Change HorizonSecureCookies default to False

HorizonSecureCookies is incompatible with non-ssl deployments, which is our default deployment method. When SSL is in use, it can be turned on in the enable-tls.yaml file. This does mean that existing users won't automatically get this feature turned on as part of their upgrade because enable-tls.yaml is an environment that is intended to be copied and edited, but it's simple to add the parameter to the file for users who want that behavior after they upgrade to a version where it is available. Change-Id: If83d3d8709fc4e0c09569e8bf524721d332bf560 Closes-Bug: 1696861
author: Ben Nemec <bnemec@redhat.com> 2017-06-08 16:28:34 -0500
committer: Ben Nemec <bnemec@redhat.com> 2017-06-08 16:28:34 -0500
commit: d8c0c33012d9a75e980f9f6cef59367594258af9 (patch)
tree: 0af821043a5346a58493277f1fe4d35ac8b474d3 /puppet/services/horizon.yaml
parent: 52b6ed7e27966a4ef285783369f899b77c37ba77 (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/puppet/services/horizon.yaml b/puppet/services/horizon.yaml
index 93bced8b..092d0720 100644
--- a/puppet/services/horizon.yaml
+++ b/puppet/services/horizon.yaml
@@ -55,7 +55,7 @@ parameters:
   HorizonSecureCookies:
     description: Set CSRF_COOKIE_SECURE / SESSION_COOKIE_SECURE in Horizon
     type: boolean
-    default: true
+    default: false
   MemcachedIPv6:
     default: false
     description: Enable IPv6 features in Memcached.
author	Ben Nemec <bnemec@redhat.com>	2017-06-08 16:28:34 -0500
committer	Ben Nemec <bnemec@redhat.com>	2017-06-08 16:28:34 -0500
commit	d8c0c33012d9a75e980f9f6cef59367594258af9 (patch)
tree	0af821043a5346a58493277f1fe4d35ac8b474d3 /puppet/services/horizon.yaml
parent	52b6ed7e27966a4ef285783369f899b77c37ba77 (diff)