Return correct scheme in version URLs if service
behind an SSL termination proxy.
This is done by adding a new configuration option,
secure_proxy_ssl_header, which, when defined, makes
the wsgi application take the host_url scheme from
that header. By default, when this option is not
specified, there is no difference in behavior.
The intention is to configure any ssl-decrypting
proxy to set that header, so that nova-api knows
which protocol to use in the URLs in response.
Reviewed: https:/ /review. openstack. org/206479 /git.openstack. org/cgit/ openstack/ nova/commit/ ?id=ab357792386 58ad8595e383618 ca28a191c1085d
Committed: https:/
Submitter: Jenkins
Branch: master
commit ab35779238658ad 8595e383618ca28 a191c1085d
Author: Radomir Dopieralski <email address hidden>
Date: Tue Jul 28 12:54:20 2015 +0200
Handle SSL termination proxies for version list
Return correct scheme in version URLs if service
behind an SSL termination proxy.
This is done by adding a new configuration option, proxy_ssl_ header, which, when defined, makes
secure_
the wsgi application take the host_url scheme from
that header. By default, when this option is not
specified, there is no difference in behavior.
The intention is to configure any ssl-decrypting
proxy to set that header, so that nova-api knows
which protocol to use in the URLs in response.
This patch is largely based on /review. openstack. org/#/c/ 132235/ 18
https:/
DocImpact
Closes-Bug: #1384379
Change-Id: I27ba166902ecc1 9c9b7fff2ee7f3b f733885efe1