Description of problem: Requests using sse encryption are rejected if they aren't received over an ssl connection - but this does not account for cases where a proxy is performing ssl termination. When rgw_crypt_require_ssl is enabled (as by default), the 'Forwarded' and 'X-Forwarded-Proto' headers should be consulted when determining whether the connection is secure. Additional info: http://tracker.ceph.com/issues/27221
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2019:0020