| ttx | OK I'll have a look this morning | 09:02 |
|---|---|---|
| ttx | ok old key disabled and new key generated and uploaded on GitHub. Looking into updating the secret now | 10:00 |
| ttx | Not sure which tenant / project I'm supposed to include in the zuul-client encrypt command, so I'll wait for guidance | 10:06 |
| frickler | ttx: you use tenant "openstack" and the project is the repo in which the secret file is located, "openstack/project-config" in this case | 10:11 |
| ttx | frickler: ok, thanks! Also in the patch where you set all secrets to "dummy", for openstack-mirroring you set two dummy values: one for the ssh_key (which I'm about to update) and one for a "api_token" which was not there before. Can I just remove that one in the updating patch? | 10:15 |
| frickler | ttx: the api_token was added by you in https://review.opendev.org/c/openstack/project-config/+/738228 ? iiuc that would need to be regenerated, too? | 10:18 |
| ttx | ah... now I need to remember how this all works :) | 10:20 |
| ttx | probably need to rotate that token as well | 10:21 |
| ttx | Alright, submitted | 10:43 |
| frickler | merged and working, see e.g. https://zuul.opendev.org/t/openstack/build/e942db0dfb7e49cba64d3f896dba7c3a, thx ttx | 11:38 |
| ttx | \o/ | 11:44 |
| frickler | now I need to check what else is missing before we can create a test release again | 11:46 |
| fungi | we still need https://review.opendev.org/973029 so the release bot can push tags | 14:15 |
| fungi | i was planning to follow up and coordinate a test release once that merges | 14:15 |
| fungi | but i guess i didn't communicate that clearly | 14:16 |
| fungi | i'll just self-approve it to get that going | 14:16 |
| fungi | okay, that's merged, so should be able to test again? | 14:29 |
| frickler | we have https://review.opendev.org/c/openstack/releases/+/972859 prepared, so let me review and approve | 14:43 |
| opendevreview | Merged openstack/releases master: Test release with release-test 8.3.0 https://review.opendev.org/c/openstack/releases/+/972859 | 14:56 |
| elodilles | something is not correct yet :S https://zuul.opendev.org/t/openstack/build/3fa6961cff25471982b3e42a584b7e9f | 15:20 |
| frickler | that looks like an issue with the pypi token I encrypted earlier :( | 15:30 |
| clarkb | frickler: ttx I suspect api_token is for creating new repos and then the ssh key is for pushing to them | 15:47 |
| ttx | clarkb: indeed | 16:12 |
| clarkb | we have a similar setup for quay.io container repo management | 16:13 |
| clarkb | the pypi secret has been updated with a suspected fix. Do we have a new release-test test or do we reenqueue the last one? | 17:41 |
| frickler | I was thinking to reenqueue https://zuul.opendev.org/t/openstack/buildset/4f87cc7c63554f38a1dbfb8ad26f90e6, rerunning the github mirror should not hurt | 18:00 |
Generated by irclog2html.py 4.0.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!