- Idpy-board - lists3.sunet.se

idpy 2020 board meeting and a new project

by hlflanagan＠sphericalcowgroup.com

Hello idpy Board members! I hope this message finds you well and neither sick nor suffering from smoke inhalation. It has been quite some time since we’ve had a chance to meet, and we have a few things to cover as a board: 1 - We have a request to add a new project under the idpy umbrella: djangosaml2. I’m copying the note from Giuseppe de Marco about djangosaml2 below. See https://dracc.commonsconservancy.org/0025/ for a reminder of how we add new projects to idpy. 2 - We should think about the 2021 board selection. There are 3 slots, currently filled by Leif, Christos, and myself, that will be open. Individuals are always welcome to re-nominate for the Board. I’d like to get a call on the calendar to catch up on idpy activities, discuss the new project, and talk about plans for 2021 and beyond. If you would, please fill out the doodle poll by the end of this week: https://doodle.com/poll/ckh357gcctrekqvd --- Subject: djangosaml2 Hello everybody, As you may have guessed from the subject of this email, I have the pleasure of presenting here djangosaml2, in anticipation of its migration to Identity Python. In CC Jozef Knaperek, former contributor of pysaml2 and person who from 2016 to date has maintained the fork of this project, now hosted in the personal github, which today has a fair audience and satisfaction within the Django community. Here is: https://github.com/knaperek/djangosaml2 As is evident, djangosaml2 is an application designed for Django Framework, written above pysaml2 that presents closely related goals to this. This is why we believe that bringing djangosaml2 to idpy can be quite natural, and if we want it also advantageous, for the possibility of increasing its community. Currently the project is published on Pypi and the version release policy, and acceptance of contributions, depends on validating the code by running unit tests (Tox over Github actions). The coverage of djangosaml2 is currently less than 80% in the v0.40.1 but higher than 90% for the v1.0.0 version (see branch of the same name). The latter is in the process of being released and it might be a good opportunity to release it directly within idpy. The versions from v0.19.0 to v1.0.0 were made possible by a great enthusiasm, which arose within its community, manifested following the first interactions for the requalification of the project, as regards the feedback offered both in the issues and in the PR pending. Having given so much trust activated several contributors in a relatively short time makes us optimistic about the general resilience of the project, such as to think about the good health of its community and not least the possibility that this project could hopefully continue to live on external contributions only. In any case, the people that are glad to present here djangosaml2, for whom we undertake the commitment of a management over time, are Me and Knaperek. I know that we have not written everything but rather we fear we have written too much. We are available to answer in this thread on further organizational and managerial aspects of the project. Sure of your kind reply, we greet you --- Thanks! Heather

3 years, 7 months

1
2
0 0

Board selection for 2020-2021

by hlflanagan＠sphericalcowgroup.com

Hola a todos! Thank you, Ivan, Chris, Mike, and Roland, for agreeing to serve on the board for a new two-year term! I’ll send out an announcement to the developers list shortly. -Heather

4 years, 3 months

1
0
0 0

Meeting today or tomorrow?

by hlflanagan＠sphericalcowgroup.com

Hola a todos! Given most (all?) of our board is here, let’s meet in the Hackathon room today or tomorrow. https://doodle.com/poll/fifi78wqkveq4ed2 <https://doodle.com/poll/fifi78wqkveq4ed2> What works for you all? -Heather

4 years, 5 months

1
1
0 0

An item for the idpy Board

by hlflanagan＠sphericalcowgroup.com

Hola a todos, and long-time no hear! I have an item for board consideration; several of you are aware of this, but it hasn’t come up formally on the board yet. As you all may recall, we had been working on an MoU with the OpenID Foundation around the OIDC libraries. OIDF has decided NOT to continue direct support for those libraries, which makes moot the need for an MoU. It also re-opens the question as to who, how, and where those libraries should find a home.. I have no suggestions as to next steps here, but Roland may have more information. Roland, can you write up a bit more detail for the board, so w can all consider next steps? Thanks! Heather

4 years, 5 months

3
4
0 0

Action items from our f2f Board meeting

by hlflanagan＠sphericalcowgroup.com

Hola a todos! Yay for our first f2f meeting! Thank you all for making your way to Estonia and taking time out of your Sunday evening to catch up. There was a lot of ideas and suggestions discussed last night. I took away two particular action items, but there may be more. What would you add to the list of things to do below? * Follow up on the possibility of an NGI grant to focus on talent development * Draft a marketing/branding plan for idpy I think we can discuss this on list for a bit, and then schedule our next meeting for August, when hopefully we can review an outline and/or first draft for the above items. Thanks again for your time, Heather

4 years, 11 months

1
0
0 0

Fwd: Re: IdentityPython Board approval to move ahead with Commons Conservancy

by hlflanagan＠sphericalcowgroup.com

Hola a todos, Michiel’s response re: license/copyright info in each file. Thanks! Heather ---------- Forwarded message ---------- From: Michiel Leenaars <michiel at nlnet.nl> Date: May 8, 2019, 8:15 AM -0700 To: Heather Flanagan <hlflanagan at sphericalcowgroup.com> Subject: Re: IdentityPython Board approval to move ahead with Commons Conservancy > Hi Heather, > > > Why does CC think having a single license file per project is > > insufficient? Our thought is that if we can avoid adding a header to > > every single file, that would be nice, esp. given we already have this > > info in the license file and we have the Note Well. > > this is not just our opinion, but something that is an industry and > community standard for legal compliance these days. When companies like > Siemens, Samsung or Honeywell use some code in one of the hundreds or > thousands of devices and systems in their product line, they need to be > able to provide the correct license and a download of the exact version. > This means machine readability too. > > To quote from https://reuse.software/practices/2.0/ : > > Scroll to the section "2. Include a copyright notice and license in each > file"... > > "Source code files are often reused across multiple projects, taken from > their origin and repurposed, or otherwise end up in repositories where > they are separate from its origin. You should therefore ensure that all > files in your project have a comment header that convey that file’s > copyright and license information: Who are the copyright holders and > under which license(s) do they release the file? > > It is highly recommended that you keep the format of these headers > consistent across your files. It is important, however, that you do not > remove any information from headers in files of which you are not the > sole author. > > You must convey the license information of your source code file in a > standardised way, so that computers can interpret it. You can do this > with an SPDX-License-Identifier tag followed by an SPDX expression > defined by the SPDX specifications." > > (the text goes on for a while after this, to clarify the point but this > is the basic gist of it) > > There is a nice Python tool to check: > > https://github.com/fsfe/reuse-tool > > I hope this makes sense > > > -- > Support NLnet, the open internet and open source with just 5 minutes of > your time. Make a difference today. Visit: > > https://nlnet.nl/help (English) > https://nlnet.nl/ayuda (Espanol) > > -- > Michiel Leenaars > Director of Strategy > > NLnet Foundation > Science Park 400 (Matrix 2) > 1098 XH Amsterdam > The Netherlands > > https://nlnet.nl > sip/xmpp: michiel [@t] nlnet.nl > > --------------- > 'If you want the Internet to grow strong, safe and free, > but you don't know how to help, contribute to NLNet: > they do know and care." > > Giorgio Maone, NoScript > > Interested what Richard Stallman, Karsten Nohl, Andy Tanenbaum and > many others have to say about what NLnet helped them do for you? > Feel your wallet tingling already? Check out: > > https://nlnet.nl/donating/quotes.html >

5 years

2
1
0 0

Updating the idpy.org website, pyOIDC, and pyJWT

by hlflanagan＠sphericalcowgroup.com

Hola a todos! I’ve updated the idpy.org website with pointers to the idpy statues as held by the Commons Conservancy, as well as the pointer to how to add/remove projects (also officially recorded at CC). As I was doing this, I noticed the following: Other projects are still under consideration: • pyOIDC • pyJWT Should these be removed as being under consideration at this point, given the code now under OIDF’s care? Thanks! Heather

5 years

2
3
0 0

Notes: idpy Board call, 7 May 2019

by hlflanagan＠sphericalcowgroup.com

Attendees: Roland, Mike, Heather, Leif, Chris, Christos, Ivan 0) Agenda bash 1) Governance status - Note Well approved 1 May 2019 Heather has sent a copy to the discuss list, and added a link to the idpy.org <http://idpy.org/> website. - MoU with OIDF - status Mike will ping the OIDF people - Commons Conservancy next steps Michiel of CC suggests doing more to make copyright attribution more blatant. Their best practice: https://commonsconservancy.org/faq/licenseinfo/ <https://commonsconservancy.org/faq/licenseinfo/> In general, good to have either ra single file in the root folder of a repository to capture the license and copyright for the whole project (and possibly the exceptions) or have something in each individual file. Right now, we have at least a license file in each repository. Satosa also has a notice file. Our response could be that we’ve considered that approach, but we have the Note Well and the license files now, and consider that enough. Action: Heather to ask CC why they think having a single license file per project is insufficient; if we can avoid adding a header to every single file, that would be nice, esp. given we already have this info in the license file. Action: Heather to post on the idpy.org <http://idpy.org/> website that we are now a project in Commons Conservancy. 2) Development Update (Ivan) Satosa concerns were raised by a member of the community. The board should talk about whether we have sufficient resources for this (and other) idpy projects to make them successful. See Ivan’s response to this particular concern here: https://lists.sunet.se/pipermail/idpy-board/2019-May/000057.html <https://lists.sunet.se/pipermail/idpy-board/2019-May/000057.html> Projects are always open to more volunteers, but there is a bottleneck in terms of having the big architecture picture in order to review and approve code. Suggest we take this back to the developers call about how to resolve. If there is a resource problem, is there a specific ask to the board? Is there a request for more resources? Need clarification. Worth noting that quite a number of PRs have been reviewed and accepted, so work has been happening. Suggest we ask the developers how often a release should happen, and who can help review the code. Developers had come up with a plan for releases and tagging, but need to finish merging open PRs to get to a steady baseline. https://github.com/IdentityPython/IdentityPython.github.io/wiki/Branching-a… <https://github.com/IdentityPython/IdentityPython.github.io/wiki/Branching-a…> If resources are needed, suggest using Hannah temporarily if that would be helpful. Need guidance on what skills are needed to move projects along if we’re going to find more resources. Ivan would appreciate help with documentation (e.g., use cases as collected at TIIME, ready-made docker or vagrant files where we can set up the flows for the use cases). The hardest part is keeping in mind the bigger picture against the changes people propose to the project design. For the developers call: more releases, or more stability? Action: Heather to send out a doodle poll to set up a idpy dev call for a time other than the normal Tuesday 14 May call. If there is a specific request for a particular kind of resource that comes out of the developers meeting, Heather will bring that back to the board. 3) Meeting at TNC19? Full idpy board will meet for drinks/dinner on Sunday evening. Schedule for after speakers reception. Heather to coordinate 4) AOB Regarding the number of projects listed in GitHub, there are three repositories for the federation work, but Roland works in just one. If those three repositories need to be reorganized, that’s up to the lead developer of the project. Just send an email to the list of the changes as an FYI.

5 years

1
0
0 0

Fwd: for the IdPy board

by hlflanagan＠sphericalcowgroup.com

> Begin forwarded message: > > From: Ivan Kanakarakis <ivan.kanak at gmail.com> > Subject: Re: for the IdPy board > Date: May 7, 2019 at 8:06:12 AM PDT > To: Heather Flanagan <hlflanagan at sphericalcowgroup.com> > Cc: Scott Koranda <skoranda at gmail.com>, Leif Johansson <leifj at sunet.se> > > Hi everyone, > > > On Tue, 7 May 2019 at 15:07, Heather Flanagan > <hlflanagan at sphericalcowgroup.com> wrote: >> >> Thank you for the feedback, Scott. There is a board meeting later this morning; I will make sure to bring this up then. >> >> Thanks! Heather >> On May 7, 2019, 4:00 AM -0700, Scott Koranda <skoranda at gmail.com>, wrote: >> >> Hi, >> >> It has been almost two years since there was a SATOSA release, and there >> are a number of PRs that have been holding. >> >> Everybody is busy, so I do not know what I expect the board to do, but I >> think the board should at least chat to see if there are any structural >> or other changes that could be made to help SATOSA mature faster. >> >> I really want (need) SATOSA to succeed, so please take this request in >> the positive and forward looking spirit in which I intend it. >> > > The plan is to fix pysaml2#579 and pysaml2#597, then revert SATOSA > bd4303abfc9220dd6b701a23fc522adadbad10b1 and have a new release :) > The reason for this is that I don't want to have those options in > SATOSA and then remove them (a breaking change on an official > release). > > https://github.com/IdentityPython/pysaml2/issues/579 > https://github.com/IdentityPython/pysaml2/pull/597 > https://github.com/IdentityPython/SATOSA/commit/bd4303abfc9220dd6b701a23fc5… > > This needs some work, but I think the hard part is done. I need to > cleanup the modifications I have locally, and make sure the changes > work fine. > > > Cheers, > > -- > Ivan c00kiemon5ter Kanakarakis >:3

5 years

1
0
0 0

Fwd: for the IdPy board

by hlflanagan＠sphericalcowgroup.com

Feedback from a community member for us to discuss today. Thanks! Heather ---------- Forwarded message ---------- From: Scott Koranda <skoranda at gmail.com> Date: May 7, 2019, 4:00 AM -0700 To: Heather Flanagan <hlflanagan at sphericalcowgroup.com>, Ivan Kanakarakis <ivan.kanak at gmail.com>, Leif Johansson <leifj at sunet.se> Subject: for the IdPy board > Hi, > > It has been almost two years since there was a SATOSA release, and there > are a number of PRs that have been holding. > > Everybody is busy, so I do not know what I expect the board to do, but I > think the board should at least chat to see if there are any structural > or other changes that could be made to help SATOSA mature faster. > > I really want (need) SATOSA to succeed, so please take this request in > the positive and forward looking spirit in which I intend it. > > Thanks much, > > Scott K

5 years

1
0
0 0

2024

2023

2022

2021

2020

2019

2018

Idpy-board