OpenStack Dashboard (Horizon)

Unable to handle Swift containers in Horizon due to cookies settings

Bug #1943618 reported by Vadym Markov on 2021-09-14

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	OpenStack Dashboard (Horizon)	In Progress	Undecided	Unassigned

Bug Description

Reproduced on several versions since at least Pike to Victoria. Special config needed:

$ grep -i "cookie" local_settings.py

CSRF_COOKIE_SECURE = True
SESSION_COOKIE_SECURE = True
CSRF_COOKIE_HTTPONLY = True
SESSION_COOKIE_HTTPONLY = True

Critical option for reproduce is CSRF_COOKIE_HTTPONLY, turning it off suppresses the issue.

Reproduce:

In Horizon Dashboard:
Project -> Object store -> Containers -> "Create container" fails with the following error:

"Error: Unable to create container"

The following messages are captured in horizon log:

django.request Not Found: /horizon/api/swift/containers/test/metadata/
django.security.csrf Forbidden (CSRF token missing or incorrect.): /horizon/api/swift/containers/test/metadata/

Also deleting of existing container fails with the similar error

OpenStack Infra (hudson-openstack) on 2021-09-14

Changed in horizon:
status:	New → In Progress

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.