Translated message

A translation of this page exists in English.

Heat API は SSL ターミネーターの後ろで対処できない

Solution In Progress - Updated -

Issue

  • Heat API は、SSL 終端として振る舞う HAProxy の背後にあります。HAProxy と Heat API との接続は SSL ではありません。

  • Heat クライアントを使用し、API は非 SSL 参照をクライアントに返します。

  • これは既知の問題です。Heat SSLMiddleware コードを利用するとこの問題は解決できます。

   New middleware to handle SSL termination proxies

    The Heat API doesn't behave properly if it is behind an SSL termination
     proxy.If this is the case, the HTTP redirections and the links
     returned in the REST response bodies are build using http protocol
     instead of https.

    To handle this situation, a new middleware was added.The purpose of the
     SSLMiddleware is to update the wsgi.url_scheme environment variable of
     the request with the value contained in an HTTP header that can be
     configured in heat.conf (by default:'X-Forwarded-Proto')

Environment

  • Red Hat OpenStack 6.0 (RHOS)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content