Wednesday, 2025-06-04

« Tuesday, 2025-06-03 Index Thursday, 2025-06-05 »
dmendiza[m]Dave Wilde (d34dh0r53): meeting?15:03
gtemayeah, should be15:04
gtemalemme then start. Hope Dave Wilde (d34dh0r53) will join15:05
gtema#startmeeting keystone15:05
opendevmeetMeeting started Wed Jun  4 15:05:41 2025 UTC and is due to finish in 60 minutes.  The chair is gtema. Information about MeetBot at http://wiki.debian.org/MeetBot.15:05
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.15:05
opendevmeetThe meeting name has been set to 'keystone'15:05
gtemaReminder: This meeting takes place under the OpenInfra Foundation Code of Conduct15:05
gtema#link https://openinfra.dev/legal/code-of-conduct15:06
gtema#topic roll call15:06
gtemaadmiyo, bbobrov, crisloma, d34dh0r53, dpar, dstanek, hrybacki, lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, ruan_he, wxy, sonuk, vishakha, Ajay, rafaelwe, xek, gmann, zaitcev, reqa, dmendiza[m], dmendiza, mharley, jph, gtema, cardoe, deydra15:06
dmendiza[m]🙋‍♂️15:06
gtemao/15:07
gtemaalso here pretty lonely today15:07
d34dh0r53o/ sorry, I was heads down and lost track of time15:07
gtema#topic review past meeting work items15:08
d34dh0r53I can take over if needed15:08
gtema#link https://meetings.opendev.org/meetings/keystone/2025/keystone.2025-05-28-15.02.html15:08
gtemano AIs15:08
gtema#topic liaison updates15:09
gtemanothing known to me15:09
cardoeo/15:09
gtemaDave Wilde (d34dh0r53): please try to continue - I experience pretty significant lag with the bridge15:10
d34dh0r53ack15:10
d34dh0r53any liaison updates?15:11
gtemanot from me15:11
dmendiza[m]gtema: you should send a "#chair d34dh0r53"15:12
gtema#chair d34dh0r5315:12
opendevmeetCurrent chairs: d34dh0r53 gtema15:12
d34dh0r53good call dmendiza , thanks15:12
d34dh0r53#topic specification OAuth 2.0 (hiromu)15:12
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Foauth2-client-credentials-ext15:13
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Fenhance-oauth2-interoperability15:13
d34dh0r53#External OAuth 2.0 Specification15:13
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-specs/+/861554 (merged)15:13
d34dh0r53OAuth 2.0 Implementation15:13
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Fsupport-oauth2-mtls (merged)15:13
d34dh0r53OAuth 2.0 Documentation15:14
d34dh0r53#link https://review.opendev.org/c/openstack/keystone/+/838108 (merged)15:14
d34dh0r53#link https://review.opendev.org/c/openstack/keystoneauth/+/838104 (merged)15:14
d34dh0r53no updates from me on this one15:14
d34dh0r53#topic specification Secure RBAC (dmendiza[m])15:14
d34dh0r53#link https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html#z-release-timeline_15:14
d34dh0r532024.1 Release Timeline15:14
d34dh0r53Update oslo.policy in keystone to enforce_new_defaults=True15:14
d34dh0r53Update oslo.policy in keystone to enforce_scope=True15:14
dmendiza[m]Yeah...  I should get back to this or remove it from the recurring agenda15:15
dmendiza[m]I think we still need to beef up tests for "manager"15:15
d34dh0r53okay15:15
d34dh0r53#action dmendiza update S-RBAC topic in meeting etherpad15:16
d34dh0r53next up15:17
d34dh0r53#topic specification OpenAPI support (gtema)15:17
d34dh0r53#link https://review.opendev.org/q/topic:%22openapi%22+project:openstack/keystone15:17
gtemathere are 2 changes that I would appreciate a review:15:18
gtema#link https://review.opendev.org/q/topic:%22openapi%22+project:openstack/keystone+is:open15:18
gtemathose are splitting request/response schemas and preparing further addressing of similar issues15:18
d34dh0r53ack, I can take a look later today15:19
gtemathanks a lot15:19
gtemanothing else on the topic15:19
d34dh0r53cool15:20
d34dh0r53#topic open discussion15:20
gtemanothing from my side today15:21
d34dh0r53CFP for Summit closes June 13th15:22
d34dh0r53#link https://summit2025.openinfra.org/cfp/15:22
gtemaI filled a talk for federation and passkey rework15:22
d34dh0r53Get yer talks in :)15:22
gtemaare you interested in me filling a rust rework talk separately? I did that talk as webinar 2 times already, but maybe the summit will worth that again15:23
gtemain addition to that yesterday on TC meeting Amy was mentioning that eventually we would have again a Project status updates, but there is no info so far15:24
d34dh0r53I think it would be an interesting talk, probably with quite a few attendees15:26
d34dh0r53Amy also mentioned project status updates with no updates again today :)15:27
d34dh0r53cool, moving on to bug review15:30
d34dh0r53#topic bug review15:30
d34dh0r53#link https://bugs.launchpad.net/keystone/?orderby=-id&start=015:30
d34dh0r53we have a couple of new bugs15:31
d34dh0r53#link https://bugs.launchpad.net/keystone/+bug/211247715:31
d34dh0r53That could definitely be a bug, but it needs to be reproduced15:31
gtemawell, reproducing anything with AD is not a thing that most likely anybody is very willing to do15:33
d34dh0r53This will likely come up on our roadmap in the next month or so15:35
d34dh0r53We're going to be doing some AD testing with LDAP15:35
gtemaok, sounds good15:36
d34dh0r53next bug up15:38
d34dh0r53#link https://bugs.launchpad.net/keystone/+bug/211211215:38
d34dh0r53looks like stephenfin is working on this and has a fix proposed15:38
gtemaactually the alternative to that is the one I referred in the openapi15:39
gtemamy fix makes stephefins's fixsuperfluous15:39
d34dh0r53I'll let you two discuss15:41
stephenfinThe second one, sure. The first one is significantly simpler and IMO should go in since it'll be much easier/less risky to backport15:41
d34dh0r53#link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=015:41
d34dh0r53#undo15:42
opendevmeetRemoving item from minutes: #link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=015:42
d34dh0r53#link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=015:45
d34dh0r53no new bugs in python-keystoneclient15:46
d34dh0r53#link https://bugs.launchpad.net/keystoneauth/+bugs?orderby=-id&start=015:46
d34dh0r53no new bugs in keystoneauth15:46
d34dh0r53#link https://bugs.launchpad.net/keystonemiddleware/+bugs?orderby=-id&start=015:47
d34dh0r53keystonemiddleware is good15:47
d34dh0r53#link https://bugs.launchpad.net/pycadf/+bugs?orderby=-id&start=015:47
d34dh0r53nothing new in pycadf15:47
d34dh0r53#link https://bugs.launchpad.net/ldappool/+bugs?orderby=-id&start=015:47
d34dh0r53ldappool is good15:48
d34dh0r53#topic conclusion15:48
d34dh0r53thanks folks, nothing else from me15:48
d34dh0r53#endmeeting15:50
opendevmeetMeeting ended Wed Jun  4 15:50:33 2025 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)15:50
opendevmeetMinutes:        https://meetings.opendev.org/meetings/keystone/2025/keystone.2025-06-04-15.05.html15:50
opendevmeetMinutes (text): https://meetings.opendev.org/meetings/keystone/2025/keystone.2025-06-04-15.05.txt15:50
opendevmeetLog:            https://meetings.opendev.org/meetings/keystone/2025/keystone.2025-06-04-15.05.log.html15:50
gtemathanks Dave Wilde (d34dh0r53) 15:51
d34dh0r53👍️15:52
opendevreviewJorge Merlino proposed openstack/keystone master: Fix AD nested groups issues  https://review.opendev.org/c/openstack/keystone/+/95179217:13
« Tuesday, 2025-06-03 Index Thursday, 2025-06-05 »

Generated by irclog2html.py 4.0.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!