CapsuleCommunication » History » Version 6
Eric Helms, 10/29/2014 08:49 AM
| 1 | 1 | Eric Helms | h1. Capsule - Server Communication via Proxy |
|---|---|---|---|
| 2 | |||
| 3 | All inbound and outbound Capsule communication should be routable through a proxy. This is the case where a Capsule cannot directly route it’s traffic to the server nor can the server directly reach the Capsule. If we allow only proxying Capsule content syncing from the Foreman/Katello and a user locks down a Capsule’s HTTP traffic, this could break other functionality of the Capsule See diagram below. |
||
| 4 | |||
| 5 | 2 | Eric Helms | h3. Related BZs: |
| 6 | 1 | Eric Helms | https://bugzilla.redhat.com/show_bug.cgi?id=1114083 |
| 7 | |||
| 8 | 5 | Eric Helms | !http://projects.theforeman.org/attachments/download/998/Capsule%20-%20Server%20Proxy%20(1).png! |
| 9 | 1 | Eric Helms | |
| 10 | 6 | Eric Helms | <img src="http://projects.theforeman.org/attachments/download/998/Capsule%20-%20Server%20Proxy%20(1).png"/> |
| 11 | |||
| 12 | 1 | Eric Helms | |
| 13 | h3. Capsule to Server |
||
| 14 | |||
| 15 | * Pulp node syncing content from the server |
||
| 16 | * Puppet master reporting |
||
| 17 | * Qpid traffic (if client communication is routed through the Capsule) |
||
| 18 | * Sub-man traffic being routed via reverse-proxy to the Capsule |
||
| 19 | |||
| 20 | h3. Server to Capsule |
||
| 21 | |||
| 22 | * Initial creation and discovery of the Capsule |
||
| 23 | * Feature refresh of the Capsule |
||
| 24 | * Qpid traffic (if client communication is routed through the Capsule) |
||
| 25 | |||
| 26 | h3. Requirements |
||
| 27 | |||
| 28 | # Capsules should support individual proxy configurations server side |
||
| 29 | # Capsule puppet masters should support routing traffic through an HTTP proxy |
||
| 30 | # Qpid should support routing traffic through a proxy on the Server or Capsule |
||
| 31 | # Capsule reverse proxy should support routing through an external HTTP proxy |