Loading...

XML

Word

Printable

Type: Story
Resolution: Done
Priority: Undefined
Fix Version/s: rhos-18.0.0
Affects Version/s: None
Component/s: horizon-operator
Labels:
None

Story Points:
3
Epic Link:
TLS Everywhere in the horizon operator
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Dev Approval:
?
Docs Approval:
?
Feature Link:
OSPRH-450 - TLS-everywhere
PM Approval:
?
QE Approval:
?
Git Pull Request:
https://github.com/openstack-k8s-operators/horizon-operator/pull/313
Intelligence Requested:
Market:

Original story points:
3

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

We need to enable secure cookies, HSTS, etc. as it was enabled with tripleo.

In the previous release, the relevant code looked like this: https://github.com/openstack/puppet-horizon/blob/master/templates/local_settings.py.erb#L27-L54

We need similar settings with the horizon-operator.

The bugs related to HSTS in the previous release:

We will need to add something similar to the horizon-operator.

Django documentation: https://docs.djangoproject.com/en/3.2/topics/security/#ssl-https

Acceptance criteria:

horizon response headers contain the required hsts headers
the cookies are set as secure

Assignee:: Radomir Dopieralski

Reporter:: Radomir Dopieralski

Team:: rhos-dfg-ui

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2024/03/27 4:43 PM

Updated:: 2024/05/29 12:20 PM

Resolved:: 2024/05/29 12:20 PM