Description of problem: The Web Console route uses reencrypt/Redirect as the TLS Termination. The downloads route however only uses edge. Which requires users to type https in front of the route. Would it be possible to make every route in OCP that requires https a "redirect" route, please? Version-Release number of selected component (if applicable): 4.1.x, 4.2.x The other routes already have Redirect: [ec2-user@clientvm 0 ~]$ oc get route -A NAMESPACE NAME HOST/PORT PATH SERVICES PORT TERMINATION WILDCARD openshift-authentication oauth-openshift oauth-openshift.apps.cluster-common.common.events.opentlc.com oauth-openshift 6443 passthrough/Redirect None openshift-console console console-openshift-console.apps.cluster-common.common.events.opentlc.com console https reencrypt/Redirect None openshift-console downloads downloads-openshift-console.apps.cluster-common.common.events.opentlc.com downloads http edge None openshift-monitoring alertmanager-main alertmanager-main-openshift-monitoring.apps.cluster-common.common.events.opentlc.com alertmanager-main web reencrypt/Redirect None openshift-monitoring grafana grafana-openshift-monitoring.apps.cluster-common.common.events.opentlc.com grafana https reencrypt/Redirect None openshift-monitoring prometheus-k8s prometheus-k8s-openshift-monitoring.apps.cluster-common.common.events.opentlc.com prometheus-k8s web reencrypt/Redirect None
Now the downloads route is edge/Redirect and manually browsing to http url will routes to https. Every route is Redirect now: $ oc get route -A NAMESPACE NAME HOST/PORT PATH SERVICES PORT TERMINATION WILDCARD openshift-authentication oauth-openshift oauth-openshift.apps.qe-ui-09040831.qe.devcluster.openshift.com oauth-openshift 6443 passthrough/Redirect None openshift-console console console-openshift-console.apps.qe-ui-09040831.qe.devcluster.openshift.com console https reencrypt/Redirect None openshift-console downloads downloads-openshift-console.apps.qe-ui-09040831.qe.devcluster.openshift.com downloads http edge/Redirect None openshift-monitoring alertmanager-main alertmanager-main-openshift-monitoring.apps.qe-ui-09040831.qe.devcluster.openshift.com alertmanager-main web reencrypt/Redirect None openshift-monitoring grafana grafana-openshift-monitoring.apps.qe-ui-09040831.qe.devcluster.openshift.com grafana https reencrypt/Redirect None openshift-monitoring prometheus-k8s prometheus-k8s-openshift-monitoring.apps.qe-ui-09040831.qe.devcluster.openshift.com prometheus-k8s web reencrypt/Redirect None Verified on 4.2.0-0.nightly-2019-09-03-102130
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2019:2922