XML

Word

Printable

Epic Name:
TLS Everywhere in the horizon operator
Story Points:
5
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Parent Link:
OSPRH-450TLS-everywhere
Color Status:
Not Selected
Dev Approval:
Committed
Docs Approval:
No Docs Impact
Epic Status:
To Do
Feature Link:
OSPRH-450 - TLS-everywhere
Fixed in Build:
horizon-operator-bundle-container-1.0.0-15
PM Approval:
Committed
QE Approval:
Committed
Hierarchy Progress Bar:

0% To Do, 0% In Progress, 100% Done
Release Note Text:

Hide
.TLS everywhere in RHOSO Dashboard Operator

With this update, the RHOSO Dashboard (horizon) Operator automatically configures TLS-related configuration settings.

These settings include certificates and response headers when appropriate, including the secure cookies and HSTS headers for serving over HTTPS.

Show
.TLS everywhere in RHOSO Dashboard Operator With this update, the RHOSO Dashboard (horizon) Operator automatically configures TLS-related configuration settings. These settings include certificates and response headers when appropriate, including the secure cookies and HSTS headers for serving over HTTPS.
Release Note Type:
Enhancement
Release Note Status:
Done
Test Coverage:

Regression Only
Intelligence Requested:
Market:
Errata Link:
https://errata.engineering.redhat.com/advisory/135531

Definition of Done (for development)

By implementing <configuration>, a RHOSO 18 deployment is stood up with Horizon correctly configured to provide client-side TLS connectivity, and connect to the back-end via TLS
On the client side, all the response headers are configured for maximum security, while still allowing the application to run correctly.
Patches proposed and merged into horizon-operator (not necessarily into openstack-operator)
Tests developed and implemented to validate the presence of the headers

Acceptance Criteria (for validation)

links to

RHBA-2024:135531 OpenStack Operators