[openstack-dev] [OpenStack-Infra] [infra][security] Encryption in Zuul v3
James E. Blair
corvus at inaugust.com
Wed Mar 22 17:52:50 UTC 2017
Darragh Bailey <daragh.bailey at gmail.com> writes:
> On 22 March 2017 at 15:02, James E. Blair <corvus at inaugust.com> wrote:
>> Ian Cordasco <sigmavirus24 at gmail.com> writes:
>> > I suppose Barbican doesn't meet those requirements either, then, yes?
>> Right -- we don't want to require another service or tie Zuul to an
>> authn/authz system for a fundamental feature. However, I do think we
>> can look at making integration with Barbican and similar systems an
>> option for folks who have such an installation and prefer to use it.
> Sounds like you're going to make this plugable, is that a hard requirement
> that will be added to the spec? or just a possibility?
More of a possibility at this point. In general, I'd like to off-load
interaction with other systems to Ansible as much as possible, and then
add minimal backing support in Zuul itself if needed, that way the core
of Zuul doesn't become a choke point.
More information about the OpenStack-dev