Tuesday, 2019-05-28

*** rcernin has quit IRC		00:17
*** rcernin has joined #openstack-keystone		00:18
*** joshualyle has joined #openstack-keystone		00:25
*** joshualyle has quit IRC		00:30
*** rcernin has quit IRC		00:49
*** rcernin has joined #openstack-keystone		00:50
*** joshualyle has joined #openstack-keystone		00:58
*** markvoelker has quit IRC		01:05
*** whoami-rajat has joined #openstack-keystone		01:06
openstackgerrit	zhenmei proposed openstack/keystone master: Fix create nonlocal user issue https://review.opendev.org/661183	02:10
*** gmann has quit IRC		02:31
*** joshualyle has quit IRC		02:38
*** joshualyle has joined #openstack-keystone		02:47
*** joshualyle has quit IRC		02:52
*** hoonetorg has quit IRC		02:56
*** markvoelker has joined #openstack-keystone		03:06
*** hoonetorg has joined #openstack-keystone		03:13
*** joshualyle has joined #openstack-keystone		03:28
*** joshualyle has quit IRC		03:30
*** shyamb has joined #openstack-keystone		03:33
*** markvoelker has quit IRC		03:40
*** ileixe has quit IRC		04:09
*** ileixe has joined #openstack-keystone		04:11
*** pcaruana has joined #openstack-keystone		04:22
*** joshualyle has joined #openstack-keystone		04:29
*** joshualyle has quit IRC		04:34
*** markvoelker has joined #openstack-keystone		04:37
*** joshualyle has joined #openstack-keystone		04:38
*** joshualyle has quit IRC		04:42
*** shyamb has quit IRC		04:48
*** shyamb has joined #openstack-keystone		05:08
openstackgerrit	zhenmei proposed openstack/keystone master: Fix create nonlocal user issue https://review.opendev.org/661183	05:10
*** markvoelker has quit IRC		05:10
*** ileixe has quit IRC		05:33
*** shyamb has quit IRC		06:02
*** shyamb has joined #openstack-keystone		06:05
*** markvoelker has joined #openstack-keystone		06:07
*** shyamb has quit IRC		06:29
*** shyamb has joined #openstack-keystone		06:31
*** markvoelker has quit IRC		06:40
*** awalende has joined #openstack-keystone		07:04
*** shyam89 has joined #openstack-keystone		07:05
*** shyamb has quit IRC		07:07
*** takamatsu has joined #openstack-keystone		07:07
*** starborn has joined #openstack-keystone		07:08
*** jhesketh has quit IRC		07:11
*** tesseract has joined #openstack-keystone		07:12
*** takamatsu has quit IRC		07:13
*** shyam89 has quit IRC		07:24
*** shyamb has joined #openstack-keystone		07:24
*** jhesketh has joined #openstack-keystone		07:29
*** markvoelker has joined #openstack-keystone		07:37
*** shyam89 has joined #openstack-keystone		07:43
*** shyamb has quit IRC		07:43
*** xek_ has joined #openstack-keystone		07:48
*** Emine has joined #openstack-keystone		07:58
*** shyam89 has quit IRC		08:04
*** markvoelker has quit IRC		08:10
*** gmann has joined #openstack-keystone		08:13
*** yan0s has joined #openstack-keystone		08:20
*** awalende_ has joined #openstack-keystone		08:25
*** awalende has quit IRC		08:29
*** awalende_ has quit IRC		08:30
*** jdennis has quit IRC		08:35
*** jdennis has joined #openstack-keystone		08:36
*** shyamb has joined #openstack-keystone		09:05
*** markvoelker has joined #openstack-keystone		09:07
*** tkajinam has quit IRC		09:13
*** shyamb has quit IRC		09:26
*** shyamb has joined #openstack-keystone		09:34
*** markvoelker has quit IRC		09:40
*** shyamb has quit IRC		09:52
*** shyam89 has joined #openstack-keystone		09:52
*** emine__ has joined #openstack-keystone		10:20
*** Emine has quit IRC		10:22
*** markvoelker has joined #openstack-keystone		10:37
*** shyam89 has quit IRC		10:47
*** odyssey4me has left #openstack-keystone		10:49
*** awalende has joined #openstack-keystone		10:52
*** markvoelker has quit IRC		11:11
*** shyamb has joined #openstack-keystone		11:19
*** h3rbz has joined #openstack-keystone		11:29
h3rbz	Hi! I have a small question about keystone setup in Stein release. I get deprecation warnings about policies and I gathered that I need a JSON policy file to get rid of them. However, the default policy file that docs are refering to cannot be found on the system after installation. I do have the policy.v3cloudsample.json in /usr/share/keystone/, but it is rather too elaborate for my current	11:31
h3rbz	environment. What should be the contents of the default, and simple, single domain, policy.json?	11:31
*** raildo has joined #openstack-keystone		11:42
*** markvoelker has joined #openstack-keystone		12:06
*** lbragstad has joined #openstack-keystone		12:09
*** shyamb has quit IRC		12:19
h3rbz	For me, this policy.json file is not distributed with keystone (Ubuntu Bionic / cloudarchive:rocky). I have it working with the snippet on this page: https://docs.openstack.org/oslo.policy/latest/admin/policy-json-file.html	12:20
h3rbz	well.. still have deprecation warnings for "UserWarning: Policy "identity:get_credential":"rule:admin_required" was deprecated in S..."	12:22
*** shyamb has joined #openstack-keystone		12:23
h3rbz	can any of you point me to a doc that makes it somewhat explicit how to resolve this Rocky-to-Stein difference? thx in advance	12:23
h3rbz	oh wait a minute.. I think I missread somwthing in the docs. The .yaml is the newer format, while I was thinking the other way around	12:28
*** chason has joined #openstack-keystone		12:31
*** shyamb has quit IRC		12:34
h3rbz	keystone is passing my tests, so I guess I'l have to accept the deprecation warnings.. they are kinda verbose, so I was hoping they could be eliminated	12:34
lbragstad	h3rbz the stein release notes go into a bunch of detail about those deprecation warnings - https://docs.openstack.org/releasenotes/keystone/stein.html	12:53
lbragstad	they also link to various bug reports that have additional context	12:53
lbragstad	but to get rid of them, you'd need to explicitly set the policy in your policy.yaml file to be the new default for those policies, at least until we can remove the deprecations	12:54
h3rbz	lbragstad: thx, yes I was reading through it. I half expected to find a reference to reasonable default content that fits with the procedure here: docs.openstack.org/keystone/stein/install/ . I'm not ready(willing?) to go through al the new defaults right now. I'm not in production env so there's no preseeure :P	13:03
*** beekneemech is now known as bnemec		13:18
*** vishakha has joined #openstack-keystone		13:23
*** vishalmanchanda has joined #openstack-keystone		13:29
*** DinaBelova has joined #openstack-keystone		13:42
*** jdwidari has joined #openstack-keystone		13:47
*** jdwidari has quit IRC		13:52
*** tobias-urdin has joined #openstack-keystone		13:55
*** awalende has quit IRC		13:57
*** awalende has joined #openstack-keystone		13:57
*** awalende_ has joined #openstack-keystone		14:00
*** awalende has quit IRC		14:02
*** awalende_ has quit IRC		14:05
*** starborn has quit IRC		14:08
*** itlinux has quit IRC		14:19
*** shyamb has joined #openstack-keystone		14:22
lbragstad	h3rbz ack	14:31
lbragstad	the defaults in code are when are installed by default (since the pike release)	14:31
*** itlinux has joined #openstack-keystone		14:33
*** shyamb has quit IRC		14:33
*** shyamb has joined #openstack-keystone		14:34
*** dasp has quit IRC		14:36
*** shyam89 has joined #openstack-keystone		14:57
*** dklyle has joined #openstack-keystone		14:59
*** shyamb has quit IRC		15:00
*** yan0s has quit IRC		15:11
*** shyam89 has quit IRC		15:14
*** shyamb has joined #openstack-keystone		15:17
openstackgerrit	Colleen Murphy proposed openstack/keystone-specs master: Update access rules spec with decisions from PTG https://review.opendev.org/661784	15:25
*** itlinux has quit IRC		15:35
openstackgerrit	Colleen Murphy proposed openstack/keystone master: Revert "Add API for /v3/access_rules_config" https://review.opendev.org/661790	15:39
openstackgerrit	Colleen Murphy proposed openstack/keystone master: Revert "Add manager support for app cred access rules" https://review.opendev.org/661791	15:39
openstackgerrit	Colleen Murphy proposed openstack/keystone master: Revert "Add a permissive mode for access rules config" https://review.opendev.org/661792	15:39
openstackgerrit	Colleen Murphy proposed openstack/keystone master: Revert "Add manager for access rules config" https://review.opendev.org/661793	15:39
openstackgerrit	Colleen Murphy proposed openstack/keystone master: Revert "Add JSON driver for access rules config" https://review.opendev.org/661794	15:39
openstackgerrit	Colleen Murphy proposed openstack/keystone-specs master: Update access rules spec with decisions from PTG https://review.opendev.org/661784	15:41
*** shyam89 has joined #openstack-keystone		15:43
*** shyamb has quit IRC		15:44
cmurphy	keystone meeting in 2 minutes in #openstack-meeting-alt	15:58
*** shyam89 has quit IRC		15:58
*** vishalmanchanda has quit IRC		15:59
*** shyamb has joined #openstack-keystone		16:03
*** tesseract has quit IRC		16:06
*** rha has quit IRC		16:12
*** rha has joined #openstack-keystone		16:13
*** gyee has joined #openstack-keystone		16:20
*** shyamb has quit IRC		16:26
*** emine__ has quit IRC		16:27
*** shyamb has joined #openstack-keystone		16:27
*** itlinux has joined #openstack-keystone		16:35
*** shyam89 has joined #openstack-keystone		16:36
*** shyamb has quit IRC		16:37
*** shyam89 has quit IRC		16:41
*** itlinux has quit IRC		16:43
*** itlinux has joined #openstack-keystone		16:46
cmurphy	office hours in 12 minutes here	16:48
cmurphy	topic will be bug triage https://etherpad.openstack.org/p/keystone-office-hours-topics	16:48
*** itlinux has quit IRC		16:58
cmurphy	#startmeeting keystone-office-hours	17:00
openstack	Meeting started Tue May 28 17:00:43 2019 UTC and is due to finish in 60 minutes. The chair is cmurphy. Information about MeetBot at http://wiki.debian.org/MeetBot.	17:00
openstack	Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.	17:00
*** openstack changes topic to " (Meeting topic: keystone-office-hours)"		17:00
*** ChanServ changes topic to "Stein release schedule: https://releases.openstack.org/stein/schedule.html \| Meeting agenda: https://etherpad.openstack.org/p/keystone-weekly-meeting \| Bugs that need triaging: http://bit.ly/2iJuN1h \| Trello: https://trello.com/b/rj0ECz2c/keystone-stein-roadmap !!NOTE!! This Channel is Logged ( https://tinyurl.com/OpenStackKeystone )"		17:00
openstack	The meeting name has been set to 'keystone_office_hours'	17:00
cmurphy	hi again o/	17:00
vishakha	Hello o/	17:01
*** itlinux has joined #openstack-keystone		17:01
lbragstad	o/	17:02
cmurphy	#topic bug triage	17:02
*** openstack changes topic to "bug triage (Meeting topic: keystone-office-hours)"		17:02
*** ChanServ changes topic to "Stein release schedule: https://releases.openstack.org/stein/schedule.html \| Meeting agenda: https://etherpad.openstack.org/p/keystone-weekly-meeting \| Bugs that need triaging: http://bit.ly/2iJuN1h \| Trello: https://trello.com/b/rj0ECz2c/keystone-stein-roadmap !!NOTE!! This Channel is Logged ( https://tinyurl.com/OpenStackKeystone )"		17:02
cmurphy	#link https://etherpad.openstack.org/p/keystone-office-hours-topics office hours topics	17:02
gagehugo	o/	17:03
cmurphy	first up on my triage list is "RFE: Token returns Project's tag properties"	17:03
cmurphy	#link https://bugs.launchpad.net/keystone/+bug/1807697	17:03
openstack	Launchpad bug 1807697 in OpenStack Identity (keystone) "RFE: Token returns Project's tag properties" [Wishlist,In progress] - Assigned to Yang Youseok (ileixe)	17:03
cmurphy	ileixe seems to be satisfied with closing it but i wanted to get other eyes on the suggested solution	17:03
* lbragstad reads		17:05
lbragstad	makes sense	17:10
lbragstad	so - to clarify	17:11
lbragstad	we're going to keep the fix in the clients and have them query keystone for additional tags once they understand the token	17:12
lbragstad	er the project the token is scoped to	17:12
lbragstad	as opposed to exposing tags as a first-class attribute of tokens	17:13
cmurphy	right, except i think this isn't about a change to the clients but in how a service like neutron would use the keystone client to retrieve a project	17:13
lbragstad	aha	17:14
cmurphy	and also this is expected to happen during policy enforcement aiui	17:14
lbragstad	so - services are going to have to build their own credential and target information with tags in them?	17:14
lbragstad	in order for this to be useful in oslo.policy enforcement	17:15
lbragstad	right?	17:15
cmurphy	i think so	17:15
lbragstad	this kinda feels like dynamic policy and the issues we hit with that	17:15
lbragstad	but...	17:15
cmurphy	remind me what that means?	17:16
cmurphy	like an external policy engine?	17:17
lbragstad	we're enabling someone to be able to do fine-grained authorization via the api, but ultimately an operator has to tweak .yaml files to get policies to work depending on how people are modifying things in the API	17:17
*** irclogbot_1 has quit IRC		17:17
*** irclogbot_0 has joined #openstack-keystone		17:18
lbragstad	e.g., if i tag a project 'gold' and another project 'platinum' and that affects authroization, then i probably have to supply my own overrides	17:18
lbragstad	unless they're using the http_check oslo.policy path	17:19
cmurphy	hmm	17:20
cmurphy	so what should we advise? this sounds unfun to implement	17:21
bnemec	Maybe relevant to this discussion: https://review.opendev.org/#/c/658675/	17:21
* bnemec saw http_check		17:21
lbragstad	sorry - i'm off in the weeds, we're probably advising the right thing	17:21
cmurphy	lol	17:21
lbragstad	i was just making the point that an underlying issue makes this whole thing a little strange because it can't be API driven completely	17:22
cmurphy	okay i'll close for now and invite them to talk to us again if they get stuck and we need a better solution	17:22
* lbragstad sits back down		17:22
lbragstad	sounds good	17:22
cmurphy	next is "[<= Queens] With token-provider='uuid', roles of dynamically obtained federated groups are not taken into account during token-based authentication (for project-scoped token creation)"	17:24
cmurphy	#link https://bugs.launchpad.net/keystone/+bug/1828126	17:25
openstack	Launchpad bug 1828126 in keystone (Ubuntu) "[<= Queens] With token-provider='uuid', roles of dynamically obtained federated groups are not taken into account during token-based authentication (for project-scoped token creation)" [Undecided,New]	17:25
cmurphy	another problem with federated groups, but only affects UUID tokens	17:26
lbragstad	so - federated users don't get tokens with the groups from the mapping with the uuid provider?	17:27
kmalloc_away	totally unrelated... i just ate some fresh pineapple i brought back from hawaii. holy crap it's good.	17:27
kmalloc_away	since uuid is dead in master, "won't fix, sorry"	17:27
kmalloc_away	lbragstad: ^	17:27
kmalloc_away	they're going to need to get off uuid tokens anyway or implement their own provider	17:28
cmurphy	queens is still maintained so i told them we'd still accept a fix	17:28
kmalloc_away	honestly, i think that might be borderline when considering a stable patch.	17:28
kmalloc_away	my answer would be "really use fernet"	17:28
cmurphy	that might be true, it may be too big to fix in stable	17:28
lbragstad	i wonder if they have any issues just migrating to fernet?	17:29
kmalloc_away	i'd like to know if they have issues with fernet and if future releases solve them.	17:30
cmurphy	they might just be reporting it for the sake of completeness	17:30
kmalloc_away	my guess is key rotation sync issues (not wanting to develop tooling for it)	17:30
kmalloc_away	if anything	17:30
kmalloc_away	a lot of folks don't like dealing with fernet key rotation	17:30
cmurphy	asked on the bug report	17:32
lbragstad	++	17:33
cmurphy	next I have is "PY3 unicode text values change in ldap not taking care of py2 special charater unicode strings"	17:34
cmurphy	#link https://bugs.launchpad.net/keystone/+bug/1825867	17:34
openstack	Launchpad bug 1825867 in OpenStack Identity (keystone) "PY3 unicode text values change in ldap not taking care of py2 special charater unicode strings" [Undecided,New] - Assigned to Abhishek Sharma M (abhi.sharma)	17:34
cmurphy	there is a proposed fix but it doesn't work, i'm not totally sure this is really a bug	17:34
lbragstad	i guess i'd wait for the author to fix the patch	17:37
lbragstad	or bump it to see if they're still planning on fixing it	17:37
cmurphy	that's fair	17:37
kmalloc_away	++	17:38
cmurphy	bumped the patch	17:38
kmalloc_away	cmurphy: we have a "Removed as of Train" bug right?	17:39
cmurphy	kmalloc_away: yes we do now	17:39
kmalloc_away	ok going to close the bp out then	17:39
cmurphy	https://bugs.launchpad.net/keystone/+bug/1829453	17:39
openstack	Launchpad bug 1829453 in OpenStack Identity (keystone) "Removed as of Train" [Low,In progress] - Assigned to Vishakha Agarwal (vishakha.agarwal)	17:39
cmurphy	the last one i wanted to talk about was "no create time for project", since we actually discussed reviving an old spec related to that	17:40
cmurphy	#link https://bugs.launchpad.net/keystone/+bug/1822135	17:40
openstack	Launchpad bug 1822135 in OpenStack Identity (keystone) "no create time for project" [Undecided,Incomplete] - Assigned to XiaojueGuan (xiaojuegaun)	17:40
cmurphy	in the bug report we advised to use cadf notifications for this purpose	17:40
cmurphy	at the ptg we also decided to revive http://specs.openstack.org/openstack/keystone-specs/specs/keystone/backlog/model-timestamps.html	17:41
cmurphy	(this was saturday morning)	17:41
lbragstad	hmmm	17:43
*** problem_v has quit IRC		17:43
*** dtruong has quit IRC		17:43
lbragstad	so - are model times stamps going to be done for everything then?	17:43
*** problem_v has joined #openstack-keystone		17:43
*** dtruong has joined #openstack-keystone		17:44
cmurphy	looks like Project, Domain, Role	17:44
* lbragstad would be curious to hear if there is objection to the current advice?		17:44
cmurphy	me too	17:45
cmurphy	also wondering if we still want to do http://specs.openstack.org/openstack/keystone-specs/specs/keystone/backlog/model-timestamps.html given that we do have cadf notifications	17:45
lbragstad	i feel like we'd need more support for it	17:45
lbragstad	or more operators coming to us telling us that notifications aren't cutting it	17:46
lbragstad	but that's just my knee-jerk reaction	17:46
lbragstad	if feels like one of those features that would be a slippery slope to do for all things in keystone	17:46
cmurphy	agreed	17:47
cmurphy	i'll bump the bug and mention the spec and see if they can tell us whether cadf is sufficient	17:47
lbragstad	++	17:47
cmurphy	that was all i had on my list	17:50
cmurphy	any other bugs people want to look at?	17:50
lbragstad	looks good to me	17:50
cmurphy	not bug related but there's an interesting discussion happening in https://review.opendev.org/651790	17:51
cmurphy	wrt the admin endpoint in ksm	17:51
cmurphy	and what the default interface should be and whether to use warnings to alert people about it	17:52
cmurphy	weigh in on the patch if you have thoughts, i'm especially on the fence about whether to issue a warning or just do a cutover + release note	17:56
cmurphy	thanks for participating everyone :)	17:56
cmurphy	feel free to add topics to the etherpad for next office hours if you want to	17:57
cmurphy	#endmeeting	17:57
*** openstack changes topic to "Stein release schedule: https://releases.openstack.org/stein/schedule.html \| Meeting agenda: https://etherpad.openstack.org/p/keystone-weekly-meeting \| Bugs that need triaging: http://bit.ly/2iJuN1h \| Trello: https://trello.com/b/rj0ECz2c/keystone-stein-roadmap !!NOTE!! This Channel is Logged ( https://tinyurl.com/OpenStackKeystone )"		17:57
openstack	Meeting ended Tue May 28 17:57:08 2019 UTC. Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)	17:57
openstack	Minutes: http://eavesdrop.openstack.org/meetings/keystone_office_hours/2019/keystone_office_hours.2019-05-28-17.00.html	17:57
openstack	Minutes (text): http://eavesdrop.openstack.org/meetings/keystone_office_hours/2019/keystone_office_hours.2019-05-28-17.00.txt	17:57
openstack	Log: http://eavesdrop.openstack.org/meetings/keystone_office_hours/2019/keystone_office_hours.2019-05-28-17.00.log.html	17:57
lbragstad	thanks cmurphy	17:57
lbragstad	i like an hour-long bug triage	17:58
cmurphy	++	17:58
*** jdwidari has joined #openstack-keystone		18:02
*** itlinux has quit IRC		18:02
*** itlinux has joined #openstack-keystone		18:16
cmurphy	kmalloc_away: any thoughts on https://review.opendev.org/651790 and whether there should be a warning logged or just documented in the release note?	18:28
kmalloc_away	i'd just document it	18:39
cmurphy	starting to lean that way too	18:42
cmurphy	anyone want to review https://review.opendev.org/660956 to unblock some other ksa patches?	18:43
kmalloc_away	cmurphy: i'd single-core approve unblocking patches like that	18:46
kmalloc_away	especially as PTL.	18:46
kmalloc_away	cmurphy: +2/+A added.	18:46
cmurphy	doesn't hurt to have more eyes :)	18:47
openstackgerrit	Colleen Murphy proposed openstack/keystone-tempest-plugin master: Fix sphinx requirement for python2 https://review.opendev.org/661828	18:54
gyee	hey guys, for the ksa patch, please don't change the 'admin' endpoint to 'public', that's going to break a lot of deployments out there	18:54
cmurphy	frickler: cc ^	18:56
cmurphy	gyee: are you okay with changing it to 'internal'?	18:56
gyee	the management network where the openstack services are running are typically on a private subnet, which segmented off from the public one	18:57
gyee	cmurphy, yes, internal is more appropriate	18:57
cmurphy	okay	18:59
cmurphy	gyee: and you support just cutting over to 'internal' without a warning period? or you think it should stay 'admin' for a while?	19:05
gyee	cmurphy, so it depends	19:06
gyee	if we are offering a configurable option along with setting to 'internal' it shouldn't be a problem	19:06
cmurphy	i think configurable option is essential	19:07
gyee	++	19:07
*** itlinux has quit IRC		19:09
*** itlinux has joined #openstack-keystone		19:13
lbragstad	cmurphy are the Stories and Tasks To Do columns mutually exclusive?	19:13
lbragstad	or do stories eventually make their way in progress and 'done'?	19:14
cmurphy	lbragstad: i think stories should eventually get closed, i hadn't decided whether to move them in the same done column as tasks or to give them their own done column	19:15
lbragstad	ok - cool	19:15
lbragstad	so stories can link to tasks that move through the stages?	19:15
cmurphy	right	19:15
lbragstad	alright - that makes sense	19:16
cmurphy	cool	19:16
gyee	that agile methodology? story should linked to one or more tasks	19:16
lbragstad	the million dollar question	19:16
cmurphy	lol	19:17
cmurphy	gyee: for reference https://trello.com/b/ClKW9C8x/keystone-train-roadmap	19:17
gyee	I am not very agile on agile :-)	19:18
kmalloc_away	cmurphy: stories should have thier own done column	19:19
kmalloc_away	imo	19:19
cmurphy	kmalloc_away: fair enough	19:20
kmalloc_away	just to make ti clear they are completed.	19:20
kmalloc_away	or active, no guessing	19:20
gyee	the Done and the Done-Done columns :-)	19:21
*** takamatsu has joined #openstack-keystone		19:28
kmalloc_away	Done and Story-Complete column imo	19:28
kmalloc_away	done is for tasks, story-complete for stories...or epics..or whatever	19:28
kmalloc_away	trello is an ok tool for this, but really misses some nuance, thankfully we don't need too much	19:28
*** pcaruana has quit IRC		19:30
johnthetubaguy	lbragstad: I have refreshed my ideas around how nova could use oslo.limit: https://review.opendev.org/#/c/615180/	19:58
lbragstad	sweet	19:58
johnthetubaguy	ended up creating a new class, that re-uses bits from the current WIP stuff: https://github.com/JohnGarbutt/oslo.limit/commit/a5b908046fd904c25b6cd15c65266c747774b5ab	19:59
johnthetubaguy	we do a bunch of interesting error handling based on knowning the available free quota and things, via exceptions passing information	19:59
johnthetubaguy	I am yet to work through all that, but its starting to make some sense I hope	19:59
*** takamatsu has quit IRC		20:02
*** vishakha has quit IRC		20:03
*** dasp has joined #openstack-keystone		20:20
openstackgerrit	Merged openstack/keystoneauth master: Blacklist bandit 1.6.0 & cap sphinx for 2.7 https://review.opendev.org/660956	20:24
openstackgerrit	Lance Bragstad proposed openstack/keystone-specs master: Expose root domain as assignment target https://review.opendev.org/661837	20:27
lbragstad	johnthetubaguy nice - just wrapped something up, i'll take a look	20:28
lbragstad	cmurphy ^	20:28
johnthetubaguy	lbragstad: awesome, thanks	20:28
cmurphy	lbragstad: sweet	20:33
*** dasp has quit IRC		20:38
*** dasp has joined #openstack-keystone		20:38
*** takamatsu has joined #openstack-keystone		20:42
*** xek_ has quit IRC		20:44
*** dave-mccowan has joined #openstack-keystone		21:08
*** itlinux has quit IRC		21:20
*** dave-mccowan has quit IRC		21:23
*** itlinux has joined #openstack-keystone		21:23
*** raildo has quit IRC		21:25
*** awalende has joined #openstack-keystone		22:00
*** itlinux has quit IRC		22:02
*** awalende has quit IRC		22:05
openstackgerrit	Colleen Murphy proposed openstack/keystone master: Add note about application credential ownership https://review.opendev.org/661852	22:06
*** rcernin has quit IRC		22:06
*** whoami-rajat has quit IRC		22:11
*** dave-mccowan has joined #openstack-keystone		22:12
*** Emine has joined #openstack-keystone		22:21
*** emine__ has joined #openstack-keystone		22:27
*** Emine has quit IRC		22:29
*** dave-mccowan has quit IRC		22:31
*** emine__ has quit IRC		22:51
*** tkajinam has joined #openstack-keystone		23:02
*** dave-mccowan has joined #openstack-keystone		23:14
*** lbragstad has quit IRC		23:19
*** rcernin has joined #openstack-keystone		23:21
*** lbragstad has joined #openstack-keystone		23:23
*** dave-mccowan has quit IRC		23:33
*** gyee has quit IRC		23:40
*** dave-mccowan has joined #openstack-keystone		23:46
*** dave-mccowan has quit IRC		23:53
*** takamatsu has quit IRC		23:56

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!