Enable https (and disabling http) breaks authentication
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Thruk Agent Charm |
Fix Released
|
High
|
Unassigned |
Bug Description
If we switch Nagios to only run via https, not http (i.e. remove port 80 entirely), the Thruk interface presents: "It seems like you are not authorized."
See https:/
To fix:
https:/
Add Include /usr/share/
This step might require a change to the Nagios charm, depending on if there's a thruk-agent relation.
The other change that needs making is to set cookie_
So far I've tested those changes but still authentication isn't working - I might also try removing cookie based auth to see if that works out.
Related branches
- Chris Sanders (community): Approve
- Xav Paice: Pending requested
- Andrea Ieri: Pending requested
-
Diff: 38 lines (+20/-0)1 file modifiedhooks/actions.py (+20/-0)
Changed in charm-thruk-agent: | |
importance: | Undecided → High |
Changed in charm-thruk-agent: | |
status: | New → In Progress |
assignee: | nobody → Adam Dyess (addyess) |
Changed in charm-thruk-agent: | |
assignee: | Adam Dyess (addyess) → nobody |
milestone: | none → 20.08 |
It turns out that on every config change on nagios charm, sites-available /default- ssl.conf is completely re-written. interestingly enough thruk does a nice job on it's install to place the /usr/share/ thruk/thruk_ cookie_ auth.include into the VirtualHost files, however this full rewrite in nagios doesn't take into account this inserted line.
/etc/apache2/
I was able to have success without having to change /etc/thruk/ thruk_local. conf