Horizon: Enable a few options for SSL

The SECURE_PROXY_SSL_HEADER option and some options to secure cookies are usually configured when ssl is enabled. This ensures these options are configured when SSL is enabled in Horizon. Change-Id: I8158f550574283df73729a3d552b4341075b42d9
2023-09-12 16:59:57 +09:00 · 2023-09-12 16:59:57 +09:00 · fcef63ea7b
commit fcef63ea7b
parent cb58abc4c9
1 changed files with 15 additions and 13 deletions
--- a/manifests/horizon.pp
+++ b/manifests/horizon.pp
@ -57,6 +57,8 @@ class openstack_integration::horizon (
    ssl_key                        => "/etc/openstack-dashboard/ssl/private/${facts['networking']['fqdn']}.pem",
    ssl_ca                         => $::openstack_integration::params::ca_bundle_cert_path,
    ssl_verify_client              => 'optional',
+    enable_secure_proxy_ssl_header => $::openstack_integration::config::ssl,
+    secure_cookies                 => $::openstack_integration::config::ssl,
    wsgi_processes                 => 2,
    keystone_url                   => $::openstack_integration::config::keystone_auth_uri,
    log_level                      => 'DEBUG',