Project

General

Profile

Actions
Copy link

Bug #30059

closed

Add apache config for protected content with certguard

Added by Samir Jha over 4 years ago. Updated over 4 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Samir Jha
Category:
-
Target version:
Foreman - 2.1.0
Difficulty:
Triaged:
No
Bugzilla link:
Pull request:
https://github.com/theforeman/puppet-foreman_proxy_content/pull/263, https://github.com/theforeman/puppet-pulpcore/pull/99
Fixed in Releases:
Foreman - 2.1.0
Found in Releases:
Red Hat JIRA:

Description

We need to be able to pass cert headers to content guard to authenticate protected content requests.
The conf for that looks like:

ProxyPass /pulp/repos http://127.0.0.1:24816/pulp/content
ProxyPassReverse /pulp/repo http://127.0.0.1:24816/pulp/content

ProxyPass /pulp/content http://127.0.0.1:24816/pulp/content
ProxyPassReverse /pulp/content http://127.0.0.1:24816/pulp/content

<Location /pulp/repos>
RequestHeader unset X-CLIENT-CERT
RequestHeader set X-CLIENT-CERT "%{SSL_CLIENT_CERT}s" 
</Location>

<Location /pulp/isos>
RequestHeader unset X-CLIENT-CERT
RequestHeader set X-CLIENT-CERT "%{SSL_CLIENT_CERT}s" 
</Location>

<Location /pulp/content>
RequestHeader unset X-CLIENT-CERT
RequestHeader set X-CLIENT-CERT "%{SSL_CLIENT_CERT}s" 
</Location>

Related issues 1 (0 open1 closed)

Related to Installer - Bug #30133: Install python3-subscription-manager-rhsm package to use for rhsm certguardClosedSamir JhaActions
Actions
Copy link

Also available in: Atom PDF