Bug 1866006

Summary: [GSS] Prometheus and Alert Manager not working with https with configuration set to dashboard_protocol: https
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Gaurav Sitlani <gsitlani>
Component: Ceph-AnsibleAssignee: Guillaume Abrioux <gabrioux>
Status: CLOSED ERRATA QA Contact: Sunil Angadi <sangadi>
Severity: low Docs Contact: Aron Gunn <agunn>
Priority: low    
Version: 4.1CC: agunn, aschoen, ceph-eng-bugs, epuertat, gabrioux, gfidente, gmeno, lithomas, mmuench, nthomas, pcfe, sangadi, tserlin, vereddy, ykaul
Target Milestone: z2   
Target Release: 4.1   
Hardware: x86_64   
OS: Linux   
Whiteboard:
Fixed In Version: ceph-ansible-4.0.29-1.el8cp, ceph-ansible-4.0.29-1.el7cp Doc Type: Bug Fix
Doc Text:
.Using HTTPS breaks access to Prometheus and the alert manager Setting the `dashboard_protocol` option to `https` was causing the {storage-product} Dashboard to try and access the Prometheus API, which does not support TLS natively. With this release, Prometheus and the alert manager are force to use the HTTP protocol, when setting the `dashboard_protocol` option to `https`.
 Story Points: ---
Clone Of: Environment:
Last Closed: 2020-09-30 17:26:56 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1811582, 1760354, 1816167, 1856999    

Comment 4 Patrick C. F. Ernzer 2020-08-17 15:28:37 UTC 
*** Bug 1869099 has been marked as a duplicate of this bug. ***
Comment 10 Ernesto Puerta 2020-09-03 11:52:47 UTC 
Sunil, just grepped ceph-ansible code and it's only used for setting the GRAFANA_API_URL, so the URL used for the iframe-embedded dashboard matches the Fully Qualified Domain Name field defined in the HTTPS certificate. You can of course test that scenario.

Additionally, this allows you to define a hostname for Grafana server other than the default one that Ceph-ansible guesses (that may fix situations where the the default IP address for Grafana is not accessible for end-users, like OpenStack deployments).
Comment 17 errata-xmlrpc 2020-09-30 17:26:56 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Red Hat Ceph Storage 4.1 Bug Fix update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2020:4144