Tuesday, 2022-02-01

« Monday, 2022-01-31 Index Wednesday, 2022-02-02 »
*** oklhost_ is now known as oklhost07:16
*** dasm|off is now known as dasm13:02
*** dasm is now known as dasm|rover13:02
*** marlinc is now known as Guest139313:51
dmendiza[m]#startmeeting keystone15:01
opendevmeetMeeting started Tue Feb  1 15:01:00 2022 UTC and is due to finish in 60 minutes.  The chair is dmendiza[m]. Information about MeetBot at http://wiki.debian.org/MeetBot.15:01
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.15:01
opendevmeetThe meeting name has been set to 'keystone'15:01
noonedeadpunko/15:01
d34dh0r53o/15:01
h_asahinao/15:01
dmendiza[m]#topic Roll Call15:01
xeko/15:01
dmendiza[m]#link https://etherpad.opendev.org/p/keystone-weekly-meeting15:01
Murano/15:01
dmendiza[m]Courtesy ping for ayoung, bbobrov, crisloma, d34dh0r53, dpar, dstanek, gagehugo, hrybacki, knikolla, lamt, lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, spilla, ruan_he, wxy, sonuk, vishakha,Ajay, rafaelweingartner, xek15:01
dmendiza[m]Lots of folks here today!  Welcome15:02
gagehugoo/15:02
dmendiza[m]OK, let's get started15:03
dmendiza[m]#topic Review Past Meeting Action Items15:03
dmendiza[m]#link https://meetings.opendev.org/meetings/keystone/2022/keystone.2022-01-25-15.01.html15:03
dmendiza[m]We didn't have any15:03
knikollao/15:03
dmendiza[m]#topic Liaison Updates15:03
dmendiza[m]knikolla: just in time to talk about Liaison Updates 😉15:04
* knikolla had a busy week and didn't perform his duties :(15:04
dmendiza[m]No worries15:05
dmendiza[m]I did update my calendar with the correct times for Oslo and Security meetings15:05
dmendiza[m]so I'll make those next ones for sure15:05
dmendiza[m]Moving on15:05
dmendiza[m]#topic Berlin Summit CFP15:06
dmendiza[m]h_asahina: looks like you're working on a proposal?15:06
dmendiza[m]#link https://etherpad.opendev.org/p/ois2022-tacker-keystone15:06
h_asahinayes15:06
h_asahinathat's my abstract15:06
h_asahinaregarding this submission, I have a favor to ask.15:07
dmendiza[m]What's up?15:07
h_asahinaCould someone be a co-author? 15:07
h_asahinahopefully knikolla: if you don't mind.15:09
knikollaSure :)15:09
h_asahinathank you so much.15:09
h_asahinaPlease feedback me if you want to change after reading the abstract.15:09
dmendiza[m]Nice, looking forward to see what y'all put together for the Summit15:10
knikollaSure, I'll go over it later today. 15:11
knikollaThank you15:11
dmendiza[m]OK, moving on15:11
dmendiza[m]#topic OAuth 2.015:11
d34dh0r53yeah, looking forward to that talk15:11
dmendiza[m]h_asahina: anything you want to talk about RE: the OAuth 2.0 work?15:11
h_asahinaActually, I'd like to know the reason why OAuth2.0 has been not supported in Keystone.15:12
h_asahinaif someone knows that.15:12
h_asahinaMaybe it's natural to mention such background.15:13
knikollaNobody really had it as a priority enough to support its development. 15:13
knikollaI don't think there's any technical reasons. 15:14
h_asahinaI got it. so it's simply because the lack of demand.15:14
knikollaYeah, keystone had to work well with openstack first and foremost, and our resources were targeted there. 15:15
h_asahinaOk, that make sense. I think I can tell the background smoothly because now we have demand.15:16
knikollaand integration with other identity providers was already there via the external, mapped or ldap identity drivers15:17
h_asahinaI see. yeah, that's true. the present OAuth2.0 is implementation for the openstack client which is not important to interoperate with the other component outside the openstack.15:18
h_asahinaand naturally not important for Keystone so far.15:19
dmendiza[m]Cool, moving on15:20
h_asahinathanks.15:21
dmendiza[m]#topic Secure RBAC15:21
dmendiza[m]not a whole lot of updates on my side15:21
dmendiza[m]I'm still trying to get some Tripleo-heat-templates patches landed into stable/wallaby15:21
dmendiza[m]for the work lbragstad did implementing the SRBAC rules in a custom policy15:21
dmendiza[m]Any questions/comments RE: SRBAC?15:22
knikollaI need to catch up on all of that work15:23
dmendiza[m]Same15:26
dmendiza[m]I need to catch up on the ML discussions15:26
dmendiza[m]Looks like there's some more discussion going on in the "service" role patch15:26
dmendiza[m]#link https://review.opendev.org/c/openstack/keystone-specs/+/81861615:26
dmendiza[m]the "manager" role spec is ready to land I think? https://review.opendev.org/c/openstack/keystone-specs/+/81860315:27
dmendiza[m]Also looks like the community goal re-work patch landed https://review.opendev.org/c/openstack/governance/+/81515815:28
dmendiza[m]OK, I'll keep on keeping an eye out for this15:30
dmendiza[m]#topic Open Discussion15:30
dmendiza[m]Any other topics y'all want to talk about?15:31
d34dh0r53anyone want to be added to the reviewathon invite?15:35
dmendiza[m]Reviewathon = We get together on Google Meet to review patches together15:36
d34dh0r53^ thanks dmendiza[m] 15:36
dmendiza[m]We'll announce it here on Friday when we're about to start15:37
dmendiza[m]in case someone wants to join in15:37
dmendiza[m]#topic Bug Review15:42
dmendiza[m]OK, moving on ...15:42
dmendiza[m]#link https://bugs.launchpad.net/keystone/?orderby=-id&start=015:42
dmendiza[m]Looks like we have one new bug15:43
dmendiza[m]#link https://bugs.launchpad.net/keystone/+bug/195967415:43
dmendiza[m]> 15:43
dmendiza[m]Keystone produce error after trying to read application_credential even if not set15:43
dmendiza[m]Looks like an application credential 500 when trying to work with octavia using appcreds15:45
MuranYeah I created that bug report today. Not sure how well I managed to describe it. But I'm here to discuss or suggest stuff if needed :) 15:46
johnsomThat was just raised in the #openstack-lbaas channel. I was going to look into that a bit today. If you have any thoughts, let me know.15:46
dmendiza[m]johnsom: oh cool, it's on your radar already.  Let me know if I can help (spoiler: probably not because I'm still a Keystone noob) 😜15:49
dmendiza[m]#link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=015:50
dmendiza[m]Looks like now new python-barbicanclient bugs15:50
dmendiza[m]*python-keystoneclient15:50
dmendiza[m]dang muscle memory15:50
johnsomlol15:50
dmendiza[m]#link https://bugs.launchpad.net/keystonemiddleware/+bugs?orderby=-id&start=015:51
dmendiza[m]And no new keystonemiddleware bugs15:51
dmendiza[m]That's all I have on the agenda for today15:51
dmendiza[m]Thanks for joining, everyone!15:51
dmendiza[m]#endmeeting15:51
opendevmeetMeeting ended Tue Feb  1 15:51:50 2022 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)15:51
opendevmeetMinutes:        https://meetings.opendev.org/meetings/keystone/2022/keystone.2022-02-01-15.01.html15:51
opendevmeetMinutes (text): https://meetings.opendev.org/meetings/keystone/2022/keystone.2022-02-01-15.01.txt15:51
opendevmeetLog:            https://meetings.opendev.org/meetings/keystone/2022/keystone.2022-02-01-15.01.log.html15:51
johnsomdmendiza[m] I have dug into that application_credential bug this morning. I think we need some keystone expertise on this: https://bugs.launchpad.net/keystone/+bug/195967420:10
dmendiza[m]johnsom: ack, thanks for looking into that.  I'll try to take a look, or worst case, take a look on Friday during our Reivew-a-thon20:17
johnsom+120:17
*** dasm|rover is now known as dasm|off22:23
« Monday, 2022-01-31 Index Wednesday, 2022-02-02 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!