Hide Forgot
Created attachment 1141243 [details] haproxy.cfg Description of problem: In an overcloud dpeloyment with SSL + IPv6 + external loadbalancer Horizon redirects https to non-https. Version-Release number of selected component (if applicable): openstack-tripleo-heat-templates-0.8.12-2.el7ost.noarch How reproducible: Steps to Reproduce: 1. Deploy overcloud export THT=/usr/share/openstack-tripleo-heat-templates openstack overcloud deploy --templates $THT \ -e $THT/environments/network-isolation-v6.yaml \ -e ~/templates/network-environment-v6.yaml \ -e ~/templates/firstboot-environment.yaml \ -e ~/templates/enable-tls.yaml \ -e ~/templates/inject-trust-anchor.yaml \ -e $THT/environments/external-loadbalancer-vip-v6.yaml \ -e ~/templates/external-lb-v6.yaml \ -e $THT/environments/storage-environment.yaml \ --control-scale 3 \ --compute-scale 1 \ --ceph-storage-scale 2\ --ntp-server clock.redhat.com \ --libvirt-type qemu 2. Try to reach Horizon on the public VIP: curl https://[2001:db8:fd00:1000::5] Actual results: <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>301 Moved Permanently</title> </head><body> <h1>Moved Permanently</h1> <p>The document has moved <a href="http://[2001:db8:fd00:1000::5]/dashboard">here</a>.</p> </body></html> Expected results: The redirect is done to https://[2001:db8:fd00:1000::5]/dashboard Additional info: Attaching the enable-tls.yaml file and the haproxy configuration that is set on the external loadbalancer. If there's any other info I should provide please let me know. Thanks!
Created attachment 1141244 [details] enable-tls.yaml
Closing this as not a bug. I was missing the following directive in the horizon section of haproxy.cfg on the external loadbalancer: rsprep ^Location:\ http://(.*) Location:\ https://\1