Change value of SECRET_KEY

Currently SECRET_KEY points to { install_lib_dir }}/openstack_dashboard/local/.secret_key_store however this directory is not writable by www-data:www-data and attempting to load horizon results in a LockFailed exception being raised. Rather than making { install_lib_dir }}/openstack_dashboard/local/ writable by www-data:www-data, we create /var/lib/horizon and point SECRET_KEY to /var/lib/horizon/.secret_key_stone.
2014-10-22 09:39:54 +01:00 · 2014-10-22 09:39:54 +01:00 · 75b4bbf4fc
commit 75b4bbf4fc
parent 039834337a
2 changed files with 2 additions and 1 deletions
--- a/rpc_deployment/inventory/group_vars/horizon.yml
+++ b/rpc_deployment/inventory/group_vars/horizon.yml
@ -50,6 +50,7 @@ install_lib_dir: /usr/local/lib/python2.7/dist-packages

 container_directories:
  - "/etc/horizon"
+  - "/var/lib/horizon"

 horizon_fqdn: "{{ external_vip_address }}"
 horizon_server_name: "{{ container_name }}"
--- a/rpc_deployment/roles/horizon_common/templates/local_settings.py
+++ b/rpc_deployment/roles/horizon_common/templates/local_settings.py
@ -95,7 +95,7 @@ LOCAL_PATH = os.path.dirname(os.path.abspath(__file__))
 # requests routed to the same dashboard instance or you set the same SECRET_KEY
 # for all of them.
 from horizon.utils import secret_key
-SECRET_KEY = secret_key.generate_or_read_from_file(os.path.join(LOCAL_PATH, '.secret_key_store'))
+SECRET_KEY = secret_key.generate_or_read_from_file('/var/lib/horizon/.secret_key_store')

 # We recommend you use memcached for development; otherwise after every reload
 # of the django development server, you will have to login again. To use