13:00:47 #startmeeting image_encryption 13:00:49 Meeting started Mon Jan 27 13:00:47 2020 UTC and is due to finish in 60 minutes. The chair is Luzi. Information about MeetBot at http://wiki.debian.org/MeetBot. 13:00:50 Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. 13:00:52 The meeting name has been set to 'image_encryption' 13:00:57 #topic Roll Call 13:01:01 aloha 13:01:05 o/ 13:01:14 hi fungi :) 13:02:44 \o 13:03:26 hi redrobot 13:03:28 #topic Barbican Consumer API Update 13:03:44 are there any news from barbican side? 13:05:10 We accidentally broke TripleO with the API changes. 13:05:38 oh 13:05:41 how that? 13:06:00 The client can't handle any changes to the JSON responses 13:06:14 so the cinder encryption scenario broke 13:06:23 We had to comment out the API changes 13:06:39 and we'll have to implement the microversion header before we can uncomment that stuff. 13:07:12 ah I see 13:08:01 was it more than field additions? 13:08:06 * mordred isn't really up to speed on anything - but if there are fragile clients like that in use - should we be adding support for something to sdk and then switching things to not use fragile clients? 13:08:22 fungi, nope just a new property in the json object for Secrets 13:08:47 redrobot: which client can't handle that? 13:08:59 mordred yeah, the plan is to get openstacksdk support to match the barbicanclient feature set and then we'll deprecate barbicanclient. 13:09:06 woot! 13:09:20 ok. I'm going to consider myself having succeeded at today 13:09:28 not that i have anything against versioning responses, but i agree with mordred the client sounds fragile 13:09:58 fungi indeed it is. Which is why we're adding microversions to the API 13:10:01 yah. I mean- microversion header also sounds good to have and whatnot - good practices etc etc 13:10:14 we'll also try to make barbicanclient a bit less brittle. 13:10:37 but fwiw - sdk in general will not break if there are extra unknown things in json responses - they might not be available anywhere, but it won't break anything 13:10:38 but I think the main focus for now is getting openstacksdk up to snuff. 13:10:41 ++ 13:10:54 I think that will produce much happiness and joy 13:10:57 cool 13:10:59 Sounds like we're all in violent agreement. :D 13:11:08 * mordred violently agress with everyone 13:11:43 * fungi has normal nonviolent agreement 13:12:07 * mhen is against violence but likes agreements 13:12:42 okay, thats a very nice meeting so far :D welcome mordred btw :) 13:13:28 * mordred waves to all the nice people 13:15:22 so to conclude: Barbican Secret Consumer API is on its way :D 13:15:31 #topic Image Encryption Specs 13:16:50 i should change this topic for the next week, because mhen and I try to have some WIP patches in Glance up this week. 13:17:58 it seems like abhishekk agrees with our spec so far 13:18:16 #link https://review.opendev.org/#/c/609667/ 13:18:16 patch 609667 - glance-specs - Spec for the Glance part of Image Encryption - 8 patch sets 13:18:53 are there any questions regarding the specs? 13:19:29 btw, will the consumer API client-side implementations be added to barbicanclient and sdk or just to barbicanclient at first? 13:20:24 we'll need to use either for that in the Glance impelementation 13:22:08 does openstacksdk currently call into barbicanclient for missing methods? 13:23:42 redrobot: ^ 13:25:25 i guess he's stepped away 13:26:24 we can ask him later or tomorrow in the barbican meeting 13:26:35 #topic Open Discussion 13:26:56 are there any other topics you would like to discuss? 13:27:47 i didn't have any 13:28:15 okay, thank you all for joining today :) 13:28:18 thanks Luzi! 13:28:22 #endmeeting image_encryption