial/d2a60fd/testr_results.html.gz20:45
morgangagehugo: i don't see a reason we should include the tempest plugin as an api doc20:45
rderosestevemar: http://paste.openstack.org/show/594895/20:46
morgangagehugo: +1, with comment to consider +2 once jenkins weighs in... erm zuul.20:46
gagehugomorgan: yeah I was curious about that, whether to live with the warnings & having incomplete docs vs just living with the issues20:46
morganstevemar: do we consider the auth plugin interface (keystone server side) a contract since it loads from entry points?20:47
rderosestevemar: I'm calling expand in the test, but it's failing from a file in contract. anyway, I'll keep playing with this.20:47
morganstevemar: looking at changing how plugins respond when succeeding (aka, they don't actually set data in the authcontext itself.20:47
morganstevemar: the .authenticate method would be responsible for tracking success/fail in AuthContext20:48
morganand building off the response expecting a result of like: NamedTuple(Return=Success|Fail|Insufficient, Error=IfExceptionThenException, ResponseBody=ResponseData)20:49
morganrderose: ^ if you have any thoughts, that would be welcome20:49
morganthen the .authenticate method would bundle failure info and the wrapper authenticate_for_token would be strictly responsible for raising failures (Unauthorized, Insufficient Auth Methods, etc)20:50
*** phalmos has quit IRC20:51
morganlbragstad: ^ your input welcome as well20:52
dstanekmorgan: we no longer have code contracts right?20:53
*** Jack_I has joined #openstack-keystone20:55
morgandstanek: no idea20:58
morgandstanek: i am asking on this front20:58
morgandstanek: if not, sure this is easy20:58
morganit's a bit weird to assume the plugin changes AuthContext as i'm looking over the code, when we could have just returned values directly to .authenticate and let it muck with AuthContext with more control.20:59
dstanekmorgan: if we could get rid of side effects i'd be super happy21:00
morgandstanek: i think we can. we don't need to pass AuthContext to the plugins21:01
morganwe can just expect a named tuple return and we can set the values directly21:02
*** lucas__ has joined #openstack-keystone21:02
morgani'm not going to move the whole auth path to functional to start, but it'll be easier to move that way with each step21:02
*** Jack_I has quit IRC21:03
*** browne has quit IRC21:07
*** thiagolib has quit IRC21:08
*** browne has joined #openstack-keystone21:09
*** rha has quit IRC21:14
*** adrian_otto has joined #openstack-keystone21:16
*** adrian_otto has quit IRC21:22
*** chris_hultin|AWA is now known as chris_hultin21:31
*** chris_hultin is now known as chris_hultin|AWA21:32
openstackgerritRon De Rose proposed openstack/keystone: WIP - Add domain_id to the user table  https://review.openstack.org/40987421:33
*** lucas__ has quit IRC21:39
openstackgerritGage Hugo proposed openstack/keystone: Corrected punctuation on multiple exceptions  https://review.openstack.org/42018721:40
*** diazjf has joined #openstack-keystone21:48
bretonstevemar: kinda21:58
*** jamielennox|away is now known as jamielennox21:59
*** stingaci has joined #openstack-keystone22:00
*** diazjf has quit IRC22:00
*** diazjf has joined #openstack-keystone22:02
*** diazjf has quit IRC22:02
*** thorst_ has quit IRC22:02
*** thorst has joined #openstack-keystone22:03
*** edtubill has quit IRC22:04
*** stingaci has quit IRC22:04
*** gyee has joined #openstack-keystone22:05
*** stewie925 has joined #openstack-keystone22:05
*** thorst has quit IRC22:07
stewie925happy Friday guys22:09
stewie925I am trying to create a tenant-network, but I am getting a "keystoneclient.session Request returned failure status: 500"22:15
*** adrian_otto has joined #openstack-keystone22:25
*** baling-wire is now known as david-lyle22:26
*** thorst has joined #openstack-keystone22:28
*** spzala has quit IRC22:29
*** thorst has quit IRC22:31
*** catintheroof has quit IRC22:38
openstackgerritGage Hugo proposed openstack/keystone: Corrected punctuation on multiple exceptions  https://review.openstack.org/42018722:39
*** wasmum has joined #openstack-keystone22:52
gagehugostewie925: did anything show up in the log?22:52
stewie925hey gage - http://paste.openstack.org/show/594899/22:53
*** jaugustine has quit IRC22:53
stewie925I did a --debug and post the results there - looks like keystone is complaining22:53
stewie925btw, I was successful creating the external network as admin22:54
lamtstewie925 : can you check the keystone log? should be in /var/log/keystone/*22:55
stewie925let me check22:55
stewie925oh I found something - let me chec22:58
*** jperry has quit IRC23:03
stewie925lamt: gagehugo: thank you - found the error and had it fixed23:05
gagehugo\o/23:06
lamtstewie925 great to hear23:06
rderosestewie925: what was the issue?23:07
stewie925rderose: hi23:07
rderosehi23:07
stewie925it was a wsgi-script that I had to update - it was parsing incorrectly so I was getting an error23:07
rderosestewie925: ah, I see23:08
*** asettle has quit IRC23:19
openstackgerritGage Hugo proposed openstack/keystone: Allow user to change own expired password  https://review.openstack.org/40402223:19
*** asettle has joined #openstack-keystone23:20
*** asettle is now known as Guest1151723:21
*** edmondsw has quit IRC23:29
*** adrian_otto has quit IRC23:31
*** jaosorior has quit IRC23:31
*** thorst has joined #openstack-keystone23:32
*** edmondsw has joined #openstack-keystone23:36
*** thorst has quit IRC23:37
*** chlong has quit IRC23:38
*** edmondsw_ has joined #openstack-keystone23:38
*** edmonds__ has joined #openstack-keystone23:40
*** edmondsw has quit IRC23:41
*** edmondsw_ has quit IRC23:43
*** edmonds__ has quit IRC23:47
*** harlowja has quit IRC23:56
*** Ephur has quit IRC23:59
« Thursday, 2017-01-12 Index Saturday, 2017-01-14 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!