openstack/nova
Code Issues Proposed changes
Files
890e2d320e8e8e7b501af8e21cc6b751fb204d04
nova/nova
History
melanie witt 890e2d320e Use X-Forwarded-Proto as origin protocol if present 
When using a haproxy with SSL termination to provide secure console
connections, haproxy will change the Origin header scheme to 'http'
and add the 'X-Forwarded-Proto: https' header. This causes a failure
in the Nova console proxy code which verifies that the Origin header
scheme matches the access_url scheme for the connection, because the
Origin header coming from haproxy is 'http' while the access_url
scheme is 'https' or 'wss'.

This looks for the X-Forwarded-Proto header and uses its scheme for
the verification instead, if it is present.

Closes-Bug: #1788180

Change-Id: I43401dc8368853654bf443273a0a1b5b9b63e3f0
2019-01-16 00:28:53 +00:00
..
api
Merge "Allow run metadata api per cell"
2019-01-15 02:20:14 +00:00
cells
cmd
Remove "API Service Version" upgrade check
2018-12-19 20:41:04 -05:00
common
compute
Change to debug repetitive info messages
2019-01-02 23:28:57 +01:00
conductor
Merge "Remove legacy RequestSpec compat from conductor rebuild_instance"
2018-12-20 17:43:45 +00:00
conf
Merge "Allow run metadata api per cell"
2019-01-15 02:20:14 +00:00
console
Use X-Forwarded-Proto as origin protocol if present
2019-01-16 00:28:53 +00:00
consoleauth
Fix stacktraces with redis caching backend
2018-09-27 13:15:11 -04:00
db
Update mailinglist from dev to discuss
2018-12-05 09:44:35 +08:00
hacking
Add a hacking rule for deprecated assertion methods
2018-10-25 11:49:10 +09:00
image
Update mailinglist from dev to discuss
2018-12-05 09:44:35 +08:00
ipv6
keymgr
locale
Imported Translations from Zanata
2018-09-23 06:53:32 +00:00
network
Merge "Move some linux network helpers to use privsep."
2019-01-15 03:04:30 +00:00
notifications
Transform scheduler.select_destinations notification
2018-11-30 13:20:35 +01:00
objects
Merge "Exclude build request marker from server listing"
2018-12-20 04:12:35 +00:00
pci
policies
Merge "Allow ability for non admin users to use all filters on server list."
2018-09-23 05:17:23 +00:00
privsep
Merge "Move some linux network helpers to use privsep."
2019-01-15 03:04:30 +00:00
scheduler
Remove lock on SchedulerReportClient._create_client
2018-12-12 12:34:32 -05:00
servicegroup
Fix service list for disabled compute using MC driver
2018-08-14 14:11:22 +08:00
tests
Use X-Forwarded-Proto as origin protocol if present
2019-01-16 00:28:53 +00:00
virt
Merge "Move some linux network helpers to use privsep."
2019-01-15 03:04:30 +00:00
vnc
Deprecate the nova-xvpvncproxy service
2018-10-15 10:03:13 +01:00
volume
Make [cinder]/catalog_info no longer require a service_name
2018-11-28 18:33:30 -05:00
__init__.py
availability_zones.py
baserpc.py
block_device.py
Add microversion 2.67 to support volume_type
2018-10-12 02:57:58 -04:00
cache_utils.py
config.py
Configure placement DB context manager for nova-manage/status
2018-09-05 10:29:48 -04:00
context.py
Remove NovaException logging from scatter_gather_cells
2018-11-21 12:43:35 -05:00
crypto.py
debugger.py
exception_wrapper.py
Add full traceback to ExceptionPayload in versioned notifications
2018-06-19 16:46:46 +08:00
exception.py
Merge "Convert exception messages to strings"
2018-12-24 23:04:19 +00:00
filters.py
hooks.py
i18n.py
loadables.py
manager.py
policy.py
profiler.py
quota.py
Make _instances_cores_ram_count() be smart about cells
2018-11-13 03:35:33 -05:00
rc_fields.py
Add bandwidth related standard resource classes
2018-11-05 17:47:13 -05:00
rpc.py
Fix jsonutils.to_primitive UserWarning
2018-12-17 22:56:50 -05:00
safe_utils.py
service_auth.py
service.py
Move conductor wait_until_ready() delay before manager init
2018-08-31 12:50:10 -07:00
test.py
Use external placement in functional tests
2018-12-12 18:46:49 +00:00
utils.py
Merge "Fixed concurrent access to direct io test file"
2018-12-08 10:05:22 +00:00
version.py
weights.py
wsgi.py