Thursday, 2017-04-13

« Wednesday, 2017-04-12 Index Friday, 2017-04-14 »
*** mpjetta has quit IRC00:04
*** thorst has joined #openstack-keystone00:12
*** thorst has quit IRC00:19
*** raildo has quit IRC00:20
*** gyee has quit IRC00:32
*** ediardo has quit IRC00:37
*** zhurong has joined #openstack-keystone00:44
*** MasterOfBugs has quit IRC00:49
*** pramodrj07 has quit IRC00:49
*** thorst has joined #openstack-keystone00:50
*** mriedem has left #openstack-keystone00:50
*** masber has joined #openstack-keystone00:55
*** thorst has quit IRC01:01
*** shuyingya has joined #openstack-keystone01:19
*** raildo has joined #openstack-keystone01:39
*** raildo has quit IRC01:42
*** thorst has joined #openstack-keystone01:49
*** rcernin has joined #openstack-keystone02:20
*** thorst has joined #openstack-keystone02:21
*** rcernin has quit IRC02:26
*** rcernin has joined #openstack-keystone02:26
*** Aurelgad1o has joined #openstack-keystone02:36
*** Aurelgadjo has quit IRC02:39
*** thorst has quit IRC02:39
*** lucasxu has joined #openstack-keystone03:01
*** lucasxu has quit IRC03:09
*** nicolasbock has quit IRC03:12
*** links has joined #openstack-keystone03:36
*** agrebennikov has quit IRC03:40
*** lamt has joined #openstack-keystone03:53
*** zhurong has quit IRC03:57
*** jamielennox is now known as jamielennox|away04:01
*** zhurong has joined #openstack-keystone04:17
*** rcernin has quit IRC04:29
*** jamielennox|away is now known as jamielennox04:29
*** thorst has joined #openstack-keystone04:36
*** thorst has quit IRC04:41
openstackgerritTin Lam proposed openstack/keystonemiddleware master: Replace pycrypto with cryptography  https://review.openstack.org/45194104:46
*** pramodrj07 has joined #openstack-keystone05:05
*** MasterOfBugs has joined #openstack-keystone05:05
*** davechen has joined #openstack-keystone05:08
*** lucasxu has joined #openstack-keystone05:19
*** lucasxu has quit IRC05:20
*** rcernin has joined #openstack-keystone05:37
*** richm has quit IRC05:43
openstackgerritTin Lam proposed openstack/keystonemiddleware master: Replace pycrypto with cryptography  https://review.openstack.org/45194105:58
*** jaosorior_away is now known as jaosorior06:18
*** lamt has quit IRC06:22
*** lamt has joined #openstack-keystone06:32
*** zzzeek has quit IRC06:41
openstackgerritMerged openstack/oslo.policy master: Optimize the link address  https://review.openstack.org/45500106:44
*** shuyingya has quit IRC06:45
*** shuyingya has joined #openstack-keystone06:46
*** voelzmo has joined #openstack-keystone06:50
*** jamielennox is now known as jamielennox|away06:52
*** faizy has joined #openstack-keystone06:55
*** belmoreira has joined #openstack-keystone06:56
*** adriant has quit IRC06:58
*** zzzeek has joined #openstack-keystone06:59
*** pcaruana has joined #openstack-keystone07:01
*** rcernin has quit IRC07:01
*** rcernin has joined #openstack-keystone07:01
*** pramodrj07 has quit IRC07:02
*** MasterOfBugs has quit IRC07:02
*** pramodrj07 has joined #openstack-keystone07:03
*** MasterOfBugs has joined #openstack-keystone07:03
*** PramodJ has joined #openstack-keystone07:04
*** MasterOfBugs has quit IRC07:05
*** pramodrj07 has quit IRC07:05
*** MasterOfBugs has joined #openstack-keystone07:05
*** tesseract has joined #openstack-keystone07:12
*** shuyingy_ has joined #openstack-keystone07:26
*** shuyingya has quit IRC07:30
*** lamt has quit IRC07:32
*** aojea has quit IRC07:43
*** Aqsa has joined #openstack-keystone07:51
*** aojea has joined #openstack-keystone07:51
*** MasterOfBugs has quit IRC07:59
*** PramodJ has quit IRC07:59
*** zzzeek has quit IRC08:00
*** zzzeek has joined #openstack-keystone08:00
*** shuyingy_ has quit IRC08:15
*** shuyingya has joined #openstack-keystone08:16
*** shuyingy_ has joined #openstack-keystone08:23
*** aojea has quit IRC08:25
*** shuyingya has quit IRC08:27
*** aojea has joined #openstack-keystone08:32
*** Shunli has joined #openstack-keystone08:35
*** thorst has joined #openstack-keystone08:41
*** belmoreira has quit IRC08:46
*** belmoreira has joined #openstack-keystone08:47
-openstackstatus- NOTICE: zuul was restarted due to an unrecoverable disconnect from gerrit. If your change is missing a CI result and isn't listed in the pipelines on http://status.openstack.org/zuul/ , please recheck08:51
*** belmoreira has quit IRC08:56
*** shuyingy_ has quit IRC08:56
*** shuyingya has joined #openstack-keystone08:58
*** aojea has quit IRC08:58
*** thorst has quit IRC08:59
*** aojea has joined #openstack-keystone09:01
*** shuyingy_ has joined #openstack-keystone09:04
*** shuyingya has quit IRC09:07
*** rocky has quit IRC09:07
*** rocky has joined #openstack-keystone09:10
*** jaosorior has quit IRC09:26
*** shuyingy_ has quit IRC09:27
*** shuyingya has joined #openstack-keystone09:27
*** jaosorior has joined #openstack-keystone09:30
*** henrynash has joined #openstack-keystone09:37
*** mvk has joined #openstack-keystone09:38
*** aojea has quit IRC09:51
*** aojea has joined #openstack-keystone10:14
*** richm has joined #openstack-keystone10:15
*** zhurong has quit IRC10:17
*** rocky is now known as xuhaigang10:19
*** nicolasbock has joined #openstack-keystone10:28
*** henrynash has quit IRC10:33
*** zhurong has joined #openstack-keystone10:45
*** thorst has joined #openstack-keystone10:56
*** erlon has joined #openstack-keystone11:01
*** thorst has quit IRC11:01
*** aojea has quit IRC11:18
*** raildo has joined #openstack-keystone11:18
*** jamielennox|away is now known as jamielennox11:18
*** ayoung has quit IRC11:20
*** ayoung has joined #openstack-keystone11:25
*** namnh has joined #openstack-keystone11:39
*** Shunli has quit IRC11:39
namnhhi everyone.11:41
*** Shunli has joined #openstack-keystone11:41
namnhI am confguring keyston high avalibility. are there anyone have experience with this. can I ask a question11:42
namnhdavechen, hi dave. are you free?11:44
bretonjust ask away11:51
bretonsomeone will probably answer11:51
namnhI want to build three keyston with high availibilty using haproxy.11:52
namnhBut I am using fernet to authentic. but I see that keystone don't write to DB.11:53
namnhit stores its local11:53
*** thorst has joined #openstack-keystone11:53
namnhso if I want to use keystone HA. I have to use token to authentic11:54
namnhis that right?11:54
namnhbreton,11:54
namnhs/availibilty/availability11:55
*** jamielennox is now known as jamielennox|away12:05
*** edmondsw has joined #openstack-keystone12:11
*** faizy has quit IRC12:11
*** nicolasbock has quit IRC12:19
bretonnamnh: a token means that a user has authenticated, with username+password or somehow else. Fernet is one of backends for tokens. HA works for all our backends, if configured correctly.12:19
openstackgerritayoung proposed openstack/keystone master: Route based RBAC Management Interface  https://review.openstack.org/40180812:20
namnhbreton, I am reading this doc: https://docs.openstack.org/admin-guide/identity-fernet-token-faq.html12:20
*** chlong has quit IRC12:21
*** lamt has joined #openstack-keystone12:21
*** lamt has quit IRC12:22
namnhbreton, I think all  keystone nodes have to a same content at the /etc/keystone/credential-keys forder and the /etc/keystone/fernet-keys forder12:22
namnhbreton, is that right?12:22
bretonnamnh: yes, that's right12:22
*** lamt has joined #openstack-keystone12:23
*** lamt has quit IRC12:23
namnhbreton, thanks, I am testing12:24
*** nicolasbock has joined #openstack-keystone12:25
namnhbreton, it's ok. thanks for your time :)12:31
*** shuyingya has quit IRC12:35
*** Shunli has quit IRC12:35
*** Shunli has joined #openstack-keystone12:36
*** shuyingya has joined #openstack-keystone12:36
*** stradling has joined #openstack-keystone12:40
*** shuyingya has quit IRC12:40
*** Daviey has joined #openstack-keystone12:56
*** Shunli has quit IRC13:00
*** shuyingya has joined #openstack-keystone13:04
*** shuyingya has quit IRC13:08
*** rajpatel has joined #openstack-keystone13:27
*** links has quit IRC13:29
*** chlong has joined #openstack-keystone13:35
lbragstadredrobot dstanek looks like lamt fixed the padding issues we were seeing yesterday - https://gist.github.com/lbragstad/0c5c831d11684f8c7def7a6c553e1c4013:40
lbragstadi tested ^ that and it works13:40
*** Dinesh_Bhor has quit IRC13:41
lbragstadredrobot dstanek specifically this diff - https://gist.github.com/lbragstad/0c5c831d11684f8c7def7a6c553e1c40/revisions#diff-067f591dd676d7de57dc19ef083dcf2413:41
*** Dinesh_Bhor has joined #openstack-keystone13:43
*** catintheroof has joined #openstack-keystone13:44
*** catintheroof has quit IRC13:45
*** catintheroof has joined #openstack-keystone13:45
*** ma9_ has joined #openstack-keystone13:49
*** catintheroof has quit IRC13:50
*** catintheroof has joined #openstack-keystone13:51
dstaneklbragstad: nice13:56
ayoungknikolla, updated the patch with the new names and paths.  I realize the Bulk API is untested.  That is now called ServiceRoutes (better than Access Rules, I think)13:57
ayoungCan you update keystoneclient accordingly?13:57
*** zhurong has quit IRC13:57
knikollaayoung: sure. will do.13:58
lbragstaddstanek yeah - so i think the padding there looks correct, but I'm testing it a little more locally13:59
*** lamt has joined #openstack-keystone14:00
lbragstaddstanek the padding looks right to me here - http://cdn.pasteraw.com/ap4r1atddreccq87bd09zeh8i568fi14:00
lbragstadlamt nice work on the new crypto patch14:01
lamtlbragstad o/ Thanks.  I used the recommended PKCS7 padding, and ran a few tests last night - it looked okay.14:02
lbragstadlamt i see that, i'm tinkering with it locally, but everything seems to be consistent with what redrobot was suggesting afaict14:03
lbragstadlamt you know this means whenever i have a crypto question, i'm asking you first :)14:03
lamtlbragstad lol.  I was trying to remove the padding per the convo with redrobot, but it appears all that padding logic was already in the caching logic.  Changing it will definitely break upgradeability.14:05
lbragstadlamt yeah - from what i could tell, that's how we were suppose to use it14:06
lbragstadlamt the pycrypto bits seemed to be padding accoring to PKCS#7 but the cryptography bits in the test script wasn't - which is where the inconsistency was14:07
lamtyup. Was converting the code to use the padder/unpadder instead of the old six.int2byte() logic and still keep everything consistent.14:09
*** lucasxu has joined #openstack-keystone14:11
lbragstadlamt the six.int2byte() stuff if how we encrypted in ksm before, right?14:12
lamtyes, it was used to pad the data14:13
lbragstadlamt yeah - that's what it looks like14:13
lbragstadin the crypto implementation before your patch14:13
lbragstadlamt we could roll that script you wrote into a test, actually14:14
lbragstadnever mind14:15
lamtyeah, it was using  cipher.encrypt(data + six.int2byte(padding) * padding) and then result[:-1 * six.byte2int([result[-1]])] to get rid of that padding during decrypt14:15
lbragstadthe whole point of this is to *not* be dependent on pycrypto and moving that to a test would still require us to have it14:15
*** agrebennikov has joined #openstack-keystone14:15
*** aojea has joined #openstack-keystone14:18
lbragstadlamt sweet, looks good to me14:21
lbragstadlamt i'll let dstanek and redrobot give it a peak if they want https://review.openstack.org/#/c/451941/614:22
lamtlbragstad thanks14:22
*** aojea has quit IRC14:23
*** mpjetta has joined #openstack-keystone14:24
*** aojea has joined #openstack-keystone14:28
dstaneklbragstad: sure14:28
namnhbreton, currenlty, I have three keystone HA nodes. In your option what number should we put with max_active_keys option?14:32
*** aojea has quit IRC14:32
dstaneknamnh: it depends on a lot a factors. the default is good in most cases. how often do you want to rotate and how long does it take to propagate keys out to all of your nodes?14:39
namnhdstanek, thanks for your reply, actually, i dont have much experience with keystone. I am trying to configure high availability for openstack including keystone14:41
namnhdstanek, I am configuring three keystone nodes running active/active14:41
*** chris_hultin|AWA is now known as chris_hultin14:42
namnhdstanek, there is a problem when I start third keystone. there is a log like this:14:42
namnhdstanek, http://paste.openstack.org/show/606459/14:43
dstaneknamnh: are all of your nodes using the same keys in the key repository?14:45
dstaneklbragstad: lamt: i noted a problem with that review14:45
namnhdstanek, yes. I did it14:45
dstaneknamnh: hmmm...that invalid user token is very strange then14:47
dstaneknamnh: how are you syncing keys?14:47
namnhdstanek, two keystone nodes run at the same time. But when I start third keystone node then there will be the error14:48
namnhdstanek, I copied from one to others14:48
dstaneksomething about that one is different14:49
namnhno. all of them is the same14:49
namnhI already compared them. there is no problem14:49
dstanekthere has to be something different. so now we have to figure out what14:50
dstaneknamnh: can you do a cksum of that directory's contents and check permissions14:51
*** catintheroof has quit IRC14:52
*** catintheroof has joined #openstack-keystone14:52
namnhplease wait a moment.14:57
*** mtreinish has quit IRC14:57
*** mtreinish has joined #openstack-keystone14:58
namnhdstanek, here is the result: http://paste.openstack.org/show/606462/14:58
namnhdstanek, there are no any difference14:59
*** henrynash has joined #openstack-keystone14:59
*** voelzmo has quit IRC15:01
namnhone thing, I feel strange. when I run only two keystone nodes, the bug will not occur. But with three keystones, it occurs15:03
*** Yada has joined #openstack-keystone15:03
namnhdstanek, so I believe that it's related to fernet or something in keystone, that I don't know.15:04
*** bigjools_ has joined #openstack-keystone15:05
ayoungknikolla, I'm adding an additional column to the table:  body_key.  We should be able to treat path+body_key as a composite for matching.  The compound name should be ok, as it does not show up in the indices etc15:08
ayoungthe rules for matching when body_key  are not None is going to be fun15:08
ayoungis not None....15:08
ayoungare going to be fun15:09
ayoungSubject verb agreement be hard15:09
*** afazekas_ has joined #openstack-keystone15:09
*** dutsmoc has joined #openstack-keystone15:09
*** melwitt_ has joined #openstack-keystone15:09
*** dstanek_ has joined #openstack-keystone15:09
*** lbragstad_ has joined #openstack-keystone15:09
*** zigo_ has joined #openstack-keystone15:09
*** EmilienM_ has joined #openstack-keystone15:09
*** spotz_ has joined #openstack-keystone15:09
*** dtroyer_zz has joined #openstack-keystone15:09
*** pcaruana has quit IRC15:10
*** kencjohnston_ has joined #openstack-keystone15:10
*** dtroyer has quit IRC15:10
*** lbragstad has quit IRC15:10
*** melwitt has quit IRC15:10
*** mordred has quit IRC15:10
*** kencjohnston has quit IRC15:10
*** stevemar has quit IRC15:10
*** dstanek has quit IRC15:10
*** EmilienM has quit IRC15:10
*** chris_hultin has quit IRC15:10
*** afazekas has quit IRC15:10
*** spotz has quit IRC15:10
*** zigo has quit IRC15:10
*** dstanek_ is now known as dstanek15:10
*** mordred1 has joined #openstack-keystone15:10
knikollaayoung: hmm.. true15:11
*** EmilienM_ is now known as 17WAAOC7S15:11
*** chris_hultin|AWA has joined #openstack-keystone15:11
ayoungknikolla, OK,  let me try to get them down here:15:11
*** 21WAAA2JF has joined #openstack-keystone15:11
*** chris_hultin|AWA is now known as chris_hultin15:11
*** stevemar has joined #openstack-keystone15:11
ayoungfor a given VERB+PATH...we'll shortcut that by calling it an API...for a given API, if there is no body_key, then the global rules take precedence15:12
*** zigo_ is now known as zigo15:12
ayoungif there is a body_key, attempt to match it against the body15:12
ayoungif there is a match, then the role in that match gets added to the set of required roles needed to call the API15:12
*** zigo is now known as Guest5258615:12
ayoungif there are multiple matches, all the set of roles are required15:13
ayoungor...we can treat that as an error15:13
ayoungkindof prefer the first15:13
*** rcernin has quit IRC15:13
ayoungif there are no matches, then (and only then) apply the rule for the API without the body_key value15:14
*** lbragstad_ is now known as lbragstad15:14
*** ChanServ sets mode: +o lbragstad15:14
ayounganother way to say it "there must always be at least one rule that applies.  Look first at the most specific.  If there are multiple, apply them all.  Then then progress to the most general."15:15
*** lamt has quit IRC15:15
ayoungknikolla, I think that is the way to go.15:15
*** ngupta has joined #openstack-keystone15:15
knikollaayoung: i like the apply them all.15:16
ayoungmost specific is verb+api+body_path15:16
ayoungnext is probably api+body_path  (no verb)15:16
ayoungafter that er15:16
ayounglet me try that again15:16
*** ngupta has quit IRC15:16
ayoungmost specific is verb+path+body_key15:17
ayoungnext is path+body_key  (no verb)15:17
ayoungnext is verb+path(no body_key)15:17
ayoungnext is path (no verb or body_key)15:17
ayounglast is the catchall rule for the service15:18
knikollaayoung: +115:19
ayoungknikolla, I'll update the spec with that.15:19
ayoungor make it a second spec.  I think that makes more sense15:19
*** lamt has joined #openstack-keystone15:24
*** ma9_1 has joined #openstack-keystone15:25
*** ma9_ has quit IRC15:25
*** namnh has quit IRC15:26
*** catintheroof has quit IRC15:27
*** catintheroof has joined #openstack-keystone15:27
*** catintheroof has quit IRC15:27
*** aojea has joined #openstack-keystone15:28
*** aojea has quit IRC15:33
*** dutsmoc has quit IRC15:34
*** ma9_ has joined #openstack-keystone15:34
*** comstud has joined #openstack-keystone15:34
*** ma9_1 has quit IRC15:36
*** ma9_ has quit IRC15:40
*** stradling has quit IRC15:42
*** mordred1 is now known as mordred15:46
*** ma9_ has joined #openstack-keystone15:50
*** ma9_ has left #openstack-keystone15:50
*** ngupta has joined #openstack-keystone16:01
*** stradling has joined #openstack-keystone16:07
openstackgerritayoung proposed openstack/keystone master: Expand the route tables to include a body key  https://review.openstack.org/45669216:10
*** thorst has quit IRC16:23
*** stradling has quit IRC16:24
*** thorst has joined #openstack-keystone16:25
*** stradling has joined #openstack-keystone16:25
*** henrynash has quit IRC16:27
*** openstack has joined #openstack-keystone16:32
*** d0ugal has joined #openstack-keystone16:32
*** jistr has joined #openstack-keystone16:32
*** openstackstatus has joined #openstack-keystone16:34
*** ChanServ sets mode: +v openstackstatus16:34
*** erlon has quit IRC16:35
*** tesseract has joined #openstack-keystone16:35
*** catintheroof has joined #openstack-keystone16:36
*** dolphm has quit IRC16:38
*** shuyingya has joined #openstack-keystone16:41
*** melwitt_ is now known as melwitt16:43
*** catintheroof has quit IRC16:44
*** jaosorior has quit IRC16:44
*** shuyingya has quit IRC16:45
samueldmqhi keystone16:46
samueldmqlbragstad: I will work on https://review.openstack.org/#/c/182658/ today16:47
*** jaosorior has joined #openstack-keystone16:54
*** lamt has quit IRC17:01
*** Aqsa has quit IRC17:03
*** jaosorior has quit IRC17:03
*** 21WAAA2JF is now known as EmilienM17:05
*** EmilienM has joined #openstack-keystone17:05
*** gyee has joined #openstack-keystone17:06
*** ngupta has quit IRC17:09
*** ngupta has joined #openstack-keystone17:11
*** rderose has joined #openstack-keystone17:11
ayoungknikolla, OK, I think the second patch I have posted is enough to get us working toward a proof of concept.17:12
ayoungknikolla, I think we need to do the matching logic in keystoneclient, so it can be used by end users eventually, but needs to be able to work with cached data17:12
openstackgerritSamuel de Medeiros Queiroz proposed openstack/python-keystoneclient master: Add support for endpoint group filtering  https://review.openstack.org/18265817:15
*** raildo has quit IRC17:15
openstackgerritSamuel de Medeiros Queiroz proposed openstack/python-keystoneclient master: Add support for endpoint group filtering  https://review.openstack.org/18265817:19
samueldmqlbragstad: ^17:19
*** stradling has quit IRC17:20
*** aojea has joined #openstack-keystone17:32
*** aojea has quit IRC17:32
lbragstadsamueldmq awesome - thanks for picking that up, i just noticed it yesterday as I was getting ready to release ksc :)17:32
*** aojea has joined #openstack-keystone17:32
*** raildo has joined #openstack-keystone17:32
samueldmqlbragstad: np, I've rerun the unit tests, hopefully the functional still pass after the changes :-)17:33
lbragstadsamueldmq perfect17:33
*** raildo has quit IRC17:38
*** raildo has joined #openstack-keystone17:38
*** rcernin has joined #openstack-keystone17:42
*** stradling has joined #openstack-keystone17:47
*** lamt has joined #openstack-keystone18:05
*** chlong has quit IRC18:07
smccullyAlright, Mr. Clark @hyakuhei -- You do realize that there is no other way to verify the Public Internet then to keep copies of every well known Certificate Authority. I don't know how you think this is bad security, or what possible alternative you would think acceptable18:18
ayoungknikolla, I am actually blocked on the client work.  Are you actively working on it, or do you mind if I update?18:24
knikollaayoung: haven't started yet, just got back from lunch break.18:26
knikollaayoung: you can go ahead and update if you're working on it.18:26
*** lamt has quit IRC18:27
ayoungknikolla, OK.  I'll update.  Should be up shortly18:28
*** mvk has quit IRC18:29
*** Yada has quit IRC18:30
*** henrynash has joined #openstack-keystone18:32
*** lamt has joined #openstack-keystone18:33
openstackgerritayoung proposed openstack/python-keystoneclient master: WIP - Client functions for Routes  https://review.openstack.org/45289318:35
openstackgerritTin Lam proposed openstack/keystonemiddleware master: Replace pycrypto with cryptography  https://review.openstack.org/45194118:35
*** aojea has quit IRC18:42
*** lucasxu has quit IRC18:43
*** rajpatel has quit IRC18:44
*** chlong has joined #openstack-keystone18:49
*** rajpatel has joined #openstack-keystone18:50
*** MasterOfBugs has joined #openstack-keystone18:59
*** chlong has quit IRC19:02
*** rmascena has joined #openstack-keystone19:04
*** raildo has quit IRC19:06
*** chris_hultin is now known as chris_hultin|AWA19:14
*** rmascena has quit IRC19:20
*** voelzmo has joined #openstack-keystone19:22
*** voelzmo has quit IRC19:26
*** aojea has joined #openstack-keystone19:26
*** voelzmo has joined #openstack-keystone19:28
*** aojea has quit IRC19:29
*** aojea has joined #openstack-keystone19:29
*** henrynash has quit IRC19:31
*** rmascena has joined #openstack-keystone19:34
*** aojea has quit IRC19:35
*** ngupta has quit IRC19:37
*** ngupta has joined #openstack-keystone19:37
*** ravelar has joined #openstack-keystone19:48
*** ravelar has quit IRC19:50
-openstackstatus- NOTICE: The Gerrit service on http://review.openstack.org is being restarted to address hung remote replication tasks.19:51
*** aojea has joined #openstack-keystone19:53
*** rajpatel has quit IRC19:53
*** raildo has joined #openstack-keystone20:02
*** rmascena has quit IRC20:02
*** Aqsa has joined #openstack-keystone20:14
*** raildo has quit IRC20:19
*** voelzmo has quit IRC20:20
*** ngupta has quit IRC20:23
*** ngupta has joined #openstack-keystone20:24
*** ngupta has quit IRC20:27
*** ngupta has joined #openstack-keystone20:28
*** ediardo has joined #openstack-keystone20:37
*** ngupta_ has joined #openstack-keystone20:38
*** ngupta has quit IRC20:41
*** ngupta_ has quit IRC20:43
*** rajpatel has joined #openstack-keystone20:45
*** edmondsw has quit IRC20:47
*** edmondsw has joined #openstack-keystone20:48
*** edmondsw has quit IRC20:53
*** thorst has quit IRC21:02
*** rajpatel has quit IRC21:07
*** mnaser has left #openstack-keystone21:10
*** mnaser has joined #openstack-keystone21:10
*** chlong has joined #openstack-keystone21:17
*** rajpatel has joined #openstack-keystone21:21
*** rajpatel has quit IRC21:22
*** ngupta has joined #openstack-keystone21:32
*** henrynash has joined #openstack-keystone21:39
*** chlong has quit IRC21:42
*** stradling has quit IRC21:46
*** tesseract has quit IRC21:47
*** henrynash has quit IRC21:51
hyakuheismccully you around?21:52
hyakuheiIs change 452585 regarding the client side code for PKI, as described here: https://docs.openstack.org/developer/keystoneauth/authentication-plugins.html#tokenless-auth21:53
*** lamt has quit IRC21:55
*** ngupta has quit IRC21:58
*** thorst has joined #openstack-keystone22:10
smccullynooo22:13
smccully:)22:13
hyakuheiHeh22:13
hyakuheiSorry, I was dealing with a big issue earlier but also getting pinged to comment on your change22:14
hyakuheiI just dropped a fresh note on there, I should have realised when you mentioned requests but I didn't. My fault.22:15
*** jamielennox|away is now known as jamielennox22:19
hyakuheiAnyway, was dropping by to apologise for me getting the wrong end of the stick earlier.22:19
*** thorst has quit IRC22:20
*** aojea has quit IRC22:26
*** Aqsa has quit IRC22:40
*** thorst has joined #openstack-keystone22:43
*** thorst has quit IRC22:44
*** MasterOfBugs has quit IRC23:00
*** thorst has joined #openstack-keystone23:15
*** thorst has quit IRC23:26
*** thorst has joined #openstack-keystone23:41
*** ngupta has joined #openstack-keystone23:50
*** edmondsw has joined #openstack-keystone23:54
*** shuyingya has joined #openstack-keystone23:56
*** edmondsw has quit IRC23:59
« Wednesday, 2017-04-12 Index Friday, 2017-04-14 »

Generated by irclog2html.py 2.14.0 by Marius Gedminas - find it at mg.pov.lt!