In CentOS 8.x and Fedora, we expect to have python3 package, while we
expect to have python2 in 7.x .
Fix unit tests to expect the correct version according to os major
version.
Change-Id: I298706690ee73db76678653841514de120c61e27
"DROPDOWN_MAX_ITEMS" horizon parameter was hardcoded in a ruby
template. Hence, it was not possible to manage it using heat.
This fix will allow user to manage "DROPDOWN_MAX_ITEMS" from
heat template.
Change-Id: I121a4ad2070cfef173c572a3d25788abbbf16989
Closes-Bug: #1813786
Adds the access_log_format parameter that can be used to set
the log format that is used in the vhosts that puppetlabs-apache
manages.
Adds the same parameter to the init class to make sure that you
can set it when managing apache from there and not including the
wsgi::apache class manually.
The default value of the parameter is the same as enforced in other
modules that has the access_log_format, which is false. That is the
default that the puppetlabs-apache module has.
Change-Id: Ie8ac84c6231ad55c5974a95b50238f0d006b6336
A (long) time ago keystone-bootstrap changed the
default member role that is created to member from
the legacy _member_ role.
This changes the default value in horizon to conform
with what is the actual default when bootstrapping
keystone.
Deployments that might still be using _member_ should
set this explicitly.
Change-Id: I8c18b585c71817ec7c5450c425e2ec7bc9a83f18
Used to control the title of the web pages
that horizon renders. Default value is set
to undef which means this option will not be
added to the configuration file and the horizon
default will be used.
If specified it will add the SITE_BRANDING option
to the local_settings file.
Change-Id: I683341f4f948fb9d639a35ce81a66959fe699962
Adds a new parameter named manage_memcache_package that
can be used to set if we should install the python memcache
library if memcache caching is enabled.
Change-Id: I924f837afc756817c202637b1b7db83c125df1d8
The Horizon project has changed the old django.wsgi entrypoint to the
wsgi.py file in the openstack_dashboard module.
The following can be seen in the horizon logs:
WARNING:root:Use of this 'djano.wsgi' file has been deprecated since the
Rocky release in favor of 'wsgi.py' in the 'openstack_dashboard' module.
This file is a legacy naming from before Django 1.4 and an importable
'wsgi.py' is now the default. This file will be removed in the T release
cycle.
Change-Id: Iee2b3e78768dd55d5cd1629d64c9d2ff9d0d4b93
The wsgi_processes and wsgi_threads needs to be configureable
from the horizon init class and then passed to horizon::wsgi::apache.
Change-Id: Ic428214d7c84d33272becdb3675252318e8fd1bd
Due to Python's GIL [1], we can't use multiple threads for running
OpenStack services without a performance penalty, since the execution
ends up serialized, which defeats the purpose.
Instead, we should use several processes, since this approach doesn't
have this limitation.
See the same kind of change here [2]
[1] https://wiki.python.org/moin/GlobalInterpreterLock
[2] https://review.openstack.org/#/c/505192/
Change-Id: I9c1ef8991d63b18a0ec106a05576b74ab457a2a0
Fixes a bug where having listen_ssl and ssl_redirect
set to true did not redirect http to https if your
root_url was empty or '/'.
This now forces redirection from http to https no
matter what your root_url is if listen_ssl and ssl_redirect
is set to true.
This also cleans up all apache::wsgi::apache testing and fixes
the structure so it doesn't enforce some context tests only for
the SSL enabled context but for everything.
Change-Id: I53a9107a33e9afffc5d00884c66c073e77c59237
If you want to use horizon with a different cacheing backend you
may run into problems. E.g. with redis it expects a database after
the port.
So introducing a new parameter which allows any string as LOCATION
solves this problem and maybe a couple of others.
Change-Id: Ida54599049f69573d27f477c395f14ae0ec26c3c
Switch from python-memcache to python3-memcache for Debian.
Also uses openstack-dashboard-apache instead of simply
openstack-dashboard (ie: this package contains the Apache
config).
Change-Id: I9c316dd6b3abb758d73760f17b88a393776a873b
These parameters has been deprecated for
more than two years.
Let's remove them and add release notes.
Change-Id: I229f49ac4ce02e0b1ddbd0a2f111739ce3059f37
Closes-Bug: 1767114
Adds support to override the http and/or https
ports that is passed down to the horizon::wsgi::apache
class. No default values has been changed.
Change-Id: I57fd5f3a433c6e123aa0f531630941fabf6ea721
Closes-Bug: 1210719
When settings the root_url to a slash the
paths in the local_settings.py and apache config
will be wrong. This patch fixes that issue.
Change-Id: Ib64b22bb88b2827ea4be2eb8356aa404984ee0ba
Closes-Bug: 1651720
Adds a new Puppet parameter "horizon_upload_mode" which goes into
the local_settings.py configuration file and allows to change
the parameter "HORIZON_IMAGES_UPLOAD_MODE"
to one of "legacy", "off" or "direct" (default is "legacy").
Change-Id: I2e36227d318dd74267ad23f14595481b379cbbd6
Closes-Bug: 1738814
In order to see all the processes named correctly based
on their origins we should set display-name so all the WSGI
processes are named difrerently from the Apache ones.
Change-Id: I123530014c973e7312a18e384a2c0159842bf228
Closes-bug: #1726841
Horizon has a global override mechanism available to perform
customizations. This change adds customization_module key
to HORIZON_CONFIG dictionary in local_settings.py. The
corresponding template file is also modified to configure the
parameter. Spec tests are added to test the configuration.
Change-Id: Id204b60b2676f49713fb6ce7eede6200221f7163
Closes-Bug: #1722653
New parameter accepts a hash value to configure
the LAUNCH_INSTANCE_DEFAULTS options in horizon
configuration.
Closes-Bug: #1721774
Change-Id: I778b3dc076d611d40205edbe0982141a815e1830
Horizon now has the option of selecting various defaults for the
create image panel. This patch allows configuring those options.
Change-Id: I01d9fc44d957394acc4243f3ee34e6e50eec0bdf
This allows the vhost to use the globally set CA file (in ssl.conf) if
present. Or one might just not need the CA to be set (no TLS
authentication).
Change-Id: Iba1aea34e72a0138120fa7bcb7267f73e37bf0ce
Closes-Bug: #1711280
Added in "WSGIApplicationGroup %{GLOBAL}" to fix an issue
where horizon will have ssl handshake issues with various
SSL openstack endpoints.
Change-Id: Idd10380f1b6e6ef0ee4a4cb84317aa12131b77c4
Closes-Bug: #1700176
Uncomments the `OPENSTACK_HEAT_STACK` dict and allows to
set `enable_user_pass` in the `local_settings.py.erb`
template
Change-Id: I97874af257a7cbb3eea862645952f6000e3fc3ce
Closes-Bug: #1676366
When root_url is empty, an incorrect rewrite rule will be
created at vhosts config file causing httpd failure.
In order not to create any rule when root_url is empty,
the value should be ignored inside redirectmatch parameter
Change-Id: Idd4ac6a271b4c8d8e53ab27c68abd821a3aa0249
Closes-bug: #1665380
DISALLOW_IFRAME_EMBED can be used to prevent Horizon from being embedded
within an iframe. Legacy browsers are still vulnerable to a Cross-Frame
Scripting (XFS) vulnerability, so this option allows extra security hardening
where iframes are not used in deployment
Change-Id: I5c540e552efe738bdec8598f9257fa22ae651a76
Related-Bug: #1641882
This is used to tell Django to take into account the X-Forwarded-Proto
header. It is disabled by default as it should only be enabled if one
is running horizon behind a proxy.
Change-Id: Ifed7d4c3409419c01c5b20c707221c1fc76ea09e
The ensure_packages resource forces ensure to present yielding
duplicate definition errors if we override default Package ensure
to latest. We should solve this by using ensure_resources which
does not enforce this.
Change-Id: I1e2ba2b4a8ab31c925bf31ac1838999fc37b268f
Closes-Bug: #1644906
Resolves: rhbz#1392583