OpenStack Dashboard Charm

websso does not work with https connection

Bug #1960854 reported by Rodrigo Barbieri
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack Dashboard Charm
Fix Released
Undecided
Rodrigo Barbieri
OpenStack Dashboard Charm 22.04

Bug Description

Upon deploying keystone and openstack-dashboard with SSL and keystone-saml-mellon, http access to the dashboard using HTTP works, but HTTPS does not, producing the following error in the logs:

(keystone.api.auth): 2022-02-14 14:19:43,727 ERROR https://10.5.100.5/auth/websso/ is not a trusted dashboard host
(keystone.server.flask.application): 2022-02-14 14:19:43,731 WARNING Authorization failed. The request you have made requires authentication. from 10.5.2.27

Looking at the config files, I found:

[federation]
trusted_dashboard = http://10.5.100.5/auth/websso/

The expected value should be https instead of http, according to [1]

[1] https://github.com/openstack/charm-openstack-dashboard/blob/82897f8f5fde0ef2c639b18a2499d2f033ce37c5/hooks/horizon_hooks.py#L448

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix proposed to charm-openstack-dashboard (master)

Fix proposed to branch: master
Review: https://review.opendev.org/c/openstack/charm-openstack-dashboard/+/829123

Changed in charm-openstack-dashboard:
status: New → In Progress
Rodrigo Barbieri (rodrigo-barbieri2010)
Changed in charm-openstack-dashboard:
assignee: nobody → Rodrigo Barbieri (rodrigo-barbieri2010)
Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to charm-openstack-dashboard (master)

Reviewed: https://review.opendev.org/c/openstack/charm-openstack-dashboard/+/829123
Committed: https://opendev.org/openstack/charm-openstack-dashboard/commit/a322faa469367590d46ace66c9538824edf82ab9
Submitter: "Zuul (22348)"
Branch: master

commit a322faa469367590d46ace66c9538824edf82ab9
Author: Rodrigo Barbieri <email address hidden>
Date: Mon Feb 14 15:43:46 2022 -0300

    Fix ssl_key var name

    Incorrect config key was responsible for bugs when configuring
    websso when using SSL.

    Closes-bug: #1960854
    Change-Id: I241c7492ffcddf11c6b6464391fe986c61895b19

Changed in charm-openstack-dashboard:
status: In Progress → Fix Committed
Alex Kavanagh (ajkavanagh)
Changed in charm-openstack-dashboard:
milestone: none → 22.04
Alex Kavanagh (ajkavanagh)
Changed in charm-openstack-dashboard:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.