BryanDavis has uploaded a new change for review.
https://gerrit.wikimedia.org/r/304965
Change subject: Add ini setting for cannonical ssl hostname
......................................................................
Add ini setting for cannonical ssl hostname
Add settings.py configuration for the django-secure SECURE_SSL_HOST
cannonical hostname and an associated ini setting of SSL_CANONICAL_HOST.
Change-Id: I5083161efb88691e23f79c7f5287cbd022db75da
---
M striker/settings.py
M striker/striker.ini
2 files changed, 2 insertions(+), 0 deletions(-)
git pull ssh://gerrit.wikimedia.org:29418/labs/striker
refs/changes/65/304965/1
diff --git a/striker/settings.py b/striker/settings.py
index 3e22c2e..4f702df 100644
--- a/striker/settings.py
+++ b/striker/settings.py
@@ -202,6 +202,7 @@
# Honor the 'X-Forwarded-Proto' header for request.is_secure()
SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
SECURE_SSL_REDIRECT = ini.getboolean('https', 'REQUIRE_HTTPS')
+SECURE_SSL_HOST = ini.get('https', 'SSL_CANONICAL_HOST')
# Should we be using X-Forwared-For headers?
STRIKER_USE_XFF_HEADER = ini.get('xff', 'USE_XFF_HEADER')
diff --git a/striker/striker.ini b/striker/striker.ini
index 7b87998..ba60885 100644
--- a/striker/striker.ini
+++ b/striker/striker.ini
@@ -75,6 +75,7 @@
[https]
# Should be set to true in any production environment
REQUIRE_HTTPS = false
+SSL_CANONICAL_HOST = toolsadmin.wikimedia.org
[logging]
# FIXME: set LOGGING_CONFIG to None and supply our own Python logging config
--
To view, visit https://gerrit.wikimedia.org/r/304965
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings
Gerrit-MessageType: newchange
Gerrit-Change-Id: I5083161efb88691e23f79c7f5287cbd022db75da
Gerrit-PatchSet: 1
Gerrit-Project: labs/striker
Gerrit-Branch: master
Gerrit-Owner: BryanDavis <bda...@wikimedia.org>
_______________________________________________
MediaWiki-commits mailing list
MediaWiki-commits@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits
