Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
Cloud Custodian / Community Meetings / 4 Jan 2022
Cloud Custodian / Community Meetings / 4 Jan 2022
Previous Meeting Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: Cloud Custodian Community Meeting 20220104

Description

Our community meeting is public and we encourage users and contributors of Cloud Custodian to attend! You can find the notes for this meeting on our github repo: https://github.com/cloud-custodian/community/discussions

To get an invite to the meeting join the google group and you'll receive one via email: https://groups.google.com/g/cloud-custodian

A

And we sounds like we're live. It's almost hang on give it a second.

B

It isn't giving me the like.

A

The red I see the red I think.

B

Okay, if you see it, then you're good, okay,.

A

All right, everybody, the date is january, 4th 2022, it's our first new meeting um of the year for clock. Custodian, welcome everyone back from break um a lot of people are, some people are still on holiday, like people are just coming back and things like that, um and this meeting is pretty much happened immediately after we got back, so we will be doing a short meeting today, kind of just go going over a handful of things and then we'll give everyone some time back as usual.

A

These meetings follow the cncf code of conduct, so please be excellent to each other and I'll be posting. The notes and videos to the usual places the cloud custodian, google group and in the github.com cloud custodian community repo in the discussions there, you will find the long tail of all of our meeting archives. So let me scroll down here that handles the welcome back. Anyone want to introduce themselves say hi.

A

I think I think everyone's been to one of these meetings, all right. So if you're listening to us out there on youtube hello, I have a quick cncf status that I would like to do is uh so before break. We applied for um incubation status with the cncf and that's moving from sandbox to incubation, and then the last step is graduation, which we're not uh doing that. Yet we're trying to get from sandboxing to incubation uh there's a list of all the applicants.

A

I left a list there in the notes, there's a bunch of other projects that are also applying for incubation. uh Just to give you a quick list of here they are, and they are. The cncf meeting is on the 11th.

A

uh That's going to start going through this list and working their way through it so I'll be participating in those meetings with the cncf. And if you go to the talk link there, you can find out when they meet and and all that kind of good stuff. So all those meetings are public and whatnot and all those projects are open source. So, if you're interested in what's going into incubation, that is the meeting to go to this month.

A

um So I will be there um and we'll have more uh more to follow there as far as the process of us graduating to that, and then I left a link here also from last year. As we closed up, we did an annual report of how cloud custodian and the community are doing, and this is a good summary if you haven't kept up with what's happening in cloud custodian.

A

We've got a bunch of developer statistics and things like that and how people are using it and it's kind of a what we did last year summary. So any questions on that one before we move on.

A

All right and that's pretty much the agenda there. uh If, unless anybody has any else anything else, they want to talk about we'll, go ahead and go to the issues and prs. I found that my status update script broke over the week over the break, so I need to figure that out so uh aj you've got two here that you've added we'll go ahead and just go over these here, real, quick and then break so this one here.

B

Sure yeah, so this one is from a from a feature that aws added during reinvent I mean they already had bucket ownership controls, but the most recent addition was the the bucket owner enforced, which allows you to disable acls for a bucket and just kind of simplify permissions in general. So I imagine I haven't seen any questions come in about it, but eventually folks are going to ask because it does make. It does make controlling permissions on buckets a lot nicer.

B

So um I guess anytime we're going to add filters and actions. We usually recommend that folks do a filter first work through any issues that come up there and then move to the action. So I'm just trying to do that here. So one vr, we'll just do it a bit at a time.

A

Got you, and just so I'm clear. The use case here is that you would just have the ackles management done in your policies and not directly via the budget.

B

What happens here is that you that all the access comes through the bucket policy, so it'll ignore any object level acls that you already have set. If you have bucket level acl set, and you try to enable this it'll yell at you, it'll say like.

A

Hey.

B

You've uh you've got acls, you've got to get rid of those first, so there will be some considerations when it comes to implementing the action. How much we want to allow forcing that or something gotcha, but yep.

A

All right, looking good then, and then the next one is. I think this is the actual pr of the issue. Yeah.

B

This is just the just the filter piece, so this will be so anytime we're going to do actions. Part of that is going to be filtering to see like if somebody wants to say my org disables acls, for buckets just to help simple and simplify permissions. The first thing you're going to want is a filter to say where don't we have that in place, so.

A

This is.

B

This is that piece.

A

Okay, so you have the chicken of the egg that one.

B

Yeah or.

A

The egg that one yeah I said chicken over the egg, um okay and then the last one you have is an azure c7m, mailer ish. Yes,.

B

And this was something that came in through getter mike there shout out to mike jay gray, because he.

A

uh

B

Yeah.

A

So he raised the question and get.

B

Her we chatted uh also to carrill uh who's, not on this call, but he he jumped in for some of uh some of mike's other uh questions about azure, but he was having an issue with the mailer and uh we talked through a little bit of a little early troubleshooting, and then he just ran with it and um and fixed fix the issue on his end and looks like he just wanted to get.

B

The issue documented and looks like he's going to be working on a on a pr also so that uh to kind of take whatever manual changes he needed to make and uh and get them upstream for everybody.

A

From earlier, okay,.

A

Awesome well thanks mike for that one yeah. I wasn't aware that the sucker I get so confused because I saw you talking about it this morning, but didn't know there was previous uh discussion in this whole thread, because this is from yeah. This is from like the sum this conversation started december 30th.

A

I was just confused about that: okay, cool dope, yep. So that's uh that's it thanks.

B

For that, mike.

A

Seeing open source in action here, okay and that's basically it does anybody else- have uh any uh thing to discuss here, because we'll be meeting in two weeks and that'll give us plenty of time to have things, land and other things. So if no one has anything going once going twice, awesome we'll see everyone in two weeks. Thank you very much.

B

Bye, everybody.

A

Cheers.

B

Thanks all.