openstack
/
openstack-ansible-os_heat
Code Issues Proposed changes

Enable oslo_middleware proxy header parsing 

Heat has moved to using oslo_middleware for the http proxy header
parsing, however the default is to not parse the headers.  When
the external protocol differs from the internal protocol this
parsing is required in order for heat to work properly since it
will return 302 redirects to the client during some operations
(such as delete stack).

An example of this is when using haproxy with https configured
for the external protocol and http for the internal protocol.
If the oslo_middleware does not parse the headers, then any
302 redirects would specify a url with http rather than
correctly specifying https and the heat client would fail to
connect on the redirect url.

Change-Id: I0a331a0e766a77c8c8fed3fd22f0b36f2a5a9e5a
Closes-bug: #1654874
This commit is contained in:
Kyle L. Henderson 2017-01-09 09:39:45 -06:00
parent 52f2b3c4b8
commit 4033a0f854
1 changed files with 5 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
templates/heat.conf.j2
View File

@ -66,6 +66,11 @@ bind_port = {{ heat_watch_port }}
[oslo_messaging_rabbit]
rabbit_use_ssl = {{ rabbitmq_use_ssl }}
{% if heat_service_publicuri_proto != heat_service_internaluri_proto %}
[oslo_middleware]
enable_proxy_headers_parsing = True
{% endif %}
# Ceilometer options
{% if heat_ceilometer_enabled %}
[oslo_messaging_notifications]