Back to bug 2056478

Who When What Removed Added
Red Hat One Jira (issues.redhat.com) 2022-02-21 10:55:58 UTC Link ID Red Hat Issue Tracker RHCEPH-3205
Red Hat One Jira (issues.redhat.com) 2022-02-21 10:55:59 UTC Link ID Red Hat Issue Tracker RHCSDASH-681
Ernesto Puerta 2022-02-22 19:53:29 UTC Link ID Github ceph/ceph/pull/45012
Status NEW POST
Ernesto Puerta 2022-04-06 11:57:55 UTC Target Release 5.2 6.0
Red Hat Bugzilla 2022-05-26 08:31:03 UTC CC ceph-qe-bugs
Nizamudeen 2022-07-18 06:04:20 UTC Status POST MODIFIED
CC nia
Ken Dreyer (Red Hat) 2022-08-15 21:06:23 UTC Fixed In Version ceph-17.2.3-1.el9cp
CC kdreyer
errata-xmlrpc 2022-08-15 21:13:25 UTC Status MODIFIED ON_QA
Sunil Angadi 2022-08-30 06:15:21 UTC Status ON_QA ASSIGNED
Eliska 2022-09-08 07:12:17 UTC CC ekristov, epuertat
Flags needinfo?(epuertat)
Ernesto Puerta 2022-09-12 10:14:29 UTC Flags needinfo?(epuertat)
Doc Type If docs needed, set a value Enhancement
Doc Text Feature:

Provide an info message for Ceph Dashboard users to troubleshoot issues with the embedded Grafana dashboards.

Reason:

When Grafana is deployed with self-signed TLS certificates, instead of certificates signed by a Certificate Authority, most browsers (e.g.: Chrome, Firefox) won't allow the embedded Grafana iframe to be displayed within the Ceph Dashboard.

This is a security limitation imposed by browsers themselves. Some browsers (like Firefox) still display a security warning ("Your connection is not secure"), but yet allow users to accept the exception and eventually load the embedded Grafana iframe. However, other browsers (e.g.: Chrome) silently fail and don't display any kind of error message, so users are not aware of the failure.

Result:

For the latter, a new notification will be displayed in the Ceph Dashboard: "If no embedded Grafana Dashboard appeared below, please follow this link to check if Grafana is reachable and there are no HTTPS certificate issues. You may need to reload this page after accepting any Browser certificate exceptions".

Users should follow the link provided, accept the security exception in the separate page, and then reload the Ceph Dashboard.
Eliska 2022-09-13 08:53:03 UTC Blocks 2126050
Eliska 2022-09-22 15:00:12 UTC Flags needinfo?(epuertat)
Nizamudeen 2022-09-23 06:06:09 UTC Flags needinfo?(sangadi)
Status ASSIGNED ON_QA
Sunil Angadi 2022-09-23 06:27:16 UTC Flags needinfo?(epuertat) needinfo?(sangadi)
Sunil Angadi 2022-09-23 06:34:27 UTC Status ON_QA VERIFIED
Eliska 2022-09-23 07:28:36 UTC Flags needinfo?(epuertat)
Doc Text Feature:

Provide an info message for Ceph Dashboard users to troubleshoot issues with the embedded Grafana dashboards.

Reason:

When Grafana is deployed with self-signed TLS certificates, instead of certificates signed by a Certificate Authority, most browsers (e.g.: Chrome, Firefox) won't allow the embedded Grafana iframe to be displayed within the Ceph Dashboard.

This is a security limitation imposed by browsers themselves. Some browsers (like Firefox) still display a security warning ("Your connection is not secure"), but yet allow users to accept the exception and eventually load the embedded Grafana iframe. However, other browsers (e.g.: Chrome) silently fail and don't display any kind of error message, so users are not aware of the failure.

Result:

For the latter, a new notification will be displayed in the Ceph Dashboard: "If no embedded Grafana Dashboard appeared below, please follow this link to check if Grafana is reachable and there are no HTTPS certificate issues. You may need to reload this page after accepting any Browser certificate exceptions".

Users should follow the link provided, accept the security exception in the separate page, and then reload the Ceph Dashboard. 		.A new information message is provided on Ceph Dashboard to troubleshoot issues with Grafana

When Grafana is deployed with self-signed TLS certificates instead of certificates signed by a Certificate Authority, most browsers, such as Chrome or Firefox, do not allow the embedded Grafana iframe to be displayed within the Ceph Dashboard.

This is a security limitation imposed by browsers themselves. Some browsers, like Firefox, still display a security warning: `Your connection is not secure`, but still allow users to accept the exception and load the embedded Grafana iframe. However, other browsers, for example Chrome, silently fail and do not display any kind of error message, therefore users are not aware of the failure.

With this release, a new notification is displayed on the Ceph Dashboard:

----
If no embedded Grafana Dashboard appeared below, please follow this link to check if Grafana is reachable and there are no HTTPS certificate issues. You may need to reload this page after accepting any Browser certificate exceptions.
----
Docs Contact asriram ekristov
Ernesto Puerta 2022-09-26 15:44:55 UTC Flags needinfo?(epuertat)
Red Hat Bugzilla 2022-12-31 19:54:16 UTC CC nia
Red Hat Bugzilla 2022-12-31 23:52:18 UTC Assignee epuertat nobody
CC epuertat
Red Hat Bugzilla 2023-01-01 06:03:38 UTC CC kdreyer
Red Hat Bugzilla 2023-01-01 08:41:04 UTC QA Contact sangadi
Alasdair Kergon 2023-01-04 04:40:10 UTC Assignee nobody epuertat
Alasdair Kergon 2023-01-04 04:48:00 UTC QA Contact sangadi
Alasdair Kergon 2023-01-04 05:03:42 UTC CC kdreyer
Alasdair Kergon 2023-01-04 05:20:55 UTC CC nia
Alasdair Kergon 2023-01-04 06:16:17 UTC CC epuertat
Red Hat Bugzilla 2023-01-09 08:29:30 UTC CC ceph-eng-bugs
Alasdair Kergon 2023-01-09 19:43:36 UTC CC ceph-eng-bugs
errata-xmlrpc 2023-03-20 18:37:29 UTC Status VERIFIED RELEASE_PENDING
errata-xmlrpc 2023-03-20 18:55:34 UTC Resolution --- ERRATA
Status RELEASE_PENDING CLOSED
Last Closed 2023-03-20 18:55:34 UTC
errata-xmlrpc 2023-03-20 18:56:03 UTC Link ID Red Hat Product Errata RHBA-2023:1360

Back to bug 2056478