Wednesday, 2024-04-03

« Tuesday, 2024-04-02 Index Thursday, 2024-04-04 »
*** mhen_ is now known as mhen01:26
opendevreviewDouglas Mendizábal proposed openstack/keystone master: Run Secure RBAC tests as project-admin  https://review.opendev.org/c/openstack/keystone/+/91399901:58
opendevreviewDouglas Mendizábal proposed openstack/keystone master: Allow admin to access tokens and credentials  https://review.opendev.org/c/openstack/keystone/+/91452001:59
opendevreviewDouglas Mendizábal proposed openstack/keystone master: Enable protection jobs  https://review.opendev.org/c/openstack/keystone/+/90923802:04
opendevreviewDouglas Mendizábal proposed openstack/keystone-tempest-plugin master: Update tests for admin role in credentials  https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/91493402:17
opendevreviewDouglas Mendizábal proposed openstack/keystone-tempest-plugin master: DNM: test keystone change  https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/91408902:22
opendevreviewDouglas Mendizábal proposed openstack/keystone master: Enable protection jobs  https://review.opendev.org/c/openstack/keystone/+/90923804:18
opendevreviewDouglas Mendizábal proposed openstack/keystone-tempest-plugin master: Update tests for admin role in credentials  https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/91493404:23
crohmannxek: Could you maybe give https://review.opendev.org/c/openstack/keystone/+/885463 another look. You gave it a +2 before and I really believe this kind of inconsistency should be fixed (and backported) before the Caracal release!06:20
crohmannI also pushed a backport to 2024.1 now https://review.opendev.org/c/openstack/keystone/+/91493906:29
opendevreviewMerged openstack/keystone-tempest-plugin master: Fix domain-scope tests for list_domains  https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/91455808:19
opendevreviewMerged openstack/keystone master: Run Secure RBAC tests as project-admin  https://review.opendev.org/c/openstack/keystone/+/91399909:17
*** whoami-rajat_ is now known as whoami-rajat14:47
opendevreviewMerged openstack/keystone master: Allow admin to access tokens and credentials  https://review.opendev.org/c/openstack/keystone/+/91452014:59
*** blarnath is now known as d34dh0r5315:00
d34dh0r53@startmeeting keystone15:00
d34dh0r53#startmeeting keystone15:01
opendevmeetMeeting started Wed Apr  3 15:01:00 2024 UTC and is due to finish in 60 minutes.  The chair is d34dh0r53. Information about MeetBot at http://wiki.debian.org/MeetBot.15:01
opendevmeetUseful Commands: #action #agreed #help #info #idea #link #topic #startvote.15:01
opendevmeetThe meeting name has been set to 'keystone'15:01
d34dh0r53bruh15:01
d34dh0r53#topic roll call15:01
d34dh0r53admiyo, bbobrov, crisloma, d34dh0r53, dpar, dstanek, hrybacki, knikolla[m], lbragstad, lwanderley, kmalloc, rodrigods, samueldmq, ruan_he, wxy, sonuk, vishakha, Ajay, rafaelwe, xek, gmann, zaitcev, reqa, dmendiza[m], mharley, jph, gtema15:01
d34dh0r53o/15:01
gtemao/15:01
dmendiza[m]🙋‍♂️(ish)15:02
xeko/15:03
d34dh0r53hi all!15:03
d34dh0r53#topic review past meeting work items15:03
d34dh0r53#link https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-03-27-15.02.html15:04
d34dh0r53no updates from me and I had the only action items, push them to next week15:04
d34dh0r53I should have time to work on them this Friday15:04
d34dh0r53 #action d34dh0r53 Look into adding/restoring a known issues section to our documentation15:05
d34dh0r53#action d34dh0r53 add https://bugs.launchpad.net/keystone/+bug/1305950 to the known issues section of our documentation15:05
d34dh0r53#topic liaison updates15:05
d34dh0r53nothing from me15:05
d34dh0r53#topic specification OAuth 2.0 (hiromu)15:11
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Foauth2-client-credentials-ext15:11
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Fenhance-oauth2-interoperability15:11
d34dh0r53External OAuth 2.0 Specification15:11
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-specs/+/86155415:11
d34dh0r53OAuth 2.0 Implementation15:11
d34dh0r53#link https://review.opendev.org/q/topic:bp%252Fsupport-oauth2-mtls15:12
d34dh0r53OAuth 2.0 Documentation15:12
d34dh0r53#link https://review.opendev.org/c/openstack/keystone/+/83810815:12
d34dh0r53#link https://review.opendev.org/c/openstack/keystoneauth/+/83810415:12
d34dh0r53doesn't look like hiromu is around, hopefully we'll see them at the PTG15:13
d34dh0r53#topic Secure RBAC (dmendiza[m])15:13
d34dh0r53#link https://governance.openstack.org/tc/goals/selected/consistent-and-secure-rbac.html#z-release-timeline_15:14
d34dh0r532024.1 Release Timeline15:14
d34dh0r53Update oslo.policy in keystone to enforce_new_defaults=True15:14
d34dh0r53Update oslo.policy in keystone to enforce_scope=True15:14
d34dh0r53#link https://review.opendev.org/c/openstack/keystone/+/902730 (Merged)15:14
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/903713 (Merged)15:14
d34dh0r53#link ttps://review.opendev.org/c/openstack/tempest/+/91248915:14
dmendiza[m]Lots of patches up for y15:14
dmendiza[m]Review 15:15
dmendiza[m]I don't have the links on hand though 15:15
dmendiza[m]😅15:15
d34dh0r53no worries, I think xek and I have reviewed most of them15:16
d34dh0r53cool, next up15:17
d34dh0r53#topic Improve federated users management (gtema)15:18
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-specs/+/748748 - waiting for reviews15:18
gtemaas stated - still waiting for spec reviews15:18
gtemabut to remind - I really do not want to screw mapping API more then it is already now15:18
d34dh0r53yeah, I see there is a -1 on it right now which is keeping it off my radar but I can read through it again to refresh my memory and vote15:19
gtemayes pls, since spec author tend to ignore my review15:19
d34dh0r53ack15:19
d34dh0r53#topic specification OpenAPI support (gtema)15:20
d34dh0r53#link https://review.opendev.org/c/openstack/keystone-specs/+/91058415:20
gtemamy job situation changed and I have now no confidence on my ability to implement this spec in time (or at all)15:20
gtemaI think I need 2-3 weeks to sort things out15:21
d34dh0r53I was reading this over, and while I really like it I think this should be proposed to the TC as a community goal15:21
gtemaright, it is submitted to the TC PTG15:21
d34dh0r53oh cool15:22
d34dh0r53#topic open discussion15:23
d34dh0r53passlib update15:23
d34dh0r53The maintainer responded to the bug, and one of the top priorities is to fix the bcrypt version bug15:23
d34dh0r53#link https://foss.heptapod.net/python-libs/passlib/-/issues/19015:23
d34dh0r53Targeted to 1.7.515:23
d34dh0r53I asked today what the status of 1.7.5 is, he said it would be a week ago and we haven't heard anything15:23
d34dh0r53hopefully soon15:23
d34dh0r53anything else for open discussion?15:24
gtemanot from my side15:24
d34dh0r53cool15:24
d34dh0r53#topic bug review15:25
d34dh0r53#link https://bugs.launchpad.net/keystone/?orderby=-id&start=015:25
d34dh0r53looks like a new bug with a fix already proposed15:26
d34dh0r53#link https://bugs.launchpad.net/keystone/+bug/205978015:26
d34dh0r53dmendiza[m]: mind looking at that review to see if it's included in some of your fixes?15:27
d34dh0r53#link https://review.opendev.org/c/openstack/keystone/+/91475915:27
d34dh0r53#link https://bugs.launchpad.net/python-keystoneclient/?orderby=-id&start=015:27
d34dh0r53nothing new for python-keystoneclient15:27
d34dh0r53#link https://bugs.launchpad.net/keystoneauth/+bugs?orderby=-id&start=015:27
d34dh0r53keystoneauth is good15:28
d34dh0r53#link https://bugs.launchpad.net/keystonemiddleware/+bugs?orderby=-id&start=015:28
d34dh0r53keystonemiddleware is also good15:28
d34dh0r53#link https://bugs.launchpad.net/pycadf/+bugs?orderby=-id&start=015:28
d34dh0r53pycadf is clean15:28
d34dh0r53#link https://bugs.launchpad.net/ldappool/+bugs?orderby=-id&start=015:28
d34dh0r53as is ldappool15:28
d34dh0r53that does it for bug review15:29
d34dh0r53#topic conclusion15:29
d34dh0r53PTG is next week15:29
d34dh0r53Keystone rooms are scheduled, but let me know if you need different times15:29
d34dh0r53also, please add to the agenda15:29
d34dh0r53#link https://etherpad.opendev.org/p/dalmation-ptg-keystone15:29
d34dh0r53Thanks everyone!15:30
d34dh0r53#endmeeting15:30
opendevmeetMeeting ended Wed Apr  3 15:30:03 2024 UTC.  Information about MeetBot at http://wiki.debian.org/MeetBot . (v 0.1.4)15:30
opendevmeetMinutes:        https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-04-03-15.01.html15:30
opendevmeetMinutes (text): https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-04-03-15.01.txt15:30
opendevmeetLog:            https://meetings.opendev.org/meetings/keystone/2024/keystone.2024-04-03-15.01.log.html15:30
*** ganso_ is now known as ganso16:55
*** vishalmanchanda_ is now known as vishalmanchanda16:55
*** gmann_ is now known as gmann16:55
opendevreviewDouglas Mendizábal proposed openstack/keystone-tempest-plugin master: Update tests for admin role in credentials  https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/91493418:50
opendevreviewDouglas Mendizábal proposed openstack/keystone-tempest-plugin master: DNM: test keystone change  https://review.opendev.org/c/openstack/keystone-tempest-plugin/+/91408918:50
« Tuesday, 2024-04-02 Index Thursday, 2024-04-04 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!