#openstack-keystone log

15:01:00 <d34dh0r53> #startmeeting keystone
15:01:00 <opendevmeet> Meeting started Wed Apr  3 15:01:00 2024 UTC and is due to finish in 60 minutes.  The chair is d34dh0r53. Information about MeetBot at http://wiki.debian.org/MeetBot.
15:01:00 <opendevmeet> Useful Commands: #action #agreed #help #info #idea #link #topic #startvote.
15:01:00 <opendevmeet> The meeting name has been set to 'keystone'
15:01:04 <d34dh0r53> bruh
15:01:16 <d34dh0r53> #topic roll call
15:01:19 <d34dh0r53> admiyo, bbobrov, crisloma, d34dh0r53, dpar, dstanek, hrybacki, knikolla[m], lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, ruan_he, wxy, sonuk, vishakha, Ajay, rafaelwe, xek, gmann, zaitcev, reqa, dmendiza[m], mharley, jph, gtema
15:01:21 <d34dh0r53> o/
15:01:37 <gtema> o/
15:02:02 <dmendiza[m]> 🙋‍♂️(ish)
15:03:22 <xek> o/
15:03:37 <d34dh0r53> hi all!
15:03:49 <d34dh0r53> #topic review past meeting work items
15:04:26 <d34dh0r53> #link https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-03-27-15.02.html
15:04:41 <d34dh0r53> no updates from me and I had the only action items, push them to next week
15:04:52 <d34dh0r53> I should have time to work on them this Friday
15:05:27 <d34dh0r53> #action d34dh0r53 Look into adding/restoring a known issues section to our documentation
15:05:29 <d34dh0r53> #action d34dh0r53 add https://bugs.launchpad.net/keystone/+bug/1305950 to the known issues section of our documentation
15:05:41 <d34dh0r53> #topic liaison updates
15:05:58 <d34dh0r53> nothing from me
15:11:42 <d34dh0r53> #topic specification OAuth 2.0 (hiromu)
15:11:51 <d34dh0r53> #link https://review.opendev.org/q/topic:bp%252Foauth2-client-credentials-ext
15:11:53 <d34dh0r53> #link https://review.opendev.org/q/topic:bp%252Fenhance-oauth2-interoperability
15:11:55 <d34dh0r53> External OAuth 2.0 Specification
15:11:57 <d34dh0r53> #link https://review.opendev.org/c/openstack/keystone-specs/+/861554
15:11:59 <d34dh0r53> OAuth 2.0 Implementation
15:12:01 <d34dh0r53> #link https://review.opendev.org/q/topic:bp%252Fsupport-oauth2-mtls
15:12:03 <d34dh0r53> OAuth 2.0 Documentation
15:12:05 <d34dh0r53> #link https://review.opendev.org/c/openstack/keystone/+/838108
15:12:07 <d34dh0r53> #link https://review.opendev.org/c/openstack/keystoneauth/+/838104
15:13:29 <d34dh0r53> doesn't look like hiromu is around, hopefully we'll see them at the PTG
15:13:52 <d34dh0r53> #topic Secure RBAC (dmendiza[m])
15:14:01 <d34dh0r53> #link https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html#z-release-timeline_
15:14:03 <d34dh0r53> 2024.1 Release Timeline
15:14:05 <d34dh0r53> Update oslo.policy in keystone to enforce_new_defaults=True
15:14:07 <d34dh0r53> Update oslo.policy in keystone to enforce_scope=True
15:14:09 <d34dh0r53> #link https://review.opendev.org/c/openstack/keystone/+/902730 (Merged)
15:14:11 <d34dh0r53> #link https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/903713 (Merged)
15:14:13 <d34dh0r53> #link ttps://review.opendev.org/c/openstack/tempest/+/912489
15:14:59 <dmendiza[m]> Lots of patches up for y
15:15:11 <dmendiza[m]> Review
15:15:49 <dmendiza[m]> I don't have the links on hand though
15:15:52 <dmendiza[m]> 😅
15:16:39 <d34dh0r53> no worries, I think xek and I have reviewed most of them
15:17:48 <d34dh0r53> cool, next up
15:18:04 <d34dh0r53> #topic Improve federated users management (gtema)
15:18:06 <d34dh0r53> #link https://review.opendev.org/c/openstack/keystone-specs/+/748748 - waiting for reviews
15:18:26 <gtema> as stated - still waiting for spec reviews
15:18:43 <gtema> but to remind - I really do not want to screw mapping API more then it is already now
15:19:14 <d34dh0r53> yeah, I see there is a -1 on it right now which is keeping it off my radar but I can read through it again to refresh my memory and vote
15:19:40 <gtema> yes pls, since spec author tend to ignore my review
15:19:52 <d34dh0r53> ack
15:20:04 <d34dh0r53> #topic specification OpenAPI support (gtema)
15:20:06 <d34dh0r53> #link https://review.opendev.org/c/openstack/keystone-specs/+/910584
15:20:53 <gtema> my job situation changed and I have now no confidence on my ability to implement this spec in time (or at all)
15:21:09 <gtema> I think I need 2-3 weeks to sort things out
15:21:22 <d34dh0r53> I was reading this over, and while I really like it I think this should be proposed to the TC as a community goal
15:21:39 <gtema> right, it is submitted to the TC PTG
15:22:39 <d34dh0r53> oh cool
15:23:12 <d34dh0r53> #topic open discussion
15:23:14 <d34dh0r53> passlib update
15:23:16 <d34dh0r53> The maintainer responded to the bug, and one of the top priorities is to fix the bcrypt version bug
15:23:18 <d34dh0r53> #link https://foss.heptapod.net/python-libs/passlib/-/issues/190
15:23:20 <d34dh0r53> Targeted to 1.7.5
15:23:40 <d34dh0r53> I asked today what the status of 1.7.5 is, he said it would be a week ago and we haven't heard anything
15:23:50 <d34dh0r53> hopefully soon
15:24:00 <d34dh0r53> anything else for open discussion?
15:24:09 <gtema> not from my side
15:24:55 <d34dh0r53> cool
15:25:04 <d34dh0r53> #topic bug review
15:25:18 <d34dh0r53> #link https://bugs.launchpad.net/keystone/?orderby=-id&start=0
15:26:35 <d34dh0r53> looks like a new bug with a fix already proposed
15:26:40 <d34dh0r53> #link https://bugs.launchpad.net/keystone/+bug/2059780
15:27:03 <d34dh0r53> dmendiza[m]: mind looking at that review to see if it's included in some of your fixes?
15:27:13 <d34dh0r53> #link https://review.opendev.org/c/openstack/keystone/+/914759
15:27:33 <d34dh0r53> #link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=0
15:27:49 <d34dh0r53> nothing new for python-keystoneclient
15:27:56 <d34dh0r53> #link https://bugs.launchpad.net/keystoneauth/+bugs?orderby=-id&start=0
15:28:06 <d34dh0r53> keystoneauth is good
15:28:13 <d34dh0r53> #link https://bugs.launchpad.net/keystonemiddleware/+bugs?orderby=-id&start=0
15:28:25 <d34dh0r53> keystonemiddleware is also good
15:28:30 <d34dh0r53> #link https://bugs.launchpad.net/pycadf/+bugs?orderby=-id&start=0
15:28:41 <d34dh0r53> pycadf is clean
15:28:51 <d34dh0r53> #link https://bugs.launchpad.net/ldappool/+bugs?orderby=-id&start=0
15:28:54 <d34dh0r53> as is ldappool
15:29:03 <d34dh0r53> that does it for bug review
15:29:06 <d34dh0r53> #topic conclusion
15:29:09 <d34dh0r53> PTG is next week
15:29:26 <d34dh0r53> Keystone rooms are scheduled, but let me know if you need different times
15:29:40 <d34dh0r53> also, please add to the agenda
15:29:54 <d34dh0r53> #link https://etherpad.opendev.org/p/dalmation-ptg-keystone
15:30:01 <d34dh0r53> Thanks everyone!
15:30:03 <d34dh0r53> #endmeeting