<div dir="auto"><div><br><div class="gmail_extra"><br><div class="gmail_quote">On Jun 26, 2017 7:14 PM, "Jay Pipes" <<a href="mailto:jaypipes@gmail.com" target="_blank">jaypipes@gmail.com</a>> wrote:<br type="attribution"><blockquote class="m_-8100345415622607458quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On 06/26/2017 11:32 AM, Mikhail Fedosin wrote:<div class="m_-8100345415622607458quoted-text"><br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
<br>
On Jun 26, 2017 5:54 PM, "Jay Pipes" <<a href="mailto:jaypipes@gmail.com" target="_blank">jaypipes@gmail.com</a> <mailto:<a href="mailto:jaypipes@gmail.com" target="_blank">jaypipes@gmail.com</a>>> wrote:<br>
<br>
On 06/26/2017 10:35 AM, Mikhail Fedosin wrote:<br>
<br>
* Storage of secrets - a new artifact type in Glare, which<br>
will store private information (keys, passwords, etc.) in an<br>
encrypted form (like in Barbican).<br>
<br>
<br>
Does the above mean you are implementing a share secret storage<br>
solution or that you are going to use an existing solution like<br>
Barbican that does that?<br>
<br>
Sectets is a plugin for Glare we developed for Nokia CloudBand platform, and they just decided to opensource it. It doesn't use Barbican, technically it is oslo.versionedobjects class.<br>
</blockquote>
<br></div>
Sorry to hear that you opted not to use Barbican.<br></blockquote></div></div></div><div dir="auto">I think it's only because Keycloak integration is required by Nokia's system and Barbican doesn't support it. </div><div dir="auto"><div class="gmail_extra"><div class="gmail_quote"><blockquote class="m_-8100345415622607458quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<br>
But, I'm confused what oslo.versionedobjects has to do with secrets storage. Could you explain?</blockquote></div></div></div><div dir="auto">Oslo.versionedobjects just defines a structure of artifact type. But we also implemented two new field types for oslo_vo - Blob and Folder, which can be used similar to Integer or String. </div><div dir="auto"><br></div><div dir="auto">When user tries to write data to a Blob field it is automatically decoded and uploaded to a cloud store by glance_store library. And vice versa - when user reads data from the Blob field it is dowloaded from the store and decoded. </div><div dir="auto"><br></div><div dir="auto">So, consider Glare as a synergy of glance_store and oslo.versionedobjects with RESTful API above it.</div><div dir="auto"><div class="gmail_extra"><div class="gmail_quote"><blockquote class="m_-8100345415622607458quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="m_-8100345415622607458elided-text"><br>
<br>
Best,<br>
-jay<br>
<br>
______________________________<wbr>______________________________<wbr>______________<br>
OpenStack Development Mailing List (not for usage questions)<br>
Unsubscribe: <a href="http://OpenStack-dev-request@lists.openstack.org?subject:unsubscribe" rel="noreferrer" target="_blank">OpenStack-dev-request@lists.op<wbr>enstack.org?subject:unsubscrib<wbr>e</a><br>
<a href="http://lists.openstack.org/cgi-bin/mailman/listinfo/openstack-dev" rel="noreferrer" target="_blank">http://lists.openstack.org/cgi<wbr>-bin/mailman/listinfo/openstac<wbr>k-dev</a><br>
</div></blockquote></div><br></div></div></div>