Wednesday, 2024-08-28

« Tuesday, 2024-08-27 Index Thursday, 2024-08-29 »
opendevreviewOpenStack Proposal Bot proposed openstack/keystone master: Imported Translations from Zanata  https://review.opendev.org/c/openstack/keystone/+/92446002:42
*** __ministry is now known as Guest170808:51
opendevreviewMarkus Hentsch proposed openstack/keystone master: Implement the Domain Manager Persona for Keystone  https://review.opendev.org/c/openstack/keystone/+/92413213:26
opendevreviewMarkus Hentsch proposed openstack/keystone-tempest-plugin master: Extend tests for new Domain Manager Persona  https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/92422213:26
*** __ministry is now known as Guest172813:53
opendevreviewMarkus Hentsch proposed openstack/keystone master: Implement the Domain Manager Persona for Keystone  https://review.opendev.org/c/openstack/keystone/+/92413213:55
d34dh0r53#startmeeting keystone15:04
opendevmeetMeeting started Wed Aug 28 15:04:29 2024 UTC and is due to finish in 60 minutes.  The chair is d34dh0r53. Information about MeetBot at http://wiki.debian.org/MeetBot.15:04
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.15:04
opendevmeetThe meeting name has been set to 'keystone'15:04
d34dh0r53there we go, the bot was slow15:05
xeko/15:05
d34dh0r53#topic roll call 15:05
d34dh0r53admiyo, bbobrov, crisloma, d34dh0r53, dpar, dstanek, hrybacki, lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, ruan_he, wxy, sonuk, vishakha, Ajay, rafaelwe, xek, gmann, zaitcev, reqa, dmendiza[m], mharley, jph, gtema15:05
d34dh0r53o/15:05
mheno/15:05
gtemao/15:05
dmendiza[m]🙋‍♂️15:06
d34dh0r53#topic review past meeting work items15:07
d34dh0r53#link https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-08-21-15.00.html15:07
d34dh0r53just one: dmendiza please review the updates to https://review.opendev.org/c/openstack/keystone/+/92413215:07
d34dh0r53I workflowed that about 5 minutes ago15:08
dmendiza[m]lgtm15:08
dmendiza[m]thank you, mhen 15:08
mhenthanks dmendiza[m] for the review and the suggestions regarding simplifications due to role inheritance!15:08
gtemathats awesome, thanks guys. We are right in time for the feature freeze15:09
d34dh0r53Indeed, it's great that we got that merged, thank you all!15:10
d34dh0r53well, almost merged 🤞15:10
d34dh0r53next up15:11
d34dh0r53#topic liaison updates15:11
d34dh0r53nothing from VMT15:11
d34dh0r53as mentioned we're coming up on feature freeze on Friday so any last things, now is the time :)15:11
d34dh0r53that's it from Release Management15:11
d34dh0r53#topic specification OAuth 2.0 (hiromu)15:12
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Foauth2-client-credentials-ext15:13
d34dh0r53t15:13
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Fenhance-oauth2-interoperability15:13
d34dh0r53External OAuth 2.0 Specification15:13
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-specs/+/861554 (merged)15:13
d34dh0r53OAuth 2.0 Implementation15:13
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Fsupport-oauth2-mtls15:14
d34dh0r53OAuth 2.0 Documentation15:14
d34dh0r53#link https://review.opendev.org/c/openstack/keystone/+/838108 (merged)15:14
d34dh0r53#link https://review.opendev.org/c/openstack/keystoneauth/+/838104 (merged)15:14
d34dh0r53no updates15:14
d34dh0r53next up15:14
d34dh0r53#topic specification Secure RBAC (dmendiza[m])15:14
d34dh0r53#link https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html#z-release-timeline_15:14
d34dh0r532024.1 Release Timeline15:14
d34dh0r53Update oslo.policy in keystone to enforce_new_defaults=True15:15
d34dh0r53Update oslo.policy in keystone to enforce_scope=True15:15
d34dh0r53#link https://review.opendev.org/c/openstack/keystone/+/902730 (Merged)15:15
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/903713 (Merged)15:15
d34dh0r53#link https://review.opendev.org/c/openstack/tempest/+/912489 (Merged)15:15
gtemais anything open on srbac at all?15:16
gtemafeels like everything is completed15:16
dmendiza[m]Not sure if we've tested with the new srbac defaults in oslo.policy?15:17
d34dh0r53not sure either, sorry, my element timeline is really confused so I got lost15:19
gtemaaren't all the tempest tests everywhere doing that already since the change in oslo.policy merged?15:19
dmendiza[m]Possibly?  ...  Depends on whether Keystone is overriding the oslo defaults or not (e.g. using set_default(...))15:20
gtemahmm, ok15:20
d34dh0r53Are we done with Phase 3 from the Governance doc?15:22
gtemawe even went further and implemented another persona ;-)15:23
gtemabtw, I think there is no much for project-manager in keystone. It is more for other services15:24
d34dh0r53Yeah, I was just wondering because I didn't see anything about keystone in the tracking etherpad15:25
d34dh0r53brb, I hate element15:25
d34dh0r53back15:26
gtemaand everything is still here ;-) I think it is not the element with a problem but a oftc bridge15:27
d34dh0r53It could be the bridge15:27
d34dh0r53but element has some UX things that bother me, but in this case I do think it's the bridge15:27
gtemaindeed15:28
d34dh0r53Ok, we should clean up the SRBAC speci section of the weekly etherpad then15:28
gtema+115:29
d34dh0r53and perhaps remove it entirely15:29
d34dh0r53dmendiza: can you take a stab at that?15:29
dmendiza[m]ack15:30
d34dh0r53#action dmendiza clean up the SRBAC Specification section of the weekly meeting etherpad15:30
d34dh0r53thanks!15:31
d34dh0r53next up15:31
d34dh0r53#topic specification OpenAPI support (gtema)15:31
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-specs/+/910584 (merged)15:31
d34dh0r53#link https://review.opendev.org/q/topic:%22openapi%22+project:openstack/keystone15:31
d34dh0r53gtema: changes awaiting review15:31
d34dh0r53I will review these today15:32
gtemagreat, appreciate15:32
d34dh0r53no problem15:36
d34dh0r53next up15:36
d34dh0r53#topic specification domain manager (mhen)15:36
d34dh0r53#link https://review.opendev.org/q/topic:%22domain-manager%2215:36
d34dh0r53keystone patchset adjusted according to Douglas' review, keystone-tempest-plugin aligned accordingly15:36
gtemahopefully Zuul will not complain15:37
d34dh0r53yeah, thanks again Grzegorz Grasza, dmendiza and mhen for getting this in before the deadline15:37
mhenseconded, much appreciated!15:38
d34dh0r53cool, there are some tests to merge but those should be easier to get in15:39
d34dh0r53that does it for specifications15:39
d34dh0r53next up15:39
d34dh0r53#topic open discussion15:40
d34dh0r53codebase renovation (gtema)15:40
d34dh0r53#link https://review.opendev.org/q/topic:%22renovate%22+is:open15:40
d34dh0r53I think these are all merged15:40
gtemaI see everything landed. Thanks a lot guys15:40
gtemain the next cycle I will start working on getting rid of passkey15:41
gtemapasslib15:41
d34dh0r53oh sweet, I was just looking at some replies on that15:41
d34dh0r53it's not looking good upstream, the maintainer has disappeared again15:43
gtemalooking at growing amount of issues and deprecation in next py I am pretty convinced there is no way around dropping it15:43
d34dh0r53someone on the thread mentioned #link https://github.com/frankie567/pwdlib15:45
gtemayes, looking currently15:45
gtemaI just that if it doesn't offer compatibility with passlib we certanly should avoid exchanging apples with peaches 15:46
d34dh0r53I haven't looked into it much15:46
d34dh0r53exactly15:46
gtemait's not worth of introducing new dependency when native python core libs already do everything we need15:46
d34dh0r53yeah, that's a goal for next cycle, and I'll add it to the PTG agenda15:50
gtemagood15:50
d34dh0r53anything else for open discussion before we move on?15:51
gtemanot from me15:51
d34dh0r53cool, moving on15:52
d34dh0r53#topic bug review15:52
d34dh0r53#link https://bugs.launchpad.net/keystone/?orderby=-id&start=015:52
d34dh0r53no new bugs for keystone15:52
d34dh0r53#link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=015:53
d34dh0r53nothing new for python-keystoneclient15:53
d34dh0r53#link https://bugs.launchpad.net/keystoneauth/+bugs?orderby=-id&start=015:53
d34dh0r53keystoneauth is good15:53
d34dh0r53#link https://bugs.launchpad.net/keystonemiddleware/+bugs?orderby=-id&start=015:53
d34dh0r53keystonemiddleware is also good15:53
d34dh0r53#link https://bugs.launchpad.net/pycadf/+bugs?orderby=-id&start=015:54
d34dh0r53pycadf is looking good15:54
d34dh0r53#link https://bugs.launchpad.net/ldappool/+bugs?orderby=-id&start=015:54
d34dh0r53so it ldappool15:54
d34dh0r53#topic conclusion15:54
d34dh0r53Thanks again for the fantastic effort in reviewing and merging things before the freeze15:55
d34dh0r53It's very much appreciated!!15:55
d34dh0r53The PTG is coming up, please start thinking about topics and we'll get them on the agenda.15:56
d34dh0r53I've resubmitted my candidacy for PTL for Keystone, and am looking forward to another successful cycle15:57
gtema:) it is a funny election cycle. All the typical PTLs submit patch in the last 1-2 days15:58
d34dh0r53I know :) I think fungi nailed it 15:59
d34dh0r53anyways, that's all from me for this week, thanks again!!16:00
d34dh0r53#endmeeting16:00
opendevmeetMeeting ended Wed Aug 28 16:00:30 2024 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)16:00
opendevmeetMinutes:        https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-08-28-15.04.html16:00
opendevmeetMinutes (text): https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-08-28-15.04.txt16:00
opendevmeetLog:            https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-08-28-15.04.log.html16:00
gtemathanks16:00
*** ykarel is now known as ykarel|away16:09
*** __ministry is now known as Guest174417:21
opendevreviewMerged openstack/keystone master: Implement the Domain Manager Persona for Keystone  https://review.opendev.org/c/openstack/keystone/+/92413218:29
« Tuesday, 2024-08-27 Index Thursday, 2024-08-29 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!