[dashboard] Allow ssl ciphers to be specified

Bug #1447668 reported by Mark Vanderwiel on 2015-04-23
This bug affects 1 person
Affects Status Importance Assigned to Milestone
OpenStack + Chef
Mark Vanderwiel

Bug Description

Need to be able to control the ssl ciphers used by horizon dashboard.

Something like this
['openstack']['dashboard']['ssl']['ciphers'] = 'RSA:HIGH:MEDIUM:!LOW:!kEDH:!aNULL:!ADH:!eNULL:!EXP:!SSLv2:!SEED:!CAMELLIA:!PSK!RC4:!RC4-MD5:!RC4-SHA'

And this would be added to the dash-site tempate here:

 SSLProtocol <%= node["openstack"]["dashboard"]["ssl"]["protocol"] %>
<% if node["openstack"]["dashboard"]["ssl"]["ciphers"] -%>
 SSLCipherSuite <%= node["openstack"]["dashboard"]["ssl"]["ciphers"] %>
<% end -%>

Fix proposed to branch: master
Review: https://review.openstack.org/176863

Changed in openstack-chef:
status: New → In Progress

Reviewed: https://review.openstack.org/176863
Committed: https://git.openstack.org/cgit/stackforge/cookbook-openstack-dashboard/commit/?id=7ccbfe76a62578d1414131ef895db0723fd2b3a4
Submitter: Jenkins
Branch: master

commit 7ccbfe76a62578d1414131ef895db0723fd2b3a4
Author: Mark Vanderwiel <email address hidden>
Date: Thu Apr 23 10:44:01 2015 -0500

    Allow ssl ciphers to be optionally configured for horizon

    Add the SSLCipherSuite to the dash-site template.

    Change-Id: I7b87761dd1ab0618e6ae6de428ec0b736e4aa483
    Closes-Bug: #1447668

Changed in openstack-chef:
status: In Progress → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers