Horizon: Set SECURE_PROXY_ADDR_HEADER

Setting this to HTTP_X_FORWARDED_FOR will display the IP in X-Forwarded-For header instead of REMOTE_ADDR. This is to display client's IP. Change-Id: Ifab508f2c3e39de69e3b1423b6aab57e333fc37e
2019-05-20 12:37:41 -05:00 · 2019-05-20 12:37:41 -05:00 · 0d1e01ee3d
commit 0d1e01ee3d
parent f8adab245b
1 changed files with 5 additions and 0 deletions
--- a/horizon/values.yaml
+++ b/horizon/values.yaml
@ -384,6 +384,11 @@ conf:
        OPENSTACK_KEYSTONE_URL = "{{ tuple "identity" "internal" "api" . | include "helm-toolkit.endpoints.keystone_endpoint_uri_lookup" }}"
        OPENSTACK_KEYSTONE_DEFAULT_ROLE = "member"

+        # This setting specifies the name of the header with remote IP address. If not present,
+        # then REMOTE_ADDR header is used. The commom value for this setting is HTTP_X_REAL_IP
+        # or HTTP_X_FORWARDED_FORx
+        SECURE_PROXY_ADDR_HEADER = 'HTTP_X_FORWARDED_FOR'
+
        {{- if .Values.conf.horizon.local_settings.config.auth.sso.enabled }}
        # Enables keystone web single-sign-on if set to True.
        WEBSSO_ENABLED = True