charm-ceph-radosgw

History

Samuel Walladge 541ceec401 Enable rgw trust forwarded https when https proxy This option is required for server-side encryption to be allowed if radosgw is behind a reverse proxy, such as here when certificates are configured and apache2 is running. ref. https://docs.ceph.com/en/latest/radosgw/encryption/ It is safe to always enable when https is configured in the charm, because it will be securely behind the reverse proxy in the unit. This option must not be enabled when https is not configured in the charm, because this would allow clients to spoof headers. Closes-Bug: #2021560 Change-Id: I940f9b2f424a3d98936b5f185bf8f87b71091317	2023-05-31 14:16:47 +09:30
..
ceph.conf	Enable rgw trust forwarded https when https proxy	2023-05-31 14:16:47 +09:30
openstack_https_frontend.conf	Resolve issue with mod_proxy decoding	2022-03-30 13:47:53 +01:00

Samuel Walladge 541ceec401 Enable rgw trust forwarded https when https proxy

This option is required for server-side encryption to be allowed
if radosgw is behind a reverse proxy,
such as here when certificates are configured and apache2 is running.

ref. https://docs.ceph.com/en/latest/radosgw/encryption/

It is safe to always enable when https is configured in the charm,
because it will be securely behind the reverse proxy in the unit.
This option must not be enabled when https is not configured in the charm,
because this would allow clients to spoof headers.

Closes-Bug: #2021560
Change-Id: I940f9b2f424a3d98936b5f185bf8f87b71091317

2023-05-31 14:16:47 +09:30

ceph.conf

Enable rgw trust forwarded https when https proxy

2023-05-31 14:16:47 +09:30

openstack_https_frontend.conf

Resolve issue with mod_proxy decoding

2022-03-30 13:47:53 +01:00