Re: [Openstack] Proposing an Identity Service in OpenStack (a.k.a. Auth)

2011-04-26 Thread Ziad Sawalha
And here is a launchpad mirror: https://launchpad.net/keystone On Apr 26, 2011, at 5:25 PM, Ziad Sawalha wrote: As a follow-up, and to keep the conversation moving, we've built and posted a proof of concept for the OpenStack Identity service at https://github.c

Re: [Openstack] Nova writing lock files in /usr/lib/pymodules/python2.6

2011-04-26 Thread Masanori ITOH
Hi, I reported this issue in: https://bugs.launchpad.net/nova/+bug/754687 But, the title was renamed to RHEL6 specific issue against my intention. As I satated in the bug report, I think this is a common isue among distributions. Also, the reaon why Thomas didn't see the problem is because

Re: [Openstack] Nova writing lock files in /usr/lib/pymodules/python2.6

2011-04-26 Thread Thomas Goirand
On 04/27/2011 12:42 PM, Soren Hansen wrote: > The nova.conf we ship in the Debian packages already sets lock_path to > /var/lock/nova. Is that new? I didn't see it, and it wasn't set in my test server. Thomas ___ Mailing list: https://launchpad.net/~op

Re: [Openstack] Nova writing lock files in /usr/lib/pymodules/python2.6

2011-04-26 Thread Soren Hansen
2011/4/26 Thomas Goirand : > Hi, > > I thought I was the only one, as using Debian, but it seems I'm not. > > Nova is trying to write in /usr/lib/pymodules/python2.6. It should not, > as an admin can decide to mount /usr read only. Here's the output: > > http://paste.openstack.org/show/1253/ > > Of

Re: [Openstack] Nova writing lock files in /usr/lib/pymodules/python2.6

2011-04-26 Thread Diego Parrilla SantamarĂ­a
I have found some random issues if you don't set the lock_path to a writeable directory in Cactus. Never saw any issue in Bexar. Hence, in the new version of our distro the lock_path parameter is always set. -- Diego Parrilla CEO www.stackops.com | diego.parri...@stackops.com | +34 649 94 43 29

[Openstack] Nova writing lock files in /usr/lib/pymodules/python2.6

2011-04-26 Thread Thomas Goirand
Hi, I thought I was the only one, as using Debian, but it seems I'm not. Nova is trying to write in /usr/lib/pymodules/python2.6. It should not, as an admin can decide to mount /usr read only. Here's the output: http://paste.openstack.org/show/1253/ Of course, doing: chown nova /usr/lib/pymodu

Re: [Openstack] Moving code hosting to GitHub

2011-04-26 Thread Thomas Goirand
On 04/27/2011 02:24 AM, Soren Hansen wrote: > 2011/4/26 Thomas Goirand : >> On 04/26/2011 10:35 PM, Soren Hansen wrote: >>> I don't recall seeing anything that makes that a useful nor accurate >>> summary. Opinions have been voiced, that's all. >> Re-read then. What you believe are opinions might w

Re: [Openstack] Proposing an Identity Service in OpenStack (a.k.a. Auth)

2011-04-26 Thread Ziad Sawalha
As a follow-up, and to keep the conversation moving, we've built and posted a proof of concept for the OpenStack Identity service at https://github.com/khussein/keystone/. The code includes a rudimentary token-based authentication implementation. Included in the project (our internal code name

Re: [Openstack] Moving code hosting to GitHub

2011-04-26 Thread Martin Pool
On 22 April 2011 18:07, Robert Collins wrote: > On Fri, Apr 22, 2011 at 4:11 PM, Thomas Goirand wrote: >> >> git checkout -b new-soren-branch >> >> This is pretty instant. Now do: >> >> bzr branch trunk new-soren-branch >> >> and wait for all files to copy ... > > So, bzr had a design concept at

Re: [Openstack] Moving code hosting to GitHub

2011-04-26 Thread FUJITA Tomonori
On Tue, 26 Apr 2011 16:35:56 +0200 Soren Hansen wrote: >> Why can't we simply use the better tool at this moment? > > For the sake of the argument, I'll pretend for second that git is a > better tool. What happens when the bzr developers fix the shortcomins > we've identified here, and bzr becom

[Openstack] Burrow Updates

2011-04-26 Thread Eric Day
Hi everyone! Last week I released the first version of Burrow, a message queue being designed for public clouds, for Cactus. It's still very early on and should only be considered as a development release (don't run off to put it into production), but it still is able to show how the project is sh

Re: [Openstack] Do we need SSL on nova-api ports?

2011-04-26 Thread Dirk-Willem van Gulik
On 25 Apr 2011, at 19:47, Kirill Shileev wrote: > Recently, playing with libcloud against a private openstack installation > we realized that 8773 and 8774 ports listened by openstack-nova-api expect > plain HTTP. > This is something that is rarely allowed in production installations. > .

Re: [Openstack] Moving code hosting to GitHub

2011-04-26 Thread Soren Hansen
2011/4/26 Thomas Goirand : > On 04/26/2011 10:35 PM, Soren Hansen wrote: >> I don't recall seeing anything that makes that a useful nor accurate >> summary. Opinions have been voiced, that's all. > Re-read then. What you believe are opinions might well be seen by their > authors as useful and accur

Re: [Openstack] Do we need SSL on nova-api ports?

2011-04-26 Thread Edward Konetzko
On 04/25/2011 12:47 PM, Kirill Shileev wrote: Hi all, Recently, playing with libcloud against a private openstack installation we realized that 8773 and 8774 ports listened by openstack-nova-api expect plain HTTP. This is something that is rarely allowed in production installations. We bypass t

Re: [Openstack] Moving code hosting to GitHub

2011-04-26 Thread Thomas Goirand
On 04/26/2011 10:35 PM, Soren Hansen wrote: > I don't recall seeing anything that makes that a useful nor accurate > summary. Opinions have been voiced, that's all. Re-read then. What you believe are opinions might well be seen by their authors as useful and accurate points. I mentioned the fact t

Re: [Openstack] Moving code hosting to GitHub

2011-04-26 Thread Ed Leafe
On Apr 26, 2011, at 5:37 AM, FUJITA Tomonori wrote: > Why can't we simply use the better tool at this moment? Because you will not get agreement on which is "better", as this thread has amply demonstrated. I, too, prefer git's design, but I also understand the usefulness of La

Re: [Openstack] Moving code hosting to GitHub

2011-04-26 Thread Soren Hansen
2011/4/26 FUJITA Tomonori : > Soren Hansen wrote: >> 2011/4/22 FUJITA Tomonori : >> Fair enough. That doesn't change that my name is still on the commit, >> and there might be a bunch of Acked-By's or Tested-By's on there that >> suddenly are invalid, because those people never tested the patch in

Re: [Openstack] Moving code hosting to GitHub

2011-04-26 Thread FUJITA Tomonori
On Fri, 22 Apr 2011 14:52:30 +0200 Soren Hansen wrote: > 2011/4/22 FUJITA Tomonori : >>> I find the rebasing/cherry-picking practice even worse in the Linux >>> kernel context due to the patch tagging used there. If I add a >>> "Signed-off-by: Soren Hansen" to a patch and someone cherry picks tha

Re: [Openstack] ec2 vs. openstack api question

2011-04-26 Thread Jon Slenk
On Mon, Apr 25, 2011 at 5:25 PM, Masanori ITOH wrote: > The following two examples are because of lack of Authentication tokens > as your guess. Thanks for the sanity check :-) > BTW, do you really need to use curl instead of euca2ools, boto,...? Probably I really do need something other than e