Tuesday, 2020-03-10

« Monday, 2020-03-09 Index Wednesday, 2020-03-11 »
*** vishalmanchanda has joined #openstack-keystone00:05
*** jamesmcarthur has joined #openstack-keystone00:11
*** jamesmcarthur has quit IRC00:19
*** jamesmcarthur has joined #openstack-keystone00:21
*** jamesmcarthur has quit IRC00:26
*** jamesmcarthur has joined #openstack-keystone00:44
*** jamesmcarthur has quit IRC01:08
*** jamesmcarthur has joined #openstack-keystone01:12
*** jamesmcarthur has quit IRC01:24
*** jamesmcarthur has joined #openstack-keystone01:24
*** jamesmcarthur has quit IRC02:06
*** jamesmcarthur has joined #openstack-keystone02:07
*** vishalmanchanda has quit IRC03:05
*** jamesmcarthur has quit IRC03:21
*** vishalmanchanda has joined #openstack-keystone03:31
*** lbragstad_ has joined #openstack-keystone03:54
*** rcernin has quit IRC04:04
*** rcernin has joined #openstack-keystone04:04
*** dave-mccowan has quit IRC04:40
*** lbragstad_ has quit IRC05:34
*** evrardjp has quit IRC05:35
*** evrardjp has joined #openstack-keystone05:35
*** shyamb has joined #openstack-keystone05:59
*** ccstone has quit IRC06:23
*** ccstone has joined #openstack-keystone06:24
*** abdysn has joined #openstack-keystone06:26
*** shyamb has quit IRC06:37
*** shyamb has joined #openstack-keystone06:58
*** dancn has joined #openstack-keystone07:06
*** shyam89 has joined #openstack-keystone07:10
*** shyamb has quit IRC07:12
*** shyamb has joined #openstack-keystone07:40
*** shyam89 has quit IRC07:42
*** xek_ has joined #openstack-keystone07:57
*** tkajinam has quit IRC08:08
*** tesseract has joined #openstack-keystone08:11
*** shyamb has quit IRC09:10
*** shyamb has joined #openstack-keystone09:14
*** ygk_12345 has joined #openstack-keystone09:23
*** ygk_12345 has left #openstack-keystone09:24
*** shyamb has quit IRC09:32
*** bengates has joined #openstack-keystone10:20
*** bengates has quit IRC10:20
*** bengates has joined #openstack-keystone10:21
*** kplant has joined #openstack-keystone11:11
*** tkajinam has joined #openstack-keystone11:15
*** jamesmcarthur has joined #openstack-keystone11:19
*** jamesmcarthur has quit IRC11:24
*** Luzi has joined #openstack-keystone11:37
*** bengates has quit IRC12:04
*** raildo has joined #openstack-keystone12:07
*** raildo has quit IRC12:19
*** raildo has joined #openstack-keystone12:20
*** jamesmcarthur has joined #openstack-keystone12:21
*** jamesmcarthur has quit IRC12:36
*** bengates has joined #openstack-keystone12:51
*** xek_ is now known as xek13:01
*** lbragstad_ has joined #openstack-keystone13:01
*** kplant has quit IRC13:07
*** kplant has joined #openstack-keystone13:12
*** lbragstad_ is now known as lbragstad13:12
*** lbragstad has quit IRC13:13
*** lbragstad has joined #openstack-keystone13:16
*** dave-mccowan has joined #openstack-keystone14:04
*** abdysn has quit IRC14:13
*** Luzi has quit IRC14:32
*** jamesmcarthur has joined #openstack-keystone14:39
*** jamesmcarthur has quit IRC14:46
*** jamesmcarthur has joined #openstack-keystone14:54
*** jamesmcarthur has quit IRC14:56
*** jamesmcarthur has joined #openstack-keystone14:56
*** ayoung has joined #openstack-keystone14:57
*** tkajinam has quit IRC15:17
rm_workapologies, I know I bring this up like every couple of months without really making any progress, but ...15:18
rm_workwhat is the current state of x509-based keystone auth?15:18
rm_workis it still "conceptually something that we'd like to support" or is it in-progress or semi-implemented?15:18
rm_workthere's docs about it as if it already exists?15:22
rm_workhttps://docs.openstack.org/keystone/pike/advanced-topics/configure_tokenless_x509.html15:22
*** gyee has joined #openstack-keystone15:43
cmurphyfyi meeting is in 1:10 not in 10 minutes15:52
cmurphyrm_work: it's a thing that works, you would configure it the same way you would configure federation https://docs.openstack.org/keystone/latest/admin/federation/federated_identity.html but use mod_ssl with this apache config https://docs.openstack.org/keystone/latest/admin/external-authentication.html#x-509-example15:53
rm_workcool, thanks15:53
rm_work(for confirming)15:54
cmurphytokenless auth using x509 is a thing but it's really just for service to service communication https://docs.openstack.org/keystone/latest/admin/configure_tokenless_x509.html15:54
rm_workhmm k15:54
cmurphyrm_work: btw you make me sad by linking the pike docs :P15:54
rm_worklol just what came up in google :D15:54
cmurphyi know T.T15:54
*** vishalmanchanda has quit IRC16:05
*** lbragstad has quit IRC16:07
*** bengates has quit IRC16:08
*** lbragstad has joined #openstack-keystone16:08
*** trident has quit IRC16:34
*** trident has joined #openstack-keystone16:36
cmurphymeeting in about 9 minutes in #openstack-meeting-alt16:51
cmurphymeeting now in #openstack-meeting-alt17:01
*** tesseract has quit IRC17:07
openstackgerritVishakha Agarwal proposed openstack/keystone master: Correcting api-ref for users  https://review.opendev.org/71073417:13
*** jamesmcarthur has quit IRC17:20
*** jamesmcarthur has joined #openstack-keystone17:27
*** evrardjp has quit IRC17:35
*** evrardjp has joined #openstack-keystone17:35
*** jamesmcarthur has quit IRC17:43
*** jamesmcarthur has joined #openstack-keystone17:56
*** NM has joined #openstack-keystone17:57
*** trident has quit IRC18:08
*** trident has joined #openstack-keystone18:17
*** mugsie has quit IRC19:23
*** mugsie has joined #openstack-keystone19:26
*** jamesmcarthur has quit IRC19:30
*** openstackgerrit has quit IRC19:32
*** kplant has quit IRC19:47
raildocmurphy, hey, how things are going? have a few minutes to talk about a possible backport request?19:50
raildocmurphy, I was trying to backport this cadf auditing to credentials on https://github.com/openstack/keystone/commit/579cc19857048a8710a9f173c602f51a2fcabba1 but at some moment I saw that this change depends on this bigger change which includes this caching for credentials https://github.com/openstack/keystone/commit/479a2a0afaeb505c371ee97a1f2fbc1b11e3cef119:52
raildocmurphy, for this second change it creates some config options for caching, which I'm not sure if it's a valid action for backporting19:52
*** lbragstad_ has joined #openstack-keystone19:55
*** lbragstad has quit IRC19:58
cmurphyraildo: i don't think the caching can be backported, can the cherry-pick be modified so it doesn't depend on the caching?19:58
cmurphyraildo: is `AttributeError: 'function' object has no attribute 'invalidate'` the issue? i think just remove the invalidate if it's not applicable in that branch19:59
raildocmurphy, that's would be my second approach, I didn't evaluate it entirely but doesn't sound something easy to do19:59
raildocmurphy, well, it's a bit more than that... for example the caching patch added some calls like delete credentials, which would be great to have it backported as well20:00
raildocmurphy, I'll work a little bit more on that patch to solve the tests issues and see if that backport makes sense without the caching credentials stuff20:01
raildocmurphy, and I can poke you later to evaluate if it will makes sense to have it backported20:01
cmurphyraildo: :thumbsup:20:01
*** NM has quit IRC20:02
*** NM has joined #openstack-keystone20:05
*** jamesmcarthur has joined #openstack-keystone20:17
*** openstackstatus has joined #openstack-keystone20:19
*** ChanServ sets mode: +v openstackstatus20:19
*** NM has quit IRC20:20
*** dave-mccowan has quit IRC20:27
*** joshualyle has joined #openstack-keystone20:32
*** NM has joined #openstack-keystone20:36
*** joshualyle has quit IRC20:36
*** NM has quit IRC20:41
*** dancn has quit IRC20:45
*** rcernin has quit IRC20:53
*** xek has quit IRC21:07
*** lbragstad_ has quit IRC21:11
*** jamesmcarthur has quit IRC21:28
*** jamesmcarthur has joined #openstack-keystone21:28
*** openstackgerrit has joined #openstack-keystone21:33
openstackgerritColleen Murphy proposed openstack/keystone master: Document the "immutable" resource option  https://review.opendev.org/71218221:33
openstackgerritMerged openstack/keystone master: NIT: Fix spelling  https://review.opendev.org/71158321:33
*** jamesmcarthur has quit IRC21:44
*** jamesmcarthur has joined #openstack-keystone21:45
*** jamesmcarthur has quit IRC21:53
*** jamesmcarthur has joined #openstack-keystone22:05
*** jamesmcarthur has quit IRC22:10
*** evrardjp has quit IRC22:17
*** evrardjp has joined #openstack-keystone22:18
*** evrardjp has quit IRC22:31
*** evrardjp has joined #openstack-keystone22:33
*** tkajinam has joined #openstack-keystone22:53
*** lbragstad_ has joined #openstack-keystone23:00
*** lbragstad_ has quit IRC23:25
*** rcernin has joined #openstack-keystone23:26
*** lbragstad_ has joined #openstack-keystone23:38
*** renich has joined #openstack-keystone23:38
« Monday, 2020-03-09 Index Wednesday, 2020-03-11 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!