opendev/system-config
Code Issues Proposed changes
72a0ad6d19
system-config/testinfra
History
Jeremy Stanley 49643313d7 Redirect all Mailman sites from HTTP to HTTPS 
For the past six months, all our mailing list sites have supported
HTTPS without incident. The main downside to the current
implementation is that Mailman itself writes some URLs with an
explicit scheme, causing people submitting forms from pages served
over HTTPS to get warnings because the forms are posting to plain
HTTP URLs for the same site. In order to correct this, we need to
tell Mailman to put https:// instead of http:// into these, but
doing so essentially eliminates any reason for us to continue
serving content over plain HTTP anyway.

Configure the default URL scheme of all our Mailman sites to use
HTTPS now, and set up permanent redirects from HTTP to HTTPS, per
the examples in the project's documentation:

https://wiki.list.org/DOC/4.27%20Securing%20Mailman%27s%20web%20GUI%20by%20using%20Secure%20HTTP-SSL%20%28HTTPS%29

Also update our testinfra functions to validate the blanket
redirects and perform all other testing over HTTPS.

Once this merges, the fix_url script will need to be run manually
against all lists for the current sites, as noted in that document.

Change-Id: I366bc915685fb47ef723f29d16211a2550e02e34
2022-07-01 19:16:00 +00:00
..
conftest.py More yaml.safe_load() in testinfra/conftest.py 2021-10-13 21:58:41 +00:00
test_adns.py Add DNSSEC configuration for gating.dev 2021-07-22 09:36:17 -07:00
test_base.py Manage 10periodic and 20auto-upgrades together 2022-01-27 09:17:26 -08:00
test_borg_backups.py borg-backup-server: run a weekly backup verification 2021-02-11 00:43:16 +00:00
test_bridge.py Update ARA 2021-06-01 09:38:32 +10:00
test_codesearch.py hound: enable detect-ref 2022-02-25 17:27:35 +11:00
test_eavesdrop.py ptgbot: rename site to ptg.opendev.org 2021-10-07 09:43:39 +11:00
test_etherpad.py etherpad: fix robots.txt 2020-11-20 19:13:37 +11:00
test_gerrit.py Block access to Gitiles 2022-02-18 21:39:27 +00:00
test_gitea_lb.py Install docker-compose from pypi 2020-04-16 12:08:00 -07:00
test_gitea.py gitea: set custom avatars for orgs 2022-03-18 11:06:09 +11:00
test_grafana.py testinfra: refactor screenshot taking 2021-09-07 12:54:26 +10:00
test_graphite.py graphite: fix xFilesFactor 2022-06-28 18:41:17 +10:00
test_keycloak.py Correct keycloak proxy config 2021-12-04 10:49:11 -08:00
test_letsencrypt.py letsencrypt test: fix email match 2020-08-25 14:42:54 +10:00
test_lists_k_i.py Redirect all Mailman sites from HTTP to HTTPS 2022-07-01 19:16:00 +00:00
test_lists_o_o.py Redirect all Mailman sites from HTTP to HTTPS 2022-07-01 19:16:00 +00:00
test_meetpad.py Use our jitsi-meet image for meetpad 2020-03-27 09:43:41 -07:00
test_mirror-update.py Enable mirroring of 9-stream 2021-11-15 17:54:54 +11:00
test_mirror.py Cache Ansible Galaxy on CI mirror servers 2021-11-22 18:49:58 +00:00
test_nodepool.py Add new opendev.org nodepool launchers 2021-03-16 15:21:58 -07:00
test_ns.py Configure opendev nameservers using ansible 2018-11-02 13:49:38 -07:00
test_paste.py lodgeit: switch pastes to be private by default 2022-02-08 11:45:26 +11:00
test_refstack.py refstack: Edit URL of public RefStackAPI 2021-03-10 14:09:20 +11:00
test_registry.py Run a docker registry for CI 2019-02-01 10:12:51 -08:00
test_static.py test_static: fix StarlingX match 2021-06-07 14:47:05 +10:00
test_zookeeper.py Add firewall behavior assertions to testinfra testing 2021-12-15 16:36:45 -08:00
test_zuul_executor.py Remove gearman from Zuul 2022-02-01 13:52:47 -08:00
test_zuul_lb.py Add Zuul load balancer 2022-02-10 13:24:42 -08:00
test_zuul_merger.py Remove gearman from Zuul 2022-02-01 13:52:47 -08:00
test_zuul_preview.py Run zuul-preview 2019-02-25 13:14:51 -08:00
test_zuul_scheduler.py Remove gearman from Zuul 2022-02-01 13:52:47 -08:00
util.py Add firewall behavior assertions to testinfra testing 2021-12-15 16:36:45 -08:00