OpenStack Heat

  1. Bug #1384379
  2. Comment #18

Comment 18 for bug 1384379

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to nova (master)

Reviewed: https://review.openstack.org/206479
Committed: https://git.openstack.org/cgit/openstack/nova/commit/?id=ab35779238658ad8595e383618ca28a191c1085d
Submitter: Jenkins
Branch: master

commit ab35779238658ad8595e383618ca28a191c1085d
Author: Radomir Dopieralski <email address hidden>
Date: Tue Jul 28 12:54:20 2015 +0200

    Handle SSL termination proxies for version list

    Return correct scheme in version URLs if service
    behind an SSL termination proxy.

    This is done by adding a new configuration option,
    secure_proxy_ssl_header, which, when defined, makes
    the wsgi application take the host_url scheme from
    that header. By default, when this option is not
    specified, there is no difference in behavior.

    The intention is to configure any ssl-decrypting
    proxy to set that header, so that nova-api knows
    which protocol to use in the URLs in response.

    This patch is largely based on
    https://review.openstack.org/#/c/132235/18

    DocImpact
    Closes-Bug: #1384379

    Change-Id: I27ba166902ecc19c9b7fff2ee7f3bf733885efe1