[00:02] <leonardr> yeah, one little change got rid of most of the errors
[00:22] <jml> g'night all
[00:36] <lifeless> jml: ciao
[02:08] <lifeless> === Top 10 Time Out Counts by Page ID ===
[02:08] <lifeless>     Hard / Soft  Page ID
[02:08] <lifeless>      283 / 2484  Distribution:EntryResource:searchTasks
[02:08] <lifeless>      103 /  242  BugTask:+index
[02:08] <lifeless>       94 /  209  Distribution:+bugs
[02:08] <lifeless>       52 / 4427  Archive:+index
[02:08] <lifeless>       38 /   85  Branch:+index
[02:08] <lifeless>       23 /    3  ProjectGroup:+milestones
[02:08] <lifeless>       15 /  258  Question:+index
[02:09] <lifeless>       11 /    1  Distribution:+builds
[02:09] <lifeless>       10 /    1  DistributionSourcePackage:+filebug
[02:09] <lifeless>        8 /    2  Person:+bugs
[03:06] <LPCIBot> Project db-devel build (318): FAILURE in 4 hr 54 min: https://hudson.wedontsleep.org/job/db-devel/318/
[03:06] <LPCIBot> Launchpad Patch Queue Manager: [rs=buildbot-poller] automatic merge from stable. Revisions: 12231,
[03:06] <LPCIBot> 12232 included.
[04:21] <Ursinha> lifeless, have a minute for a review?
[04:21] <Ursinha> https://code.launchpad.net/~ursinha/qa-tagger/681099-consider-untestable-bugs/+merge/46870
=== Ursinha is now known as Ursinha-afk
[04:26] <lifeless> Ursinha-afk: done
=== Ursinha-afk is now known as Ursinha
[05:01] <Ursinha> thanks lifeless
[05:03] <lifeless> de nada
[05:05] <Ursinha> :)
[08:22] <LPCIBot> Yippie, build fixed!
[08:22] <LPCIBot> Project db-devel build (319): FIXED in 5 hr 15 min: https://hudson.wedontsleep.org/job/db-devel/319/
[08:22] <LPCIBot> Launchpad Patch Queue Manager: [rs=buildbot-poller] automatic merge from stable. Revisions: 12233,
[08:22] <LPCIBot> 12234 included.
=== almaisan-away is now known as al-maisan
=== al-maisan is now known as almaisan-away
=== almaisan-away is now known as al-maisan
[13:30] <lifeless> \o/
[13:46] <al-maisan> hmm .. this channel used to be livelier
[13:46] <lifeless> its < 8am where everyone in the team is
[13:47] <lifeless> sprint time :)
[13:47] <al-maisan> ah, I see :)
=== al-maisan is now known as almaisan-away
=== Ursinha is now known as Ursinha-afk
=== Ursinha-afk is now known as Ursinha
=== almaisan-away is now known as al-maisan
[15:27] <lifeless> jml: are you going to show testr/tribunal?
[15:28] <jml> lifeless: yes
[15:29] <jml> lifeless: testr, tribunal, subunit, fixtures, testdoc, etc.
[15:30] <lifeless> \o/
=== beuno is now known as beuno-lunch
[16:20] <Ursinha> leonardr, is bug https://bugs.edge.launchpad.net/launchpad/+bug/486974 actually fix released?
[16:20] <_mup_> Bug #486974: no API documentation of Person <bugjam2010> <lp-foundations> <qa-ok> <Launchpad itself:Fix Released by leonardr> < https://launchpad.net/bugs/486974 >
[16:21] <Ursinha> it was marked as fix released so the qa-tagger is ignoring it
[16:31] <Ursinha> leonardr, it's not actually released yet, as production doesn't have it, right? can I change it back to Fix Committed?
[16:40] <leonardr> ursinha: yeah, sure
[16:40] <leonardr> sorry
[16:40] <Ursinha> leonardr, no problem, really
[16:42] <Ursinha> jcsackett, is the partial fix of bug 618400 ok to be deployed?
[16:42] <_mup_> Bug #618400: Distribution:+archivemirrors timing out in 1% of requests <lp-registry> <mirror> <pg83> <timeout> <Launchpad itself:In Progress by jcsackett> < https://launchpad.net/bugs/618400 >
[16:42] <Ursinha> as in it doesn't need qa or it won't break anything
[16:43] <jcsackett> ursinha: yeah, i took a look at the affected pages last night--all seems groovy.
[16:43] <Ursinha> jcsackett, cool. I'll mark it as qa-ok :)
[16:43] <Ursinha> thanks!
[16:43] <jcsackett> np.
[16:43] <jcsackett> with luck, full fix will land today.
[17:13] <thumper> huwshimi: please can I talk to you at the start of squad time?
=== beuno-lunch is now known as beuno
=== al-maisan is now known as almaisan-away
[17:31] <huwshimi> thumper: Will it take long. I need to have a meeting with someone else and have that scheduled straight up
[17:31] <thumper> huwshimi: I just want to point to some styling bugs in LP
[17:32] <thumper> huwshimi: should just be 1 or 2 minutes
[17:32] <huwshimi> thumper: ok no problems then
[17:39] <vanguard> is this the right address if I fail to build a source package?
[17:42] <thumper> vanguard: it is good enough, what's up?
[17:43] <vanguard> I just fell for the - and _ in the orig.tar.gz name
[17:43] <jml> huwshimi: we might have to reschedule. I wasn't expecting this talk.
[17:43] <vanguard> now I got another problem, I have  Depends: default-jre (>= 1.6) in my control file
[17:43] <vanguard> when I run debuild, it tells me that (>= 1.6 is no valid version
[17:44] <thumper> wgrant: can you help?
[17:44] <vanguard> where did that ) go?
[17:44] <thumper> or bigjools
[17:44] <wgrant> vanguard: Please pastebin your control file.
[17:45] <vanguard> sure
[17:46] <vanguard> http://pastebin.ubuntu.com/556236/
=== Ursinha is now known as Ursinha-afk
=== Ursinha-afk is now known as Ursinha
[17:49] <james_w`> vanguard, you need a comma before default-jdk on the Build-Depends line
[17:50] <thumper> huwshimi: bug 705548
[17:50] <_mup_> Bug #705548: Multiline editor needs CSS tweaks <css> <ui> <Launchpad itself:Triaged> < https://launchpad.net/bugs/705548 >
[17:51] <huwshimi> thumper: Thanks for that
[17:51] <thumper> np
[17:52] <vanguard> james_w`: okay, there is .deb now. I have to check it out
[17:53] <vanguard> the package is opened by gdebi, but in the file list is nothing of my project. How do I tell debuild to pack the .jar file into the .deb?
[17:54] <vanguard> sry, g2t
[17:54] <vanguard> g2g
[18:05] <jml> mpt:
[18:05] <jml> mpt: http://people.canonical.com/~jml/convergence/
[18:42] <vanguard> I build a source package, but after "debuild", I have a package that only contains the changelog and stuff, but not my actual .jar file. How do I add it?
[18:45] <bigjools> vanguard: try #ubuntu-motu for packaging questions
[18:46] <LPCIBot> Project db-devel build (321): FAILURE in 5 hr 10 min: https://hudson.wedontsleep.org/job/db-devel/321/
[18:46] <LPCIBot> Launchpad Patch Queue Manager: [rs=buildbot-poller] automatic merge from stable. Revisions: 12239,
[18:46] <LPCIBot> 12240, 12241 included.
[18:56] <pcjc2> hi, lifeless - rather than just fix the cve case, I've started a search for all dubious SQL which employs a sub-select
[18:57] <pcjc2> my search is based on grep and manual checking so far, but if I come up with a list, I'll file a meta-bug for the issue
[18:57] <pcjc2> bugtask.py is looking like a strong culprit
[18:58] <pcjc2> Any chance you could paste me some sanitized stats on where I might most usefully look to fix first?
[19:07] <pcjc2> In case it is of interest to anyone, my commit hook robot code:
[19:07] <pcjc2> (WIP)
[19:07] <pcjc2> http://pastebin.com/8m2cWXZ3
[19:08] <pcjc2> and the git part: http://pastebin.com/ahF1U3RX
[19:08] <pcjc2> It is a two-part hook / update process, the hook uses git shell commands to populate a sqlite DB
[19:08] <pcjc2> The update process pulls work items out of the sqlite DB and uses launchpadlib to make updates to bugs
[19:09] <pcjc2> The only snag so far is that it can't handle private bugs, for the project as it is not subscribed to them. I could add the robot to our developers team, but I can't handle the extra email it would generate - the robot's email address forwards to me
[19:22] <pcjc2> So far I've found 11 candidates in the code-base for SQL improvement
[19:23] <pcjc2> (And that is with the very crude search assuming the appropriate statements are on the same line)
[19:24] <pcjc2> http://pastebin.com/3Ln9z4qg
=== Ursinha is now known as Ursinha-afk
[19:35] <pcjc2> https://bugs.launchpad.net/launchpad/+bug/705582
[19:35] <_mup_> Bug #705582: Metabug: Inefficient sub-select SQL in LP causes performance issues <Launchpad itself:New> < https://launchpad.net/bugs/705582 >
[19:36] <pcjc2> Not much chat in here at the moment - wrong time-zone, or is there a conference or something
[19:38] <maxb> The canonical folks are all still at their sprint, IIRC
[19:40] <pcjc2> ah, that would explain their absence
[19:52] <pcjc2> I just found this: http://www.markshuttleworth.com/archives/239
[19:52] <pcjc2> That video mockup is pretty amazing - is that the shape of things to come?
[19:52] <pcjc2> (I realise the post is old)
[20:00] <spiv> pcjc2: adding nice ajax-y stuff to improve usability?  Yes
[20:01] <lifeless> pcjc2: hi :) want to see more crazy sql ?
=== Ursinha-afk is now known as Ursinha
[20:11] <vanguard> is a subselect something that performs another select based on every single result from the first query?
[20:12] <lifeless> thats a correlated subquery
[20:12] <lifeless> a subselect is a form of subquery
[20:13] <lifeless> whether its correlated or not depends on whether it depends on any variables in the containing query
[20:30] <pcjc2> hi lifeless - fire away with the SQL
[20:30] <pcjc2> I'm not promising I'll fix them all - just felt bad for not filing the bugs after I discovered those other cases
[20:31] <pcjc2> I'm thumb-twiddling whilst I wait for our project's "maintainer" / founder to get on and test my LP update robot scripts no his server.
[20:31] <pcjc2> Absentee landlord is no fun - and he's the only one with root / admin access on that server
[20:33]  * pcjc2 is like a child with ADHD demanding constant attention - likes feedback soon, does not like waiting 2 or more days to test the code he's just finished writing
[20:34] <lifeless> pcjc2: :)
[20:35] <pcjc2> The video here.. http://www.markshuttleworth.com/archives/239
[20:35] <lifeless> bug 705224 was entertaininy
[20:35] <_mup_> Bug #705224: Distribution:EntryResource:searchTasks timeout <dba> <regression> <timeout> <Launchpad itself:Triaged by lifeless> < https://launchpad.net/bugs/705224 >
[20:35] <pcjc2> was that a "live" mockup witih real AJAX, or heavily edited?
[20:36] <pcjc2> was the regression in bug 705224  related to my recent change to fix the timeout searching for -* tags?
[20:36] <_mup_> Bug #705224: Distribution:EntryResource:searchTasks timeout <timeout> <Launchpad itself:Triaged by lifeless> < https://launchpad.net/bugs/705224 >
[20:36] <lifeless> I think it was a manual mockup
[20:36] <lifeless> certainly we don't have that yet
[20:37] <lifeless> pcjc2: it was related yes, thats why I mention it to you :)
[20:38] <pcjc2> I'll take a look
[20:38] <lifeless> pcjc2: the relation is that the UNIONs before used to be a single query over the tags
[20:38] <lifeless> pcjc2: oh, its fixed.
[20:38] <lifeless> pcjc2: but sure, have a look at the fix if you're interested
[20:38] <pcjc2> I did wonder if we ought to be combining the multiple tag queries inside the WHERE clause
[20:45] <allenap> rvb: me!
[20:46] <rvb> allnap: same name on lp?
[20:51] <pcjc2> lifeless - are tags gauranteed unique?
[20:52] <pcjc2> if so, "might" be able to optimise the all tags case too, abusing count
[20:53] <pcjc2> (SELECT COUNT(*) FROM (SELECT TRUE FROM BugTag WHERE BugTag.bug = Bug.id AND BugTag.tag IN ('foo', 'bar', 'baz')) = 3)
[20:54] <pcjc2> assuming the input tags are all distinct (could write some python to ensure that if necessary), the query should return an equal number of rows to the number of tags we asked for IFF all those tags exist
[20:55] <pcjc2> question is... would this "hack" / creative use of SQL give any useful speed-up for any real-world queries being seen?
[21:00] <pcjc2> I presume that if this was a regression - the DB engine was doing a better job of merging the uncorrelated UNION subqueries
[21:06] <rvb> allenap: I'm browsing through trivial bugs. Many of them look like they've been fixed already ... can you check this one https://bugs.launchpad.net/launchpad/+bug/298288 to make sure I'm not completely wrong about this?
[21:06] <_mup_> Bug #298288: Feature Request: PPA file display should allow sort by header <lp-soyuz> <ppa> <trivial> <Launchpad itself:Triaged> < https://launchpad.net/bugs/298288 >
[21:07] <allenap> rvb: Yeah. Do you want to mark it Invalid?
[21:09] <rvb> allenap: I'll do it
[21:10] <rvb> allenap: and to a few others bugs as well
[21:11] <allenap> rvb: Cool :)
[21:11] <pcjc2> http://people.canonical.com/~jkakar/storm/storm.sqlobject.SQLObjectBase.html#selectOne
[21:11] <pcjc2> Undocumented
[21:11] <pcjc2> What kind of SQL fragment does selectOne expect? (Or what kind of query would it expand to?) *** (checks storm sources)
[21:12] <wgrant> pcjc2: You should ideally not use selectOne, since that's part of the legacy SQLObject compat layer.
[21:12] <wgrant> grep around for '.one()'
[21:12] <wgrant> That's the new Storm Way®
[21:12] <pcjc2> not new code - I was just looking to see if I could identify an SQL optimisation
[21:12] <bigjools> depends on what type of result set he's got
[21:13] <bigjools> consistency FTW
[21:13] <pcjc2>        job = CodeImportJob.selectOne(
[21:13] <pcjc2>             """id IN (SELECT id FROM CodeImportJob
[21:13] <pcjc2>                WHERE date_due <= %s AND state = %s
[21:13] <pcjc2>                ORDER BY requesting_user IS NULL, date_due
[21:13] <pcjc2>                LIMIT 1)"""
[21:13] <wgrant> bigjools: .selectOne is a method on a SQLObject class.
[21:13] <wgrant> Not a resultset.
[21:14]  * bigjools needs more coffee
[21:14] <pcjc2> The question in theory - is whether that expands to something which gets correlated against for lots of rows
[21:14] <wgrant> .... huh?
[21:14] <wgrant> Does that make any sense?
[21:14] <wgrant> id IN (SELECT id ...)
[21:15] <pcjc2> given that line of code... does it produce a horribly inefficient query, as was the cause for bug 501945
[21:15] <wgrant> I'd use this:
[21:15] <pcjc2> I wasn't convinced it would do anything other than return TRUE or FALSE
[21:15] <pcjc2> which seemed like an odd kind of thing to pass to a method which allegedly selects one result
[21:16] <pcjc2> lp/code/model/codeimportjob.py line 134
[21:16] <pcjc2> It happened to be the first on my list of suspicious SQL things I found and noted in Bug #705582
[21:16] <wgrant> job = IStore(CodeImportJob).find(CodeImportJob.date_due <= whatever, CodeImportJob.state == whatever).order_by(Desc(CodeImportJob.requesting_user), CodeImportJob.date_due).first()
[21:16] <_mup_> Bug #705582: Metabug: Inefficient sub-select SQL in LP causes performance issues <Launchpad itself:Invalid> < https://launchpad.net/bugs/705582 >
[21:17] <pcjc2> I'm going to file bugs for all cases where I can determine some better SQL, but without being able to link these to real issues people are seeing, change for the sake of change seems like regression potential
[21:18] <pcjc2> IStore is part of storm?
[21:18] <lifeless> pcjc2: perhaps; we're not seeing timeouts on the 'all' case atm
[21:18] <lifeless> pcjc2: we have -very- good feedback on slow queries, so I'm kindof inclined to change broken things only.
[21:19] <pcjc2> sounds fair enough
[21:19] <lifeless> that siad, CIJ had some issues
[21:19] <pcjc2> Any matchup between the ones I noted and the hit-list of bad SQL?
[21:20] <lifeless> and that select seems a workaround for separation between clause and results
[21:20] <pcjc2> That code-import fragment I posted has me confused to what it even does
[21:21] <pcjc2> id IN (...) should evaluate to TRUE or FALSE, right?
[21:21] <lifeless> it acts as a where clause that sqlobject will use reasonably
[21:21] <lifeless> yes
[21:21] <lifeless> pcjc2: or NULL perhaps, I'd need to check.
[21:21] <pcjc2> job = CodeImportJob.selectOne(<something which evaluates to TRUE or FALSE>) seems like an odd bit of code to run
[21:22] <wgrant> pcjc2: It selects the single row that matches the condition.
[21:22] <lifeless> yeah, its odd because of an old layer we're migrating from
[21:22] <pcjc2> so it is a WHERE clause gragment?
[21:22] <pcjc2> fragment, sorry
[21:23] <lifeless> its a where clause
[21:23] <pcjc2> SELECT ... WHERE id IN (...)
[21:23] <lifeless> sqlobject is magic and special
[21:25] <pcjc2> so it could be "CodeImportJob.id = id AND date_due <= %s AND state = %s ORDER BY requesting_user IS NULL, due_date LIMIT 1"
[21:25] <lifeless>  no
[21:25] <lifeless> not with sqlobject
[21:25] <lifeless> needs to be stormified
[21:25] <pcjc2> is sqlobject pretending to execute SQL on something which is not in the DB?
[21:27] <lifeless> no, its pretending not to execute sql
[21:27] <lifeless> its a complex story
[21:27] <lifeless> best thing is to move to Store.find(CIJ, ....) instead
[21:27] <lifeless> with .one()
[21:28] <pcjc2> I doubt I can do anything truly useful here, but I will file a bug for someone with area-knowledge to triage
[21:28] <pcjc2> I don't think code-import is something I'll be able to test very easily locally
[21:29] <lifeless> so that doesn't look like a bug
[21:29] <lifeless> its oddly written
[21:29] <lifeless> but should be fast
[21:29] <lifeless> why do you think its a bug?
[21:29] <wgrant> lifeless: It's actually .first(), not .one(), I think. But it's spelt as a selectOne with a subquery that only matches the first.
[21:30] <lifeless> meh, yes.
[21:35] <StevenK> lifeless: Like pcjc2 is saying, he is following a pattern that a badly-written subselect was causing timeouts, so maybe others do the same.
[21:36] <pcjc2> all depends on row count really - bugtags is probably a very high count table, at about 700k rows
[21:36] <lifeless> StevenK: thanks; I meant why does he think *this* one is a problem.
[21:36] <huwshimi> deryck: Available when you're ready
[21:36] <StevenK> I suspect it just happens to be the first one on the list.
[21:36] <lifeless> pcjc2: this query is already constrained though: note that the query is looking for next thing due
[21:36] <lifeless> its answerable from index.
[21:36] <deryck> huwshimi, ah, cool.  give me 5 minutes to wrap and we can.
[21:37] <deryck> huwshimi, shall I come to you or you to me?
[21:37] <pcjc2> yes, just first on list - it seemed odd, and I still can't quite map what SQL it ends up executing
[21:37] <pcjc2> you are right though - work from known timeouts, rather than poking at supposed problems
[21:38] <huwshimi> deryck: Great. I can come to you. Everyone is working quietly here so lets not disturb them :)
[21:38] <pcjc2> IStore, etc.. is Storm?
[21:38] <deryck> huwshimi, ok, first room on left going down left-side hallway.
[21:38] <huwshimi> deryck: ok see you soon
[21:41] <pcjc2> Hmm - example from storm docs:
[21:41] <pcjc2> store.find(Person, Person.name == u"Joe") and store.find(Person, name=u"Joe")
[21:42] <pcjc2> Seems like unholy magic to me
[21:42] <pcjc2> 'Person.name == u"Joe"' is somehow passed as argument, not evaluated immediately to give True / False?
[21:46] <StevenK> It is passed as an argument and Storm intreprets it
[21:47] <leonardr> thumper, the javascript side of things is in lib/canonical/launchpad/icing/build/bugs/bugtask_index.js and it's pretty hairy
[21:48] <jelmer> lifeless: resubmitted.
[21:50] <huwshimi> deryck: Just held up here for a bit, will be over soon
[21:51] <pcjc2> StevenK, I need to go read up more on Python... the fact it is somehow an argument and not evaluated before the call is magical to me
[21:51] <deryck> huwshimi, no worries
[21:51] <pcjc2> does it have anything to do with lazy evaluation?
[21:53] <mwhudson> pcjc2: the implementation of the == operator doesn't have to return true or false...
[21:53] <pcjc2> ah - so it IS evil magic going on ;)
[21:53] <pcjc2> And presumably the "Person" object in the example is typed such that the == operator has a specific implementation?
[21:57] <StevenK> It's likely done via SQLObject *and* Storm so that both implement __eq__
[21:57] <pcjc2> I'm reading the code, and I'm still non the wiser how it works
[21:58]  * StevenK is fairly ignorant of Storm internals
[21:58] <pcjc2> NM though.. it will keep me entertained trying to learn how.. Evil evil magic is still my best guess
[21:58] <pcjc2> Is it a design choice to go more ORM style, and less explicit SQL queries?
[21:59] <lifeless> jelmer: thanks
[21:59] <lifeless> pcjc2: operator overloading
[22:00] <lifeless> pcjc2: yes, its evil
[22:00] <pcjc2> It seems pretty evil
[22:00] <lifeless> ORM is a bit of a mistake; late evaluation leads to death-by-single-row-retrieval
[22:00] <pcjc2> I'm sure someone more knowledgeable than I has decided it is a good idea though
[22:00] <lifeless> long term goal is a mapping layer that answers service-point entire answers
[22:01] <pcjc2> service-point is for example, http://lp.net/project/+bugs  ?
[22:01] <lifeless> a search page, sure
[22:02] <pcjc2> launchpadlib API is a "sort" of ORM type affair?
[22:02] <pcjc2> I found that very intuitive to work with
[22:03] <lifeless> sort of yes
[22:03] <lifeless> its why its so slow ;P
[22:04] <pcjc2> can't have everything I guess
[22:04] <pcjc2> When people are not so busy sprinting, I'd love to have a chat about various ideas
[22:05] <pcjc2> Mostly feature-request stuff, but the kind most usefully bounced of other people before just filing a bug titled "wouldn't this be nice..."
[22:05] <lifeless> sure
[22:05] <lifeless> anytime is good
[22:05] <pcjc2> I was thinking that LP might usefully grow a "person" type object for automatons / robots
[22:06] <pcjc2> (I've been writing one recently, so it is in my mind)
[22:06] <pcjc2> They would be owned by a person or team, but delegate contact via that team - not requiring their own Email address or OpenID login / whatever
[22:07] <pcjc2> IE.. a way to auth against LP for API use which doesn't require setting up a pretend person to do it
[22:08] <allenap> jtv: From the API, a list of Bugzilla trackers can be obtained with: [bt for bt in root.bug_trackers if bt.bug_tracker_type == 'Bugzilla']
[22:08] <pcjc2> Have also been thinking about controls to navigate collections of bug search results from within the bug page. UI still going through my head though
[22:08] <dobey> pjdc: you could call the object IRobot
[22:09] <pcjc2> might be a TM on that one
[22:10] <lifeless> so, in page refresh is definitely already desired
[22:10] <dobey> what would be awesome is a way to use the API with basaic auth
[22:10] <dobey> basic even
[22:10] <dobey> or digest anyway
[22:10] <lifeless> I have extremely mixed feelings about that
[22:10] <pcjc2> https://launchpad.net/~gpleda-launchpad-robot
[22:11] <pcjc2> The fact that the robot is a person doesn't map well to our usage
[22:11] <pcjc2> It needs to get subscribed to security bugs so it can close them
[22:11] <pcjc2> but I _dont_ want it to get bugmail
[22:11] <dobey> i don't want *me* to get bugmail
[22:11] <pcjc2> that too ;)
[22:12] <lifeless> ok
[22:12] <pcjc2> I understand that is a WIP regarding bugmail granularity though
[22:12] <lifeless> so we have an answer for this already
[22:12] <lifeless> yeah
[22:12] <lifeless> its well advance
[22:12] <lifeless> if you ask gary_poster nicely you may be able to be in the alpha
[22:12] <pcjc2> ok, will do
[22:13] <dobey> lifeless: what reservations re: basic/digest auth?
[22:13] <lifeless> dobey: well, we use ssl so on that front its fine
[22:13] <lifeless> handshaking with canonical-identity-provider / other openid environments is darn tricky.
[22:14] <pcjc2> In page refresh would be awesome - I was thinking about remembering the "view" or "search query" / whatever, you were doing when you clicked on the bug, and giving "Next" "Prev" controls
[22:14] <lifeless> in terms of standards... there are none
[22:14] <lifeless> pcjc2: that would be awesome too
[22:14] <pcjc2> In page update when people comment (reverse AJAX push) would be amazing, but perhaps a corner case
[22:14] <dobey> yeah i know, which is why doing oauth is so horribly painful
[22:15] <dobey> i guess that launchpad isn't exactly the openid provider any more though, so basic/digest auth is trickier now
[22:16] <pcjc2> OpenID seems like a nice proposition
[22:17] <dobey> openid/oauth are solutions looking for a problem
[22:17] <pcjc2> if it were my server / wiki, I would re-write the auth for our project's wiki to link to user's LP OpenIDs
[22:17] <pcjc2> We could tie the permissions to team membership on LP
[22:17] <mwhudson> teams in openid are some launchpad specific extension though aren't they?
[22:17] <mwhudson> which is a bit of a shame
[22:18] <pcjc2> I'll admit I don't fully understand OpenID,
[22:18] <pcjc2> I looked at oauth, and it seemed a vaguely sensible way for an API to authenticate
[22:19] <dobey> i just don't want to have to authenticate my browser twice
[22:20] <leonardr> dobey: can you be more specific about "authenticate my browser twice"?
[22:21] <pcjc2> I assume dobey is talking about having to login to the SSO / login.launchpad.net, and then auth launchpad.net to those credentials
[22:21] <lifeless> dobey: right, we no longer maintain an authentication db
[22:21] <dobey> leonardr: i want to make an extension for my browser that uses lp api to do certain things when viewing certain launchpad pages, and having to authenticate that separately is weird
[22:22] <pcjc2> weird, but IMO necessary
[22:22] <dobey> i don't think it's necessary
[22:22] <dobey> it is however, cumbersome and painful
[22:22] <leonardr> dobey: if you're in the browser, you can use the same-domain version of the web service that the ajax application uses, which will carry over the browser's authentication
[22:23] <leonardr> but it depends on how close your code is to the browser
[22:23] <dobey> leonardr: if i'm in the browser, or "if i'm in the JS" ?
[22:23] <leonardr> dobey: if you have access to the Cookie header being sent by the browser
[22:23] <dobey> by "extension" i mean "c, python, similar"
[22:24] <dobey> leonardr: so i can just re-use the sessionid cookie to talk to the api?
[22:24] <leonardr> dobey: that's what the web browser does
[22:25] <dobey> leonardr: so i can pass that cookie through launchpadlib?
[22:25] <leonardr> no
[22:25] <dobey> :(
[22:26] <leonardr> but that's what allows the browser to make these requests
[22:26] <leonardr> we could add that functionality but it would immediately be abused by everyone who's not writing a browser extension
[22:27] <leonardr> and it would have all sorts of bad edge cases surrounding logout
[22:27] <dobey> i really do not want to reimplement launchpadlib :(
[22:28] <leonardr> dobey: does it make you feel better to know that in natty, all desktop-wide apps will use the same oauth authorization?
[22:28] <dobey> no
[22:29] <leonardr> dobey: do you understand my position?
[22:29] <pcjc2> How will they share that auth token? DBus or something?
[22:29] <pcjc2> gnome-keyring-manager?
[22:29] <leonardr> pcjc2: keyring-manager by default
[22:30] <dobey> ubuntu-sso-client
[22:30] <dobey> which is per-app, not per-target
[22:30] <dobey> but anyway
[22:32] <dobey> leonardr: i understand what you're saying, but i don't think it's a particularly strong argument for doing it the way it's currently done. it wouldn't really take much more effort to abuse the browser stuff as it is, it seems. although it's tedious enough that i might not bother with it myself
[22:32] <dobey> brb
[22:33] <leonardr> dobey: "tedious enough that i might not bother with it myself" is the only hurdle i need to clear
[22:34] <mrevell> huwshimi, with reference to bug 263652, you rock
[22:34] <_mup_> Bug #263652: {i} and other icon codes no longer work on help wiki <Launchpad Help Wiki Moin theme:Fix Committed> < https://launchpad.net/bugs/263652 >
[22:36] <dobey> leonardr: yes, but everyone isn't an old bitter and jaded developer like me :)
[22:36] <leonardr> dobey: i just need to stop this code from getting into supported ubuntu packages
[22:37] <leonardr> dobey: i think you can implement Cookie: passing pretty easily by overriding some methods in Launchpad
[22:37] <leonardr> and implementing your own Http subclass
[22:38] <dobey> leonardr: i don't want to touch javascript
[22:38] <leonardr> i mean the Launchpad class of launchpadlib
[22:38] <dobey> ah ok
[22:39] <leonardr> if this is code for yourself then that's fine, but if you want to put it into ubuntu we will have to reach some other compromise
[22:43] <dobey> i'm writing a browser, and would like to keep everything contained within it
[22:46] <leonardr> dobey: if you're writing the whole browser, you should be able to intercept launchpadlib's webbrowser.open call and open that page in your already-authenticated browser, avoiding the second authentication
[22:47] <leonardr> does that make any sense?
[22:48] <dobey> slightly
[22:49] <leonardr> dobey: i have absolutely no problem helping you with this, if this is the way you want to go
[22:50] <dobey> i'm a long way from that point still, but it will require a lot more thought
[22:51] <huwshimi> mrevell: Yeah no problems. Still needs to be pushed live at some stage
[22:52] <leonardr> dobey: ok, ping me. i think we can get a solution that makes us both happy
[22:53] <dobey> ok
[22:53] <dobey> cheers for now
[23:32] <bigjools> lifeless: allenap just did an experiment with TAL to see if that macro re-evaluation was true, and it doesn't seem to re-eval if it's an int at least.  Maybe it's only for complex objects.