| redrobot | #startmeeting keystone | 17:00 |
|---|---|---|
| opendevmeet | Meeting started Tue Aug 17 17:00:25 2021 UTC and is due to finish in 60 minutes. The chair is redrobot. Information about MeetBot at http://wiki.debian.org/MeetBot. | 17:00 |
| opendevmeet | Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. | 17:00 |
| opendevmeet | The meeting name has been set to 'keystone' | 17:00 |
| lbragstad | o/ | 17:00 |
| redrobot | #topic Roll Call | 17:00 |
| redrobot | hi lbragstad! | 17:00 |
| redrobot | Courtesy ping for ayoung, bbobrov, cmurphy, crisloma, dpar, dstanek, gagehugo, hrybacki, knikolla, lamt, lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, spilla, jdennis, ruan_he, wxy, sonuk, vishakha,Ajay, raildo, rafaelweingartner, redrobot, xek | 17:00 |
| gagehugo | o/ | 17:02 |
| redrobot | hi gagehugo | 17:02 |
| redrobot | Thanks for joining, y'all. | 17:03 |
| redrobot | I don't have anything on the agenda, I really just wanted to help kickstart these meetings again | 17:03 |
| lbragstad | ++ | 17:03 |
| lbragstad | i do have a review up for KSM that i'd like folks to take a look at if they have time | 17:04 |
| redrobot | Sure, do you have a link for that? | 17:04 |
| lbragstad | https://review.opendev.org/c/openstack/keystonemiddleware/+/787822 | 17:04 |
| lbragstad | #link https://review.opendev.org/c/openstack/keystonemiddleware/+/787822 | 17:04 |
| lbragstad | that implements the KSM portion of the project ID pass through specification redrobot wrote | 17:06 |
| lbragstad | i'm hoping to have another review up soon for the KSA bits | 17:08 |
| redrobot | lbragstad seems like a good start. I'd like to see some validation of the value in X-Project-Id header. | 17:08 |
| lbragstad | yeah - i need a test that validates we gracefully handle multiple X-Project-Id headers, too | 17:08 |
| redrobot | maybe just make sure that it's a UUID in the format that Keystone provides those | 17:08 |
| lbragstad | well - that's an interesting bit | 17:08 |
| lbragstad | i'm wondering how much validation we need on that kind of stuff | 17:09 |
| lbragstad | since we're expecting to use this feature as a way for operators to clean up non-existent project resources | 17:09 |
| redrobot | I'm mainly concerned about logging the value (line 707) ... without validation that could be anything. (even something very large that takes up lots of log space | 17:10 |
| lbragstad | not that this is a common case, but we have allowed other backends for the resources driver (e.g., ldap) | 17:10 |
| lbragstad | so - i'm wondering if we can guarantee that the project ID will always be a uuid formatted string, or if adding that validation will break some deployments | 17:10 |
| lbragstad | (when they use the feature) | 17:11 |
| redrobot | I see ... do we use the ID that ldap generates in that case? | 17:11 |
| redrobot | (some arbitrary string, I assume?) | 17:11 |
| lbragstad | yeah - potentially | 17:12 |
| lbragstad | but, again, i'm not sure how typical that is, keystone removed LDAP support for projects a while ago | 17:12 |
| lbragstad | idk - it just made me think about the validation case and how strict we should be with it | 17:13 |
| lbragstad | since we know KSM isn't going to validate that the project actually exists (since that would break the orphaned resources case) | 17:14 |
| lbragstad | thoughts? | 17:15 |
| redrobot | Maybe start with some light validation and go from there? | 17:15 |
| redrobot | like a max length at least | 17:15 |
| lbragstad | ok | 17:15 |
| redrobot | oops forgot to | 17:16 |
| redrobot | #topic Open Discussion | 17:16 |
| redrobot | I'm out on PTO next week, so I won't be here for this meeting. I figure we can probably skip it and meet again in 2 weeks. | 17:17 |
| lbragstad | sounds good to me | 17:17 |
| redrobot | How does the time work for y'all? | 17:17 |
| redrobot | I wonder if it's too late for EMEA folks? | 17:17 |
| redrobot | Maybe I should ask that in the ML? | 17:18 |
| lbragstad | ++ | 17:18 |
| redrobot | #action redrobot to ask if this time slot works for folks or if we should try earlier for EMEA contributors | 17:18 |
| redrobot | personally, a little earlier would work for me relative to my lunch time. 😅 | 17:19 |
| lbragstad | very true | 17:19 |
| lbragstad | i'm usually double booked around this time anyway | 17:19 |
| redrobot | Cool, I'll propose a -2 hr change (to 1500 UTC) and see what kind of feedback we get. | 17:21 |
| lbragstad | wfm | 17:21 |
| redrobot | Alrighty, that's all I have | 17:21 |
| gagehugo | this timeslot works for me usually, I am pretty booked this week though | 17:21 |
| redrobot | gagehugo -2 hrs would be better or worse for you? | 17:22 |
| gagehugo | worse, but I'll make it work | 17:22 |
| redrobot | hmm... how about -1 hr? better or worse? | 17:22 |
| * redrobot has a feeling it'll mostly be the 3 of us here | 17:23 | |
| gagehugo | mornings here are usually crapshoots for me, pick whatever works for you two and I can shuffle things around | 17:23 |
| redrobot | gagehugo++ sounds good | 17:23 |
| redrobot | Cool | 17:24 |
| redrobot | well, thanks for joining, y'all | 17:25 |
| redrobot | let's do it again in two weeks. | 17:25 |
| redrobot | #endmeeting | 17:25 |
| opendevmeet | Meeting ended Tue Aug 17 17:25:13 2021 UTC. Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4) | 17:25 |
| opendevmeet | Minutes: https://meetings.opendev.org/meetings/keystone/2021/keystone.2021-08-17-17.00.html | 17:25 |
| opendevmeet | Minutes (text): https://meetings.opendev.org/meetings/keystone/2021/keystone.2021-08-17-17.00.txt | 17:25 |
| opendevmeet | Log: https://meetings.opendev.org/meetings/keystone/2021/keystone.2021-08-17-17.00.log.html | 17:25 |
Generated by irclog2html.py 2.17.2 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!