Uploaded image for project: 'Red Hat 3scale API Management'
  1. Red Hat 3scale API Management
  2. THREESCALE-5752

After setting force_ssl to false in the admin-portal, users are not allowed to login

    XMLWordPrintable

Details

    • Bug
    • Resolution: Not a Bug
    • Major
    • None
    • 2.8 GA
    • System
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Not Started
    • Hide
      • Have set the force_ssl value to false in `/opt/system/config/settings.yml` by following the KCS article
      • Also updated the admin-portal OCP route to use HTTP.
      spec:
  host: 3scale-admin.{domain}
  to:
    kind: Service
    name: system-provider
    weight: 100
  port:
    targetPort: http
  tls:
    termination: edge
    insecureEdgeTerminationPolicy: Allow
  wildcardPolicy: None
      • Now try to login to http:// {admin-portal-domain}

        using a valid user.

      • The web browser will always gets redirected to login screen after you hit the Sign in button
      Show
      Have set the force_ssl value to false in `/opt/system/config/settings.yml` by following the KCS article Also updated the admin-portal OCP route to use HTTP. spec: host: 3scale-admin.{domain} to: kind: Service name: system-provider weight: 100 port: targetPort: http tls: termination: edge insecureEdgeTerminationPolicy: Allow wildcardPolicy: None Now try to login to http:// {admin-portal-domain} using a valid user. The web browser will always gets redirected to login screen after you hit the Sign in button

    Description

      • 3scale does not allow the admin-portal users to login using insecure (HTTP) admin-portal URL. After hitting the login button, users gets redirected to login screen even though the login details are correct.
      • The use case is that customers wants use SSL offloading on to an external load balancer.

      Attachments

        Issue Links

          relates to

          Feature Request - Feature requests from customers and/or users THREESCALE-5883 Make `force_ssl` and `secure_cookie` options configurable

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          links to

          Web Link KCS

          Activity

            People

              Unassigned Unassigned
              rhn-support-cabeywar Chamal Abeywardhana
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: