Description of problem: for audit compliance it is needed to change the SECRET_KEY parameter on /etc/openstack-dashboard/local_settings from 21 to 64 characters. Version-Release number of selected component (if applicable): OSP 8 AFAIK secret must be changed /usr/share/openstack-dashboard/openstack_dashboard/local/local_settings.py It also required to know the implication and the impact this changes may have on a production system.
/etc/openstack-dashboard/local_settings and /usr/share/openstack-dashboard/openstack_dashboard/local/local_settings.py are the same file (one is a symlink to the other). Change of SECRET_KEY will invalidate all active user sessions and will require the users to re-login into Horizon. Is there anything else you need?
The SECRET_KEY setting can be overridden in Director as the HorizonSecret parameter.
Verified in: openstack-tripleo-heat-templates-9.0.1-0.20181013060879.el7ost.noarch
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHEA-2019:0045