© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
To confirm that revocation lists no longer have context without PKI:
hi
15:29 (hopefully) quick question about token revocation lists - do/did they only apply for PKI tokens? or do they also apply for UUID and Fernet formats as well?
15:30 we're dropping PKI support in the keystone charms they cycle - just figuring out what we do with regards to certs and ca files related to signing of revocation requests..
15:32 → ducttap__ and PsionTheory joined ⇐ tobberydberg, spzala and sbezverk quit ↔ tobberyd_ and ducttape_ popped in ↔ sjain nipped out
15:58 K<kmalloc> Morgan Fainberg jamespage: recommend not using them at all
15:59 J<jamespage> James Page kmalloc: that was what I thought
15:59 thanks for confirming
15:59 J— jamespage does not have to throw away the last hours work now :-)
15:59 → @lbragstad (opped) joined
15:59 K<kmalloc> Morgan Fainberg jamespage: use fernet tokens, do not use the revocation list (even with uuid tokens). Largely it was for pki tokens, but easiest bet turn off "revoke by id" and ignore the rev list
15:59 :)
16:00 jamespage: happy to make your life easier
16:00 J<jamespage> James Page :)