Tuesday, 2024-10-01

« Monday, 2024-09-30 Index Wednesday, 2024-10-02 »
*** mhen_ is now known as mhen01:08
opendevreviewTakashi Kajinami proposed openstack/pycadf master: Remove Python 3.8 support  https://review.opendev.org/c/openstack/pycadf/+/93096902:48
opendevreviewTakashi Kajinami proposed openstack/pycadf master: Remove unused debtcollector  https://review.opendev.org/c/openstack/pycadf/+/93097002:50
opendevreviewTakashi Kajinami proposed openstack/pycadf master: Remove Python 3.8 support  https://review.opendev.org/c/openstack/pycadf/+/93096902:51
opendevreviewTakashi Kajinami proposed openstack/pycadf master: Remove audit map for retired ceilometer-api and panko  https://review.opendev.org/c/openstack/pycadf/+/93097102:52
opendevreviewTakashi Kajinami proposed openstack/pycadf master: Fix outdated cinder api version  https://review.opendev.org/c/openstack/pycadf/+/93097202:54
opendevreviewHiromu Asahina proposed openstack/keystone master: Add doc of OAuth 2.0 Mutual-TLS Authenticate  https://review.opendev.org/c/openstack/keystone/+/86092808:38
JayFd34dh0r53: https://bugs.launchpad.net/keystone/+bug/2069063 just got opened, it passed the limit for how long we keep those things closed, can you put a comment in there about how severe it actually is? I assume it's a little misleading or it would've been prioritized19:15
gmanndmendiza[m]: ^^19:24
gtemaJayF: description is bit misleading and confusing: EC2 and Application Credentials are different things. I'll look tomorrow as much as I can19:38
JayFyeah, it smells like maybe a weak bug, but it can also read as scary19:38
JayFdefinately valuable to clean up the language in there, especially if it's invalid or low prio19:38
gtemaI'll have a look as said, but first idea is that it lists creds of the same user ignoring project separation. I doubt heavily it lists creds of other user (unless you are admin)19:42
JayFthat's basically my thought, someone didn't understand scoping19:42
JayFbut I'm not a keystone expert :)19:42
gtemaBoth app creds and creds belong to the user and it just able to list them in depending on the project ( just like keypair in Nova)19:42
gtemaAnd since there is no way to filter creds by project_id (no query param) is returns all creds of the current user19:44
« Monday, 2024-09-30 Index Wednesday, 2024-10-02 »

Generated by irclog2html.py 2.17.3 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!