[openstack-dev] [all] Consistent support for SSL termination proxies across all API services

Sean Dague sean at dague.net
Mon Sep 28 11:00:10 UTC 2015


On 09/28/2015 05:01 AM, Julien Danjou wrote:
> On Wed, Sep 23 2015, Julien Danjou wrote:
> 
> 
> […]
> 
>> I'm willing to clear that out and come with specs and patches if that
>> can help. :)
> 
> Following-up on myself, I went ahead and I wrote a more complete version
> of the current proxy middleware we have – which also supports RFC7239:
> 
>   https://review.openstack.org/#/c/227868/
> 
> With that in place, having a proxy (SSL or not) correctly configured in
> front of any WSGI application should be completely transparent for the
> application, with no need of additional configuration.
> 
> If that suits everyone, I'll then propose deprecation of the
> oslo_middleware.ssl middleware in favor of this one.

Great, thanks, Julien, that looks like a good ball to move forward here
in Mitaka. My +1 added to the patch.

	-Sean

-- 
Sean Dague
http://dague.net

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 465 bytes
Desc: OpenPGP digital signature
URL: <http://lists.openstack.org/pipermail/openstack-dev/attachments/20150928/a961e606/attachment.pgp>


More information about the OpenStack-dev mailing list