openstack/kolla-ansible
Code Issues Proposed changes

Fix secure_proxy_ssl_header option

Browse Source 
Option "secure_proxy_ssl_header" from group "DEFAULT" is deprecated
in Keystone.

see
https://docs.openstack.org/ocata/config-reference/identity/samples/keystone.conf.html

Change-Id: I390969fce5b592c0267399969abc54e5caffbfc8
Closes-Bug: #1675982
This commit is contained in:
shaofeng_cheng
2017-03-30 15:49:51 +08:00
parent 04ebda9e44
commit 83fae8c8f9
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
ansible/roles/keystone/templates/keystone.conf.j2
View File

@@ -9,7 +9,8 @@ transport_url = rabbit://{% for host in groups['rabbitmq'] %}{{ rabbitmq_user }}
log_file = /var/log/kolla/keystone/keystone.log log_file = /var/log/kolla/keystone/keystone.log
use_stderr = True use_stderr = True
secure_proxy_ssl_header = HTTP_X_FORWARDED_PROTO [oslo_middleware]
enable_proxy_headers_parsing = True
[database] [database]
connection = mysql+pymysql://{{ keystone_database_user }}:{{ keystone_database_password }}@{{ keystone_database_address }}/{{ keystone_database_name }} connection = mysql+pymysql://{{ keystone_database_user }}:{{ keystone_database_password }}@{{ keystone_database_address }}/{{ keystone_database_name }}