Wednesday, 2025-06-18

« Tuesday, 2025-06-17 Index Thursday, 2025-06-19 »
d34dh0r53gtema: I have a conflict with the meeting this week, can you run it?12:15
gtemaYupp, will do12:29
d34dh0r53Thank you!13:11
gtema#startmeeting keystone15:00
opendevmeetMeeting started Wed Jun 18 15:00:24 2025 UTC and is due to finish in 60 minutes.  The chair is gtema. Information about MeetBot at http://wiki.debian.org/MeetBot.15:00
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.15:00
opendevmeetThe meeting name has been set to 'keystone'15:00
gtemaReminder: This meeting takes place under the OpenInfra Foundation Code of Conduct15:00
gtema#link https://openinfra.dev/legal/code-of-conduct15:00
gtema#topic roll call15:00
gtemaadmiyo, bbobrov, crisloma, d34dh0r53, dpar, dstanek, hrybacki, lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, ruan_he, wxy, sonuk, vishakha, Ajay, rafaelwe, xek, gmann, zaitcev, reqa, dmendiza[m], dmendiza, mharley, jph, gtema, cardoe, deydra15:00
xeko/15:01
gtemaspecial ping for dmendiza 15:01
gtemalooks we are alone Greg15:02
gtema:)15:02
gtema#topic review past meeting work items15:02
gtema#link https://meetings.opendev.org/meetings/keystone/2025/keystone.2025-06-11-15.12.html15:03
gtemadmendiza: wanted to update S-RBAC topic15:03
gtemaI see it is not done15:03
gtemana well, ...15:04
gtema#topic liaison updates15:04
gtemathere is nothing from me15:04
xekno updates from me either15:05
gtemaack, then we jump into15:05
gtema#topic specification15:05
gtema#topic oauth215:05
gtemaI do not think there are any changes, so not going to post all the links yet again15:06
gtema#topic openapi15:06
gtemachanges that I posted last week are now merged. Will take a look at going further with split of request/responses15:06
gtema#topis secure rbac15:07
gtemaI have myself just updated 2024.1 to 2025.215:07
gtemaI mean in the agenda15:07
gtemaI see we set enforce_new_defaults in some federation tests15:08
gtemaand also I see enforce_new_defaults is default to True in oslo.policy15:09
gtemawith that I am actually wondering - is there anything to do wrt that?15:10
jayaanand_i am from NetApp. we have customer who is looking for SAML based authentication between Cinder and Netapp filer through data-plane connection. Are there any existing workflows where Cinder is using keystone for SAML auth with backed storage?15:12
gtemaok, without Doug I am not willing to drop the item from agenda, but at the same time I believe there is actually nothing to do since we do not flip the defaults on the Keystone side15:12
gtemajayaanand_ - not sure. From Keystone side we have no clue what Cinder is doing and how15:13
gtemaon the other side Dave Wilde (d34dh0r53) mentined recently that in RH 10 mod_shiboleth is going to be dropped so in general future of SAML is under the axe15:14
gtemaon the other side I hardly believe Cinder NetApp may have any SAML communication since it requires browser. So it is not usable for the server-side flows from my knowledge15:15
gtemaanyway,15:16
gtema#topic open discussion15:16
drencromHi, I posted a patch that needs review15:16
gtemayes, I have seen that15:16
gtema#link https://review.opendev.org/c/openstack/keystone/+/95179215:16
gtemaproblem is that we have no CI and nobody having practical experience with AD so far15:17
gtemaso reviewing this is not easy15:17
gtemawell, it is easy, but ensuring it is correct is not15:17
gtema#action review https://review.opendev.org/c/openstack/keystone/+/951792 on friday during reviewaton15:18
gtemaanything else for open discussion?15:19
drencromI see, thanks15:19
gtema#topic bug review15:20
drencromPlease at least check if the changes are acceptable for you because it kind og goes against the design of the classes there15:20
gtemaas recorded, we would try to check it on friday in regular review meeting15:20
gtema#link https://bugs.launchpad.net/keystone/?orderby=-id&start=015:21
gtemano new bugs in Keystone (huray)15:21
gtema#link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=015:22
gtemanothing in python-keystoneclient either15:22
gtema#link https://bugs.launchpad.net/keystoneauth/+bugs?orderby=-id&start=015:22
gtemanothing new in keystoneauth15:22
gtema#link https://bugs.launchpad.net/keystonemiddleware/+bugs?orderby=-id&start=015:23
gtemanothing new15:23
gtema#link https://bugs.launchpad.net/pycadf/+bugs?orderby=-id&start=015:23
gtemanothing in pycadf15:23
gtemathat would be it for bugs15:24
gtema#topic conclusion15:24
gtemalast chance to raise anything15:24
gtema#action discuss with missing folks on Friday during reviewaton abount CFP for forum and Project Update15:24
gtemaDoes not look like there is anything else15:25
gtemaWith that - thanks folks15:25
gtema#endmeeting15:25
opendevmeetMeeting ended Wed Jun 18 15:25:43 2025 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)15:25
opendevmeetMinutes:        https://meetings.opendev.org/meetings/keystone/2025/keystone.2025-06-18-15.00.html15:25
opendevmeetMinutes (text): https://meetings.opendev.org/meetings/keystone/2025/keystone.2025-06-18-15.00.txt15:25
opendevmeetLog:            https://meetings.opendev.org/meetings/keystone/2025/keystone.2025-06-18-15.00.log.html15:25
opendevreviewMerged openstack/keystonemiddleware stable/2025.1: Update TOX_CONSTRAINTS_FILE for stable/2025.1  https://review.opendev.org/c/openstack/keystonemiddleware/+/94370816:15
« Tuesday, 2025-06-17 Index Thursday, 2025-06-19 »

Generated by irclog2html.py 4.0.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!