Friday, 2018-08-17

openstackgerritMerged openstack/keystone master: Do not log token string
*** nicolasbock has quit IRC00:36
*** dave-mccowan has joined #openstack-keystone00:58
*** r-daneel has quit IRC01:35
*** jdennis has quit IRC01:57
*** HW_Peter has quit IRC02:36
*** Nel1x has joined #openstack-keystone02:49
*** Nel1x has quit IRC03:11
*** dave-mccowan has quit IRC03:45
*** blake has joined #openstack-keystone03:59
*** blake has quit IRC04:10
*** josecastroleon has quit IRC05:50
*** josecastroleon has joined #openstack-keystone05:51
*** Tahvok has quit IRC06:06
*** Tahvok has joined #openstack-keystone06:11
*** ravirjn has quit IRC06:27
*** shyamb has joined #openstack-keystone06:45
*** pcaruana has joined #openstack-keystone06:54
*** rcernin has quit IRC06:55
mbuilcmurphy: yesterday I had a talk with the edge guys and they had in mind a demo where a user logs into Horizon from the SP using federation. As far as I saw yesterday, the only way to interact with the SP is through a token and changing OS_URL, so I guess what they had in mind is currently not possible, or?07:08
*** cz2 has left #openstack-keystone07:20
*** josecastroleon has quit IRC07:26
cmurphymbuil: it is possible to use horizon but you have to log in to the IdP not the SP07:28
mbuilcmurphy: and could you see or interact with the SP resources from the IdP somehow?07:29
cmurphymbuil: yes, it should actually be pretty seamless, you just select the SP from a menu and then it will pretty much act like you've logged into the SP07:30
mbuilcmurphy: ah nice. I'll try that right away :)07:31
cmurphybecause it gets the token up front and has the catalog from that, it knows where all the endpoints are07:31
*** rha has joined #openstack-keystone07:41
*** jaosorior has quit IRC07:47
*** shyamb has quit IRC07:47
*** mvkr has quit IRC08:08
*** josecastroleon has joined #openstack-keystone08:12
*** mvkr has joined #openstack-keystone08:55
*** shyamb has joined #openstack-keystone08:56
*** shyambiradar has joined #openstack-keystone09:25
*** shyamb has quit IRC09:29
*** shyambiradar has quit IRC09:43
*** shyamb has joined #openstack-keystone09:43
openstackgerritMerged openstack/ldappool master: fix tox python3 overrides
*** shyamb has quit IRC10:03
*** shyam89 has joined #openstack-keystone10:03
*** josecastroleon has quit IRC10:06
*** shyam89 has quit IRC10:30
*** nicolasbock has joined #openstack-keystone10:35
*** shyam89 has joined #openstack-keystone10:51
*** dklyle has quit IRC10:55
*** david-lyle has joined #openstack-keystone10:55
*** shyam89 has quit IRC11:07
*** shyam89 has joined #openstack-keystone11:07
*** dave-mccowan has joined #openstack-keystone11:19
*** josecastroleon has joined #openstack-keystone11:22
*** shyam89 has quit IRC11:47
*** shyam89 has joined #openstack-keystone11:54
*** shyamb has joined #openstack-keystone12:09
*** shyam89 has quit IRC12:12
*** raildo has joined #openstack-keystone12:12
*** jaypipes has quit IRC12:16
*** mchlumsky has joined #openstack-keystone12:29
*** josecastroleon has quit IRC12:52
*** TheJulia is now known as needssleep12:55
*** shyamb has quit IRC13:02
*** shyam89 has joined #openstack-keystone13:03
*** vrv_ has joined #openstack-keystone13:25
*** aning has left #openstack-keystone13:31
*** aning has joined #openstack-keystone13:31
*** imacdonn has quit IRC13:42
*** imacdonn has joined #openstack-keystone13:42
*** felipemonteiro has joined #openstack-keystone13:51
*** shyam89 has quit IRC13:57
*** dansmith is now known as steelydan13:58
*** steelydan is now known as SteelyDan13:58
*** hoonetorg has quit IRC14:02
*** hoonetorg has joined #openstack-keystone14:03
*** hoonetorg has quit IRC14:09
*** josecastroleon has joined #openstack-keystone14:21
*** hoonetorg has joined #openstack-keystone14:34
*** r-daneel has joined #openstack-keystone14:44
*** felipemonteiro has quit IRC14:47
*** felipemonteiro has joined #openstack-keystone14:50
*** r-daneel has quit IRC15:00
*** felipemonteiro has quit IRC15:01
*** cburgess has quit IRC15:02
*** cburgess has joined #openstack-keystone15:03
*** josecastroleon has quit IRC15:06
*** cburgess has quit IRC15:08
*** cburgess has joined #openstack-keystone15:09
*** devx has quit IRC15:40
*** devx has joined #openstack-keystone15:42
*** vrv_ has quit IRC15:46
openstackgerritMerged openstack/keystonemiddleware master: add releasenotes to readme.rst
openstackgerritGage Hugo proposed openstack/keystoneauth master: Add nosec to usage of SHA1
gagehugokmalloc ^ bandit was updated to 1.5, ksa now is failing the bandit check16:01
gagehugoon a sha1 usage16:01
*** r-daneel has joined #openstack-keystone16:04
*** pas-ha has quit IRC16:41
*** pas-ha has joined #openstack-keystone16:42
*** gyee has joined #openstack-keystone16:52
kmallocjust exempt it16:53
kmallocthere is zero reason our use of SHA1 is an issue we're using it for obfuscating logs.16:53
kmalloci see you did that.16:53
kmallocgagehugo: alternative is to use sha25616:54
kmallocgagehugo: really it is fine to change the hash we use as long as we're consisting within a release16:54
openstackgerritMerged openstack/keystone master: Remove get_catalog from manage layer
kmallocgagehugo: -1, but only becaue the TODO is pointless.16:58
kmallocgagehugo: we can not suppress by moving to sha256 or we can nosec and say "this is for logging only"16:59
gagehugokmalloc ok, I'll update that17:27
openstackgerritGage Hugo proposed openstack/keystoneauth master: Change log hashing to SHA256
*** r-daneel_ has joined #openstack-keystone18:07
*** r-daneel has quit IRC18:08
*** r-daneel_ is now known as r-daneel18:08
*** josecastroleon has joined #openstack-keystone18:40
*** gyee has quit IRC18:43
*** r-daneel_ has joined #openstack-keystone18:43
*** r-daneel has quit IRC18:44
*** r-daneel_ is now known as r-daneel18:44
*** r-daneel has quit IRC18:46
*** josecastroleon has quit IRC18:49
*** r-daneel has joined #openstack-keystone19:15
*** nicolasbock has quit IRC19:50
*** nicolasbock has joined #openstack-keystone19:55
*** raildo has quit IRC21:22
*** nicolasbock has quit IRC21:59
openstackgerritMerged openstack/keystoneauth master: Change log hashing to SHA256
*** r-daneel has quit IRC23:01

Generated by 2.15.3 by Marius Gedminas - find it at!