Difference between revisions of "Meetings/KeystoneMeeting"
< Meetings
(→Main Agenda) |
(→Main Agenda) |
||
Line 31: | Line 31: | ||
** What can we do in Mitaka? | ** What can we do in Mitaka? | ||
** Review: https://review.openstack.org/#/c/251530/ | ** Review: https://review.openstack.org/#/c/251530/ | ||
+ | * Enforce token Bind based on Catalog<code>ayoung, gyee</code> | ||
+ | ** Spec was approved https://github.com/openstack/keystone-specs/blob/master/specs/keystonemiddleware/endpoint-enforcement-middleware.rst | ||
+ | ** Server side https://review.openstack.org/#/c/266137/ | ||
+ | ** Middleware side https://review.openstack.org/#/c/177661/ | ||
==== Review of Keystone Blueprints for No-Spec Requires Status ==== | ==== Review of Keystone Blueprints for No-Spec Requires Status ==== |
Revision as of 18:22, 12 January 2016
Contents
Weekly Keystone team meeting
If you're interested in identity, authentication, authorization, and/or policy for OpenStack, we hold public meetings weekly on IRC in #openstack-meeting
, on Tuesdays at 18:00 UTC. Please feel free to add items to the agenda below with your name and we'll cover them.
Regular attendees
Add yourself to this list to be pinged prior to each meeting:
ajayaa, amakarov, ayoung, breton, browne, davechen, david8hu, dolphm, dstanek, ericksonsantos, geoffarnold, gyee, henrynash, hogepodge, htruta, jamielennox, joesavak, lbragstad, lhcheng, marekd, morganfainberg, nkinder, raildo, rodrigods, roxanaghe, samueldmq, shaleh, stevemar, tsymanczyk, topol, vivekd, wanghong, claudiub, rderose, samleon, xek, MaxPC, tjcocozz
Agenda for next meeting
Main Agenda
Please add agenda items to the bottom of this section's list (be sure to include your irc_handle
!).
2016-01-12
- Bug 1490804: PKI Token Bypass
tjcocozz
- Bug: https://bugs.launchpad.net/keystone/+bug/1490804
- Has a server side fix: https://review.openstack.org/#/q/Ifcf88f1158bebddc4f927121fbf4136fb53b659f,n,z
- Has a middleware fix: https://review.openstack.org/#/q/I483bc57bd38eb81a0905bcaf94e4ea82604919d6,n,z
- Can we make this change without making a fallback to using token_ids?
- Can we backport this without breaking folks that haven't updated their keystone?
- Affects Kilo and Liberty
- Bug 1527759: Revert domain ownership check
stevemar
- Bug: https://bugs.launchpad.net/keystone/+bug/1527759
- Has a server side fix: https://review.openstack.org/#/q/I4a303a5fcc8c2dacef5960e9e26ad9402f34a790,n,z
- gyee has brought up issues with Swift and ACLs
- Affects Liberty only?
- v2 deprecation/v3 support
htruta, raildo
- Where are we now? Tempest, make v3 default in devstack, make gate voting
- What can we do in Mitaka?
- Review: https://review.openstack.org/#/c/251530/
- Enforce token Bind based on Catalog
ayoung, gyee
Review of Keystone Blueprints for No-Spec Requires Status
Please add BPs to the bottom of this sections list that should be reviewed as not requiring a spec (include your irc_handle
!).
- Return request Id to caller
bknudson
Keystone Weekly Bug Reports
Bugs for the various Keystone repositories are collects and published to the following links. (lbragstad
)
Previous meetings
Logs and meeting summaries of previous meetings are located here.