Code Review / apex-puppet-tripleo.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 5f915a8) | patch
Always override X-Forwarded-Proto header for Heat
authorJuan Antonio Osorio Robles <jaosorior@redhat.com>
Tue, 1 Mar 2016 07:34:16 +0000 (09:34 +0200)
committerJuan Antonio Osorio Robles <jaosorior@redhat.com>
Tue, 1 Mar 2016 07:34:16 +0000 (09:34 +0200)
commit3aefa43072d9453412376a9bdedd949e03c926a5
tree71341d4e23d52a54b34ba4783e5c3f48052e777atree | snapshot
parent5f915a88e7c4eec6e6a0341808f0fbc4a4b1a161commit | diff
Always override X-Forwarded-Proto header for Heat

Heat has the ssl middleware to handle the X-Forwarded-Proto header by
default. We override this header when SSL is enabled because we need
to, but overriding it even when we won't be terminating SSL will
prevent some attacks using this header.

Change-Id: I0b2c61cd4f47c8c08a84402af310983af752d3f2
manifests/loadbalancer.pp diff | blob | history