Merge lp://qastaging/~danilo/landscape-charm/pppa-proxy-haproxy-rules into lp://qastaging/~landscape/landscape-charm/trunk
Status: | Merged |
---|---|
Approved by: | Данило Шеган |
Approved revision: | 384 |
Merged at revision: | 373 |
Proposed branch: | lp://qastaging/~danilo/landscape-charm/pppa-proxy-haproxy-rules |
Merge into: | lp://qastaging/~landscape/landscape-charm/trunk |
Prerequisite: | lp://qastaging/~danilo/landscape-charm/gpg-options |
Diff against target: |
406 lines (+185/-23) 4 files modified
dev/ubuntu-deps (+2/-2) lib/relations/haproxy.py (+50/-6) lib/relations/tests/test_haproxy.py (+128/-13) lib/services.py (+5/-2) |
To merge this branch: | bzr merge lp://qastaging/~danilo/landscape-charm/pppa-proxy-haproxy-rules |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
Chris Glass (community) | Approve | ||
🤖 Landscape Builder | test results | Approve | |
Free Ekanayaka (community) | Approve | ||
Review via email:
|
Commit message
Introduce haproxy rules to expose pppa-proxy with charmed Landscape
Since "option httpchk" is applied globally, and pppa-proxy requires authentication even on "HEAD /" HTTP request, that has been commented out for the time being.
If root-url is set on the landscape-server charm, we expose the service using "archive.
We are not doing anything special for SSL certificates to cover both domains, which might be needed, but could be solved with either wildcard or altSubjectName certs as well.
Description of the change
Introduce haproxy rules to expose pppa-proxy with charmed Landscape
Since "option httpchk" is applied globally, and pppa-proxy requires authentication even on "HEAD /" HTTP request, that has been commented out for t he time being.
If root-url is set on the landscape-server charm, we expose the service using "archive.
I am not doing anything special for SSL certificates to cover both domains, which might be needed, but could be solved with either wildcard or altSubjectName certs as well.
Testing instructions:
1. Deploy a full bundle including landscape-hosted (following instructions from https:/
2. Browse to haproxy-IP/archive (use username and password you get from "how-to-
3. Set root-url:
juju set landscape-server root-url=https:/
4. Eg. edit /etc/hosts to point archive.
5. Browse to https:/
Command: make ci-test /ci.lscape. net/job/ latch-test- trusty/ 15/
Result: Fail
Revno: 380
Branch: lp:~danilo/landscape-charm/pppa-proxy-haproxy-rules
Jenkins: https:/