| opendevreview | Hiromu Asahina proposed openstack/keystone-specs master: External OAuth2.0 Authorization Server Support https://review.opendev.org/c/openstack/keystone-specs/+/861554 | 14:52 |
|---|---|---|
| dmendiza[m] | d34dh0r53 👋 | 15:01 |
| d34dh0r53 | o/ | 15:03 |
| hiromu | o/ | 15:03 |
| d34dh0r53 | #startmeeting keystone | 15:03 |
| opendevmeet | Meeting started Tue May 30 15:03:20 2023 UTC and is due to finish in 60 minutes. The chair is d34dh0r53. Information about MeetBot at http://wiki.debian.org/MeetBot. | 15:03 |
| opendevmeet | Useful Commands: #action #agreed #help #info #idea #link #topic #startvote. | 15:03 |
| opendevmeet | The meeting name has been set to 'keystone' | 15:03 |
| knikolla | o/ | 15:03 |
| d34dh0r53 | #topic roll call | 15:03 |
| zaitcev | o/ | 15:03 |
| d34dh0r53 | admiyo, bbobrov, crisloma, d34dh0r53, dpar, dstanek, hrybacki, knikolla[m], lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, ruan_he, wxy, sonuk, vishakha, Ajay, rafaelwe, xek, gmann, zaitcev, reqa, dmendiza[m] | 15:03 |
| xek | o/ | 15:03 |
| dmendiza[m] | 🙋♂️ | 15:03 |
| d34dh0r53 | #topic review past meeting work items | 15:04 |
| d34dh0r53 | #link https://meetings.opendev.org/meetings/keystone/2023/keystone.2023-05-23-15.12.html | 15:04 |
| d34dh0r53 | I need to push the action items for myself a week, there is a security bug that is likely a CVE that I'm trying to track down | 15:05 |
| d34dh0r53 | #action d34dh0r53 investigate https://bugs.launchpad.net/keystone/+bug/2009752 | 15:05 |
| d34dh0r53 | #action d34dh0r53 Look into adding/restoring a known issues section to our documentation | 15:06 |
| d34dh0r53 | #action d34dh0r53 add https://bugs.launchpad.net/keystone/+bug/1305950 to the known issues section of our documentation | 15:06 |
| d34dh0r53 | #action d34dh0r53 update https://review.opendev.org/c/openstack/keystonemiddleware/+/882401 to include test_ec2_token_middleware.py | 15:06 |
| d34dh0r53 | #action d34dh0r53 look at https://bugs.launchpad.net/keystone/+bug/2018644 | 15:07 |
| opendevreview | Hiromu Asahina proposed openstack/keystone-specs master: External OAuth2.0 Authorization Server Support https://review.opendev.org/c/openstack/keystone-specs/+/861554 | 15:07 |
| d34dh0r53 | drencrom look at https://review.opendev.org/c/openstack/keystonemiddleware/+/878027 to see if we can add the test_ec2_token_middleware.py to it | 15:07 |
| d34dh0r53 | #action drencrom look at https://review.opendev.org/c/openstack/keystonemiddleware/+/878027 to see if we can add the test_ec2_token_middleware.py to it | 15:08 |
| d34dh0r53 | moving on | 15:09 |
| d34dh0r53 | #topic liaison update | 15:09 |
| d34dh0r53 | as I said there is a security bug that I'm prioritizing | 15:09 |
| d34dh0r53 | nothing else for VMT | 15:09 |
| d34dh0r53 | #topic specification OAuth 2.0 (hiromu) | 15:11 |
| hiromu | I've just updated the spec as shown the above. Sorry for interrupting to the meeting. | 15:12 |
| d34dh0r53 | no problem, I'll take a look | 15:13 |
| d34dh0r53 | need anything else from us hiromu ? | 15:13 |
| d34dh0r53 | ok, next up | 15:14 |
| d34dh0r53 | #topic Secure RBAC (dmendiza[m]) | 15:15 |
| d34dh0r53 | #link https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html#z-release-timeline_ | 15:15 |
| d34dh0r53 | Service Role Implementation | 15:15 |
| d34dh0r53 | #link https://review.opendev.org/c/openstack/keystone/+/863420 | 15:15 |
| d34dh0r53 | Manager Role Implementation | 15:15 |
| hiromu | thank you :d34dh0r53, nothing | 15:15 |
| d34dh0r53 | #link https://review.opendev.org/c/openstack/keystone/+/822601 | 15:15 |
| dmendiza[m] | Haven't made any progress yet ... 😅 | 15:15 |
| d34dh0r53 | :) | 15:16 |
| d34dh0r53 | ok, next up | 15:17 |
| d34dh0r53 | #topic SQLAlchemy 2.0 (stephenfin) | 15:17 |
| d34dh0r53 | #link https://review.opendev.org/q/topic:sqlalchemy-20+is:open+project:openstack/keystone | 15:17 |
| d34dh0r53 | Can I get reviews on this, while I have context/time to close it out? | 15:17 |
| d34dh0r53 | What more do you need from me? | 15:17 |
| d34dh0r53 | thanks for the reviews on those, I see that most have a +1 so if the cores can review that would be a big help | 15:18 |
| d34dh0r53 | #topic open discussion | 15:21 |
| d34dh0r53 | (drencrom) We need to merge these backports to fix pep8 tests | 15:22 |
| drencrom | Hey, about the victoria backport mentioned before I could not change it to add the token patch, so I'm thinking on abandoning it and creating anew patch with everything included | 15:22 |
| drencrom | But I noteced another issue related to victoria and ussuri backports | 15:22 |
| d34dh0r53 | yeah, I'm looking at that now drencrom | 15:23 |
| drencrom | In wallaby the test actually exists but it is non-voting | 15:26 |
| d34dh0r53 | yeah, just saw that | 15:26 |
| d34dh0r53 | maybe we should just do that for u and v | 15:27 |
| drencrom | In any case we still need another +1 in those pep8 patches at least up to wallaby where they pass CI | 15:29 |
| drencrom | +2 sorry | 15:30 |
| d34dh0r53 | ack, dmendiza[m], xek, knikolla ^ | 15:31 |
| d34dh0r53 | next up | 15:31 |
| d34dh0r53 | (mustafakemalgilor) PooledLdapHandler message.clean() patch backports | 15:31 |
| d34dh0r53 | review request | 15:31 |
| d34dh0r53 | #link ussuri: https://review.opendev.org/c/openstack/keystone/+/874846 | 15:31 |
| d34dh0r53 | #link victoria: https://review.opendev.org/c/openstack/keystone/+/874847 | 15:31 |
| d34dh0r53 | #link wallaby: https://review.opendev.org/c/openstack/keystone/+/874844 | 15:31 |
| d34dh0r53 | failure on the wallaby backport | 15:32 |
| d34dh0r53 | keystoneauth version mismatch | 15:33 |
| d34dh0r53 | need to look at that one | 15:33 |
| dmendiza[m] | > ERROR: Could not find a version that satisfies the requirement keystoneauth1>=5.1.1 (from keystone-tempest-plugin) | 15:35 |
| d34dh0r53 | yeah | 15:35 |
| dmendiza[m] | Yay dependency resolution bugs! | 15:35 |
| d34dh0r53 | hooray! | 15:35 |
| d34dh0r53 | ok, need to see what's going on there | 15:37 |
| d34dh0r53 | #action investigate dependency issue in this patch wallaby: https://review.opendev.org/c/openstack/keystone/+/874844 | 15:38 |
| d34dh0r53 | #topic bug review | 15:39 |
| d34dh0r53 | #link https://bugs.launchpad.net/keystone/?orderby=-id&start=0 | 15:39 |
| d34dh0r53 | there are three new bugs, one is a dupe of the other and I'm not sure of the validity of any of them | 15:39 |
| d34dh0r53 | #link https://bugs.launchpad.net/keystone/+bug/2020766 | 15:40 |
| d34dh0r53 | I closed the dupe of that one | 15:40 |
| d34dh0r53 | not sure if that is a keystone bug, looks incomplete to me but it needs some more investigation | 15:41 |
| d34dh0r53 | next up is | 15:41 |
| d34dh0r53 | #link https://bugs.launchpad.net/keystone/+bug/2020847 | 15:41 |
| d34dh0r53 | I'm unsure as to why that was moved to keystone | 15:41 |
| d34dh0r53 | I see, I read that wrong, so keystone is accepting an MTU on a project via curl | 15:42 |
| d34dh0r53 | when it shouldn't | 15:42 |
| d34dh0r53 | asking for more information on that one | 15:43 |
| d34dh0r53 | next up | 15:43 |
| d34dh0r53 | #link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=0 | 15:43 |
| d34dh0r53 | no new bugs there | 15:43 |
| d34dh0r53 | #link https://bugs.launchpad.net/keystoneauth/+bugs?orderby=-id&start=0 | 15:44 |
| d34dh0r53 | no new bugs here either | 15:44 |
| d34dh0r53 | #link https://bugs.launchpad.net/keystonemiddleware/+bugs?orderby=-id&start=0 | 15:44 |
| d34dh0r53 | one new bug in keystonemiddleware | 15:44 |
| d34dh0r53 | #link https://bugs.launchpad.net/keystonemiddleware/+bug/2020821 | 15:45 |
| d34dh0r53 | this is a feature request | 15:45 |
| d34dh0r53 | #link https://bugs.launchpad.net/pycadf/+bugs?orderby=-id&start=0 | 15:48 |
| d34dh0r53 | no new bugs in pycadf | 15:48 |
| d34dh0r53 | #link https://bugs.launchpad.net/ldappool/+bugs?orderby=-id&start=0 | 15:48 |
| d34dh0r53 | no new bugs in ldappool | 15:48 |
| d34dh0r53 | #topic conclusion | 15:48 |
| d34dh0r53 | how did the reviewathon go? | 15:48 |
| zaitcev | Trying to remember. I think it was just Doug and I. | 15:49 |
| zaitcev | No, Greg too | 15:49 |
| zaitcev | I forgot to beg for https://review.opendev.org/c/openstack/keystone/+/874346 although it was a perfect opportunity. | 15:49 |
| drencrom | Just to finish the previous discussion, I'll submit patches to make the lower-constraint test to be non-voting in ussuri and victoria if it is ok for you. | 15:50 |
| d34dh0r53 | drencrom: ack, that would be awesome, thank you | 15:51 |
| d34dh0r53 | Ok, thanks everyone, see y'all on Friday | 15:53 |
| d34dh0r53 | #endmeeting | 15:53 |
| opendevmeet | Meeting ended Tue May 30 15:53:52 2023 UTC. Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4) | 15:53 |
| opendevmeet | Minutes: https://meetings.opendev.org/meetings/keystone/2023/keystone.2023-05-30-15.03.html | 15:53 |
| opendevmeet | Minutes (text): https://meetings.opendev.org/meetings/keystone/2023/keystone.2023-05-30-15.03.txt | 15:53 |
| opendevmeet | Log: https://meetings.opendev.org/meetings/keystone/2023/keystone.2023-05-30-15.03.log.html | 15:53 |
| opendevreview | Hiromu Asahina proposed openstack/keystone-specs master: External OAuth2.0 Authorization Server Support https://review.opendev.org/c/openstack/keystone-specs/+/861554 | 15:55 |
| opendevreview | Jorge Merlino proposed openstack/keystonemiddleware master: Make openstack-tox-lower-constraints non-voting https://review.opendev.org/c/openstack/keystonemiddleware/+/884775 | 19:55 |
Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!