Monday, 2018-08-20

« Sunday, 2018-08-19 Index Tuesday, 2018-08-21 »
*** hoangcx has joined #openstack-horizon01:00
*** btully has joined #openstack-horizon01:08
*** btully has quit IRC01:13
*** dklyle has joined #openstack-horizon02:42
*** ChanServ sets mode: +o dklyle02:42
*** david-lyle has quit IRC02:43
*** dklyle has quit IRC02:43
*** dklyle has joined #openstack-horizon02:43
*** ChanServ sets mode: +o dklyle02:43
*** cshen has joined #openstack-horizon02:49
*** cshen has quit IRC02:53
*** btully has joined #openstack-horizon02:57
*** btully has quit IRC03:02
*** early has quit IRC03:18
*** Bhujay has joined #openstack-horizon03:18
*** Bhujay has quit IRC03:26
*** early has joined #openstack-horizon03:28
*** Bhujay has joined #openstack-horizon04:16
*** hoangcx has quit IRC05:00
*** hoangcx has joined #openstack-horizon05:00
*** hoonetorg has quit IRC05:22
*** e0ne has joined #openstack-horizon05:26
*** ChanServ sets mode: +o e0ne05:26
*** hoonetorg has joined #openstack-horizon05:39
*** hoangcx has quit IRC05:44
*** hoangcx has joined #openstack-horizon05:44
*** e0ne has quit IRC06:00
*** rdopiera has joined #openstack-horizon06:22
*** jtomasek has joined #openstack-horizon06:22
*** btully has joined #openstack-horizon06:34
*** btully has quit IRC06:39
*** e0ne has joined #openstack-horizon06:42
*** ChanServ sets mode: +o e0ne06:42
*** e0ne has quit IRC06:43
*** btully has joined #openstack-horizon06:44
*** pcaruana has joined #openstack-horizon06:46
*** cshen has joined #openstack-horizon06:50
*** rcernin has quit IRC07:05
*** btully has quit IRC07:25
*** cshen has quit IRC07:30
*** tosky has joined #openstack-horizon07:30
*** adriant has quit IRC07:59
*** adriant has joined #openstack-horizon07:59
*** e0ne has joined #openstack-horizon08:58
*** ChanServ sets mode: +o e0ne08:58
*** jpich has joined #openstack-horizon09:00
e0neamotoki: hi. is it OK if I merge backports to rocky or let's ping somebody else from our team and stable cores?09:23
*** e0ne has quit IRC10:51
*** btully has joined #openstack-horizon10:59
*** btully has quit IRC11:03
*** Bhujay has quit IRC11:17
*** dave-mccowan has joined #openstack-horizon11:34
*** Bhujay has joined #openstack-horizon11:40
*** vmarkov has joined #openstack-horizon11:43
*** e0ne has joined #openstack-horizon11:47
*** ChanServ sets mode: +o e0ne11:47
*** Bhujay has quit IRC12:16
*** Bhujay has joined #openstack-horizon12:16
*** needssleep is now known as TheJulia12:23
vmarkovHi amotoki. Could you review my patch once again? All your propositions are implemented https://review.openstack.org/#/c/238189/2313:04
amotokie0ne: hi, I was busy in internal things today. I will re-check stable/rocky patches from now and let you know13:19
amotokivmarkov: ack. I will review it soon. thanks for the patience.13:21
vmarkovThanks!13:22
amotokie0ne: all pending stable/rocky patches looks fine. We cross-checked them, so I am fine to merge them. I will +W to your patches from now.13:24
amotokie0ne: btw, how about https://review.openstack.org/#/c/591161/ in the master branch?13:25
amotokie0ne: Hopefully we can have more eyes on it though.13:27
e0nerdopiera, dklyle: ^^13:44
e0neamotoki: I'll approve it if nobody else do it today13:45
e0neamotoki: we're really close to the final RC13:45
e0nerdopiera: thanks, Radomir!13:52
rdopieranp13:53
rdopierae0ne: I have one potential security issue I'd like to briefly discuss13:54
e0nerdopiera: sure13:54
rdopierathe problem is that we use internal keystone urls to select regions13:54
rdopierawhich means that they are publicly available on the login form and in the cookie13:54
e0ne:(13:54
e0neit would be good to fix it13:55
rdopierawhich is a potential leak of security-sensitive information13:55
rdopieraI think we can instead just use numbers13:55
rdopierafor the first region, second region, etc.13:56
e0nerdopiera: are you talking about https://github.com/openstack/horizon/blob/f5728eed7aacba37c73aec90a312a4a5a2a4e108/openstack_auth/forms.py#L110-L115?13:56
rdopierayes13:57
rdopieraI made a bug: https://bugs.launchpad.net/django-openstack-auth/+bug/178794313:57
openstackLaunchpad bug 1787943 in django-openstack-auth "Internal endpoint address revealed in a cookie" [Undecided,New] - Assigned to Radomir Dopieralski (deshipu)13:57
rdopiera(I first saw it in the cookie, then realized it's also in the form)13:57
e0necan we just set OPENSTACK_KEYSTONE_URL to use public endpoint?13:59
rdopieraI'm not sure it will be available in the network in which horizon is installed14:00
e0nehm...14:01
rdopierausing numbers will also reduce the size of the cookie :)14:01
*** Bhujay has quit IRC14:02
e0newhat is your proposal if horizon hasn't access to the private endpoints?14:03
rdopierawell, hidding public endpoints won't hurt14:07
*** lblanchard has joined #openstack-horizon14:24
*** e0ne has quit IRC14:28
*** e0ne has joined #openstack-horizon14:35
*** ChanServ sets mode: +o e0ne14:35
e0nehttps://review.openstack.org/#/c/593629/ - cherry-pick to stable/rocky14:37
*** r-daneel has joined #openstack-horizon14:37
*** rdopiera has quit IRC15:05
*** pcaruana has quit IRC15:11
*** cshen has joined #openstack-horizon15:15
*** ircuser-1 has joined #openstack-horizon15:20
*** gyee has joined #openstack-horizon15:38
*** mvkr has quit IRC15:46
*** cshen has quit IRC16:02
*** e0ne has quit IRC16:16
*** cshen has joined #openstack-horizon16:17
*** btully has joined #openstack-horizon16:25
*** btully has quit IRC16:30
*** itlinux has joined #openstack-horizon16:33
*** cshen has quit IRC16:54
*** e0ne has joined #openstack-horizon17:05
*** ChanServ sets mode: +o e0ne17:05
*** jpich has quit IRC17:05
*** cshen has joined #openstack-horizon17:07
*** e0ne has quit IRC17:15
*** vmarkov has quit IRC17:39
*** e0ne has joined #openstack-horizon17:42
*** ChanServ sets mode: +o e0ne17:42
*** e0ne has quit IRC17:51
*** r-daneel has quit IRC18:06
*** r-daneel has joined #openstack-horizon18:08
*** e0ne has joined #openstack-horizon18:14
*** ChanServ sets mode: +o e0ne18:14
*** cshen has quit IRC18:23
*** tsmith_ has joined #openstack-horizon18:30
*** ircuser-1 has quit IRC18:33
*** tsmith2 has quit IRC18:33
*** _Adary has quit IRC18:33
*** tsmith_ is now known as tsmith218:33
*** r-daneel has quit IRC18:37
*** r-daneel has joined #openstack-horizon18:37
*** e0ne has quit IRC18:42
*** itlinux has quit IRC18:49
*** e0ne has joined #openstack-horizon19:06
*** ChanServ sets mode: +o e0ne19:06
*** e0ne has quit IRC19:26
*** jtomasek has quit IRC19:36
*** r-daneel_ has joined #openstack-horizon19:45
*** r-daneel has quit IRC19:47
*** r-daneel_ is now known as r-daneel19:47
*** r-daneel_ has joined #openstack-horizon20:02
*** r-daneel has quit IRC20:03
*** r-daneel_ is now known as r-daneel20:03
*** btully has joined #openstack-horizon20:03
*** btully has quit IRC20:08
*** lblanchard has quit IRC20:16
*** jtomasek has joined #openstack-horizon20:21
*** jtomasek has quit IRC20:24
*** jtomasek has joined #openstack-horizon20:31
*** jtomasek has quit IRC20:34
*** r-daneel has quit IRC20:44
*** r-daneel has joined #openstack-horizon20:50
*** mvkr has joined #openstack-horizon20:51
*** rcernin has joined #openstack-horizon21:50
*** r-daneel has quit IRC22:24
*** tosky has quit IRC23:08
« Sunday, 2018-08-19 Index Tuesday, 2018-08-21 »

Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!