Project

General

Profile

Refactor #34234

Do not warn on HTTP connection from Smart proxy

Added by Ondřej Ezr 11 months ago. Updated 11 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Smart Proxy
Target version:
Difficulty:
Triaged:
No
Bugzilla link:
Fixed in Releases:
Found in Releases:
Red Hat JIRA:

Description

When ssl is enabled, pure HTTP connections on smart-proxy enabled endpoints are allowed, just to throw an warning about such behaviour.
To support this further in Rails 6.1 would be big effort (because of #30122) with very little benefit.


Related issues

Related to Foreman - Refactor #30122: Remove usage of force_ssl in controllerClosed

Associated revisions

Revision a96fc62a (diff)
Added by Ondřej Ezr 11 months ago

Fixes #34234 - do not allow HTTP on SmartProxy Auth

SmartProxyAuth enabled on its endpoints HTTP to log a message, that ssl is required.
This in not necessary and it is hard to keep for the future as Rails 6.1 will make that harder.

There is not too much benefit from this, so it's better to drop it.

History

#1 Updated by Ondřej Ezr 11 months ago

  • Related to Refactor #30122: Remove usage of force_ssl in controller added

#2 Updated by The Foreman Bot 11 months ago

  • Assignee set to Ondřej Ezr
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/9020 added

#3 Updated by The Foreman Bot 11 months ago

  • Fixed in Releases 3.2.0 added

#4 Updated by Ondřej Ezr 11 months ago

  • Status changed from Ready For Testing to Closed

Also available in: Atom PDF