Loading...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Critical
Fix Version/s: rhos-18.0.0
Affects Version/s: None
Component/s: horizon-operator
Labels:
None

Epic Link:
TLS Everywhere in the horizon operator
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Ready:
False
Dev Approval:
?
Docs Approval:
?
Feature Link:
OSPRH-450 - TLS-everywhere
Fixed in Build:
horizon-operator-bundle-container-1.0.0-15
PM Approval:
?
QE Approval:
?
Intelligence Requested:
Market:

Severity:
Important

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Despite configuring Django to add the HSTS headers, it's not present in Horizon responses when accessed from the outside. It's possible that it is being removed by HAProxy.

We need to make sure HAProxy is configured either to pass those headers, or to add them itself.

account is impacted by

OSPRH-7383 Add HSTS Annotation to Horizon OpenShift Route

Closed

links to

openstack-k8s-operators/openstack-operator#819: Enable HSTS on OCP route

mentioned on

Merge request - Updated US source to: 1e23cab Merge pull request #819 from bshephar/horizon-hsts-headers

Merge request - Updated US source to: ee07591 Merge pull request #792 from dprince/ovn_update_order_edpm

Assignee:: Brendan Shephard

Reporter:: Radomir Dopieralski

Contributors:: Brendan Shephard

Team:: rhos-dfg-ui

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2024/05/29 12:22 PM

Updated:: 2024/06/24 1:53 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates

PagerDuty