summaryrefslogtreecommitdiffstats
path: root/puppet/services
diff options
context:
space:
mode:
authorBen Nemec <bnemec@redhat.com>2017-06-08 16:28:34 -0500
committerBen Nemec <bnemec@redhat.com>2017-06-08 16:28:34 -0500
commitd8c0c33012d9a75e980f9f6cef59367594258af9 (patch)
tree0af821043a5346a58493277f1fe4d35ac8b474d3 /puppet/services
parent52b6ed7e27966a4ef285783369f899b77c37ba77 (diff)
Change HorizonSecureCookies default to False
HorizonSecureCookies is incompatible with non-ssl deployments, which is our default deployment method. When SSL is in use, it can be turned on in the enable-tls.yaml file. This does mean that existing users won't automatically get this feature turned on as part of their upgrade because enable-tls.yaml is an environment that is intended to be copied and edited, but it's simple to add the parameter to the file for users who want that behavior after they upgrade to a version where it is available. Change-Id: If83d3d8709fc4e0c09569e8bf524721d332bf560 Closes-Bug: 1696861
Diffstat (limited to 'puppet/services')
-rw-r--r--puppet/services/horizon.yaml2
1 files changed, 1 insertions, 1 deletions
diff --git a/puppet/services/horizon.yaml b/puppet/services/horizon.yaml
index 93bced8b..092d0720 100644
--- a/puppet/services/horizon.yaml
+++ b/puppet/services/horizon.yaml
@@ -55,7 +55,7 @@ parameters:
HorizonSecureCookies:
description: Set CSRF_COOKIE_SECURE / SESSION_COOKIE_SECURE in Horizon
type: boolean
- default: true
+ default: false
MemcachedIPv6:
default: false
description: Enable IPv6 features in Memcached.