Tuesday, 2022-12-13

« Monday, 2022-12-12 Index Wednesday, 2022-12-14 »
*** dviroel|rover|out is now known as dviroel|rover01:12
*** dviroel|rover is now known as dviroel|rover|out01:36
*** blarnath is now known as d34dh0r5303:37
*** blarnath is now known as d34dh0r5303:52
*** dviroel|rover|out is now known as dviroel|rover11:18
*** sfinucan is now known as stephenfin12:04
pengo_Hello,  Does application credentials created as member role with access rule needs any special permissions to list hypervisors via cli? 12:54
pengo_Access rule i created for application credentials  https://www.irccloud.com/pastebin/1qT5bRY3/12:55
pengo_after sourcing the credentials if i would like to list any or resources nothing works 12:56
pengo_ openstack hypervisor list                                 12:57
pengo_The request you have made requires authentication. (HTTP 401) (Request-ID: req-c4532458-5606-4c85-8f93-20e61f57e2c9)12:57
pengo_is it bug ?12:59
*** dasm|off is now known as dasm14:00
knikolla[m]d34dh0r53: i have a scheduling conflict so i can't make the meeting. 14:23
d34dh0r53knikolla[m]: ack, no worries14:24
opendevreviewHiromu Asahina proposed openstack/keystone-specs master: OAuth 2.0 Mutual-TLS Support  https://review.opendev.org/c/openstack/keystone-specs/+/84376514:54
d34dh0r53#startmeeting keystone15:00
opendevmeetMeeting started Tue Dec 13 15:00:00 2022 UTC and is due to finish in 60 minutes.  The chair is d34dh0r53. Information about MeetBot at http://wiki.debian.org/MeetBot.15:00
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.15:00
opendevmeetThe meeting name has been set to 'keystone'15:00
d34dh0r53#topic roll call15:00
d34dh0r53admiyo, bbobrov, crisloma, d34dh0r53, dpar, dstanek, hrybacki, knikolla, lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, ruan_he, wxy, sonuk, vishakha, Ajay, rafaelwe, xek, gmann, zaitcev15:00
d34dh0r53#topic review past meeting work items15:02
d34dh0r53#link https://meetings.opendev.org/meetings/keystone/2022/keystone.2022-12-06-15.00.html15:03
gmanno/15:03
d34dh0r53we didn't really have a reviewathon so I'm going to push those items to next week15:03
d34dh0r53o/ gmann 15:03
d34dh0r53err, this week15:03
d34dh0r53#action reviewathon https://review.opendev.org/c/openstack/keystoneauth/+/83810415:03
hiromuo/15:03
d34dh0r53#action reviewathon https://review.opendev.org/c/openstack/keystone/+/83810815:04
d34dh0r53o/ hiromu 15:04
d34dh0r53#action reviewathon https://review.opendev.org/c/openstack/keystone/+/86092815:04
d34dh0r53#action reviewathon https://review.opendev.org/c/openstack/keystoneauth/+/86092315:04
d34dh0r53I still haven't had a chance to look at the user-defined attribute control, but things are starting to slow down for the end of the year so I should be able to look into that15:05
gmannthere is service role implementation also up https://review.opendev.org/c/openstack/keystone/+/86342015:05
d34dh0r53#action d34dh0r53 look into user-defined attribute access control15:06
d34dh0r53gmann: ack, thanks, I'll add it to the list to look at this week15:07
d34dh0r53#action reviewathon https://review.opendev.org/c/openstack/keystone/+/86342015:07
d34dh0r53and a couple of house cleaning reviews for knikolla[m] :)15:08
d34dh0r53#action knikolla[m] please review https://review.opendev.org/c/openstack/pycadf/+/86370215:08
d34dh0r53#action knikolla[m] please review https://review.opendev.org/c/openstack/keystonemiddleware/+/86680515:08
d34dh0r53I think that does it for the past meeting work items15:09
d34dh0r53#topic liaison updates15:09
d34dh0r53nothing from VMT15:09
d34dh0r53and I don't think we have anything from release management15:10
d34dh0r53#help Please let me know if you're interested in volunteering for a liaison role15:10
d34dh0r53#topic specification OAuth 2.0 (hiromu)15:10
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Foauth2-client-credentials-ext15:11
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-specs/+/84376515:11
hiromui've just updated the spec according to knikolla's comment15:11
hiromu https://review.opendev.org/c/openstack/keystone-specs/+/84376515:11
hiromuhttps://review.opendev.org/c/openstack/keystone-specs/+/843765/17..18 . this might be better.15:12
d34dh0r53hiromu: I saw that, thank you!15:12
hiromu:)15:12
hiromui'd like to quickly check it again at the reviewathon this week15:12
hiromualso, move forward to the review of codes: https://review.opendev.org/c/openstack/keystone/+/860613, if possible.15:13
d34dh0r53hiromu: ok, I'll make sure we hold one and try to ensure that knikolla[m] and xek are there15:13
hiromugreat. thanks.15:13
d34dh0r53no problem, thank you15:14
d34dh0r53#topic specification Secure RBAC (dmendiza[m])15:14
d34dh0r53#link https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html#z-release-timeline_15:15
d34dh0r53The Service Role Spec was merged, yay!15:15
d34dh0r53now on to reviewing the implementation code15:16
d34dh0r53#link https://review.opendev.org/c/openstack/keystone/+/86342015:17
d34dh0r53also, we need more reviews on the Manager Role Implementation15:17
d34dh0r53#link https://review.opendev.org/c/openstack/keystone/+/82260115:17
d34dh0r53anything I missed for Secure RBAC?15:18
gmannI think that is all15:19
d34dh0r53ack, thanks gmann!15:20
d34dh0r53moving on to open discussion15:20
d34dh0r53#topic open discussion15:20
d34dh0r53drencrom: zuul failing because test-requirements not compatible with python 3.10 (see https://review.opendev.org/c/openstack/keystonemiddleware/+/860481)15:21
zaitcevIs Dave our PTL still?15:21
d34dh0r53zaitcev: yes, I'm the PTL15:21
d34dh0r53zaitcev: can I help with something?15:25
zaitcevd34dh0r53: Did you see my e-mail on Thursday? Maybe it went to wrong Dave.15:25
d34dh0r53zaitcev: what was the subject, I was heads down last week and may have missed it15:26
zaitcevd34dh0r53: "Keystone work"15:26
d34dh0r53zaitcev: ahh, just found it, you sent it to the correct Dave, the correct Dave didn't reply, my bad15:29
zaitcevd34dh0r53: np15:30
d34dh0r53zaitcev: are you available on Friday from 9-10 Central (15:00-16:00 UTC)?15:31
zaitcevd34dh0r53: yes15:31
d34dh0r53that is when we have our reviewathons, I'll forward you the invite and it will give you a good idea of what we're prioritizing in terms of reviews/issues15:31
d34dh0r53awesome!15:31
d34dh0r53back to the meeting15:32
zaitcevoh, I tried to make it, but I was unable to find out where review-a-thon was held.15:32
d34dh0r53drencrom: zuul failing because test-requirements not compatible with python 3.10 (see https://review.opendev.org/c/openstack/keystonemiddleware/+/860481)15:32
d34dh0r53this needs one of the housekeeping reviews to merge: https://review.opendev.org/c/openstack/keystonemiddleware/+/86680515:32
d34dh0r53hopefully knikolla[m] can give that one the go ahead15:33
d34dh0r53anything else before we move to bug review?15:33
d34dh0r53#topic bug review15:33
d34dh0r53first up #link https://bugs.launchpad.net/keystone/?orderby=-id&start=015:34
d34dh0r53I just replied to https://bugs.launchpad.net/keystone/+bug/1999294 asking for more information15:36
d34dh0r53another new one, https://bugs.launchpad.net/keystone/+bug/199906815:37
d34dh0r53that's interesting, we'll need to dig into that one15:38
d34dh0r53that's the new bugs for Keystone15:38
d34dh0r53next up we have 15:39
d34dh0r53#link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=015:39
d34dh0r53nothing new for python-keystoneclient15:39
d34dh0r53#link https://bugs.launchpad.net/keystoneauth/+bugs?orderby=-id&start=015:39
d34dh0r53https://bugs.launchpad.net/keystoneauth/+bug/1999431 is new15:40
zaitcevHooold on. Is this not the time when you make someone volunteer for every specific bug and see it through? Or how it's done in Keystone? The one you answered and asked for logs is fine, but the other is set to fall through cracks.15:40
d34dh0r53zaitcev: well, we're running a bit short on volunteers these days :)15:41
zaitcevok, sorry. How about this, I'll try to reproduce 199906815:41
d34dh0r53I'm planning on using some of my EOY time to try to triage and wrangle our bug backlogs15:42
d34dh0r53zaitcev: that would be awesome!15:42
d34dh0r53https://bugs.launchpad.net/keystoneauth/+bug/1999431 is low-hanging-fruit, any volunteers on that one?15:43
d34dh0r53let me know, or I'll take it15:44
d34dh0r53that does it for keystoneauth15:45
d34dh0r53#link https://bugs.launchpad.net/keystonemiddleware/+bugs?orderby=-id&start=015:46
d34dh0r53nothing new for keystonemiddleware15:46
d34dh0r53#link https://bugs.launchpad.net/pycadf/+bugs?orderby=-id&start=015:46
d34dh0r53pycadf has nothing new15:46
d34dh0r53#link https://bugs.launchpad.net/ldappool/+bugs?orderby=-id&start=015:47
d34dh0r53neither does ldappool15:47
d34dh0r53that does it for bug review, thanks for taking the reproducer on the app-cred bug zaitcev 15:47
d34dh0r53#topic conclusion15:48
d34dh0r53anything else before we go?15:48
d34dh0r53thanks everyone! see y'all at the reviewathon15:49
d34dh0r53#endmeeting15:49
opendevmeetMeeting ended Tue Dec 13 15:49:09 2022 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)15:49
opendevmeetMinutes:        https://meetings.opendev.org/meetings/keystone/2022/keystone.2022-12-13-15.00.html15:49
opendevmeetMinutes (text): https://meetings.opendev.org/meetings/keystone/2022/keystone.2022-12-13-15.00.txt15:49
opendevmeetLog:            https://meetings.opendev.org/meetings/keystone/2022/keystone.2022-12-13-15.00.log.html15:49
*** dviroel|rover is now known as dviroel|rover|lunch15:57
*** dviroel|rover|lunch is now known as dviroel|rover16:50
*** dasm is now known as dasm|off19:26
*** dviroel|rover is now known as dviroel|out21:58
« Monday, 2022-12-12 Index Wednesday, 2022-12-14 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!