[06:50:23] bonjour, gerrit seems to be ill, should I do something or does someone wants to check? [06:53:22] its back! [08:29:02] slyngs: hi! did you change anything lately in the idp puppet code? cloudinfra-idp-1 started failing to run due to some missing hiera value (`oauth_session_encryption_key`) [08:30:24] Yes, I'll add in the missing variables [08:30:50] ack, thanks! [08:32:17] If I can... where does the secrets go for cloudinfra? [09:21:46] dcaro: Puppet runs cleanly on cloudinfra-idp-1 again [09:22:06] Thank you for helping me navigate "the cloud" :-) [09:22:49] slyngs: thanks! [10:13:21] oh, slyngs, random CAS question, do you know if there's a way to store tokens there? For bearer token authentication? [10:18:06] I'd need to check, but I don't think so [10:26:16] that's what I expect too yep [10:37:33] Anyone up for a very quick Python script code review? [10:38:37] nvm, fixed by anotrher change [12:40:26] FYI, I'll "depool" (by means of redirecting puppet entries) the eqiad LDAP replicas as prep work for moving them to ipip. there should be no issues, but if you see anything strange, please let me know [17:27:36] mutante, sukhe: In a few minutes time (if there are no objections) I will bounce Cassandra on one sessionstore node (sessionstore2004) to upgrade it. I expect no disruption, it's pretty well tested, but you know...sessions, so... [17:27:47] urandom: thanks for the heads-up [17:28:30] urandom: that's kinda funny, I was just looking at https://trace.wikimedia.org/trace/df9b37af62040c823540ec69ad31fc6f [17:31:10] cdanis: are all of those sessionstore requests a part of that one mw one? [17:31:14] urandom: yep [17:32:51] wow... [17:32:54] that's terrible [17:36:06] also, http/1.1, I wonder what savings we'd get from using http/2 [17:38:52] sometimes you don't want to see how the sausage is made [17:39:44] 6 separate POSTs... why??