Merge "Simplify use of secure_proxy_ssl_header"

2016-03-02 17:08:31 +00:00 · 2016-03-02 17:08:31 +00:00 · b2b75412f1
commit b2b75412f1
parent 8358ab1e93 30ef39d4b5
2 changed files with 2 additions and 3 deletions
--- a/keystone/common/config.py
+++ b/keystone/common/config.py
@ -133,7 +133,7 @@ FILE_OPTIONS = {
                         'with an HTTP 403 Forbidden error. If set to false, '
                         'passwords are automatically truncated to the '
                         'maximum length.'),
-        cfg.StrOpt('secure_proxy_ssl_header', default="HTTP_X_FORWARDED_PROTO",
+        cfg.StrOpt('secure_proxy_ssl_header', default='HTTP_X_FORWARDED_PROTO',
                   help='The HTTP header used to determine the scheme for the '
                        'original request, even if it was removed by an SSL '
                        'terminating proxy.'),
--- a/keystone/common/wsgi.py
+++ b/keystone/common/wsgi.py
@ -210,8 +210,7 @@ class Application(BaseApplication):

        context['headers'] = dict(req.headers.items())
        context['path'] = req.environ['PATH_INFO']
-        scheme = (None if not CONF.secure_proxy_ssl_header
-                  else req.environ.get(CONF.secure_proxy_ssl_header))
+        scheme = req.environ.get(CONF.secure_proxy_ssl_header)
        if scheme:
            # NOTE(andrey-mp): "wsgi.url_scheme" contains the protocol used
            # before the proxy removed it ('https' usually). So if