1746966 – downloads route in openshift-console project should be edge/Redirect

Bug 1746966 - downloads route in openshift-console project should be edge/Redirect

Summary: downloads route in openshift-console project should be edge/Redirect

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	OpenShift Container Platform
Classification:	Red Hat
Component:	Management Console
Sub Component:
Version:	4.1.z
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	low
Target Milestone:	---
Target Release:	4.2.0
Assignee:	W. Trevor King
QA Contact:	Yadan Pei
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2019-08-29 15:54 UTC by Wolfgang Kulhanek
Modified:	2019-10-16 06:39 UTC (History)
CC List:	5 users (show)
Fixed In Version:
Doc Type:	If docs needed, set a value
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-10-16 06:38:50 UTC
Target Upstream Version:
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Github	openshift console-operator pull 283	0	None	closed	Bug 1746966: manifests/07-downloads-route: Set redirect termination	2020-07-20 10:31:05 UTC
Red Hat Product Errata	RHBA-2019:2922	0	None	None	None	2019-10-16 06:39:04 UTC

Description Wolfgang Kulhanek 2019-08-29 15:54:34 UTC

Description of problem:
The Web Console route uses reencrypt/Redirect as the TLS Termination. The downloads route however only uses edge. Which requires users to type https in front of the route.

Would it be possible to make every route in OCP that requires https a "redirect" route, please?

Version-Release number of selected component (if applicable):
4.1.x, 4.2.x

The other routes already have Redirect:

[ec2-user@clientvm 0 ~]$ oc get route -A
NAMESPACE                  NAME                HOST/PORT                                                                              PATH   SERVICES            PORT       TERMINATION            WILDCARD
openshift-authentication   oauth-openshift     oauth-openshift.apps.cluster-common.common.events.opentlc.com                                 oauth-openshift     6443       passthrough/Redirect   None
openshift-console          console             console-openshift-console.apps.cluster-common.common.events.opentlc.com                       console             https      reencrypt/Redirect     None
openshift-console          downloads           downloads-openshift-console.apps.cluster-common.common.events.opentlc.com                     downloads           http       edge                   None
openshift-monitoring       alertmanager-main   alertmanager-main-openshift-monitoring.apps.cluster-common.common.events.opentlc.com          alertmanager-main   web        reencrypt/Redirect     None
openshift-monitoring       grafana             grafana-openshift-monitoring.apps.cluster-common.common.events.opentlc.com                    grafana             https      reencrypt/Redirect     None
openshift-monitoring       prometheus-k8s      prometheus-k8s-openshift-monitoring.apps.cluster-common.common.events.opentlc.com             prometheus-k8s      web        reencrypt/Redirect     None

Comment 2 XiaochuanWang 2019-09-04 02:00:43 UTC

Now the downloads route is edge/Redirect and manually browsing to http url will routes to https.

Every route is Redirect now:

$ oc get route -A
NAMESPACE                  NAME                HOST/PORT                                                                                PATH   SERVICES            PORT    TERMINATION            WILDCARD
openshift-authentication   oauth-openshift     oauth-openshift.apps.qe-ui-09040831.qe.devcluster.openshift.com                                 oauth-openshift     6443    passthrough/Redirect   None
openshift-console          console             console-openshift-console.apps.qe-ui-09040831.qe.devcluster.openshift.com                       console             https   reencrypt/Redirect     None
openshift-console          downloads           downloads-openshift-console.apps.qe-ui-09040831.qe.devcluster.openshift.com                     downloads           http    edge/Redirect          None
openshift-monitoring       alertmanager-main   alertmanager-main-openshift-monitoring.apps.qe-ui-09040831.qe.devcluster.openshift.com          alertmanager-main   web     reencrypt/Redirect     None
openshift-monitoring       grafana             grafana-openshift-monitoring.apps.qe-ui-09040831.qe.devcluster.openshift.com                    grafana             https   reencrypt/Redirect     None
openshift-monitoring       prometheus-k8s      prometheus-k8s-openshift-monitoring.apps.qe-ui-09040831.qe.devcluster.openshift.com             prometheus-k8s      web     reencrypt/Redirect     None

Verified on 4.2.0-0.nightly-2019-09-03-102130

Comment 3 errata-xmlrpc 2019-10-16 06:38:50 UTC

Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2019:2922

Note You need to log in before you can comment on or make changes to this bug.