From 2c4aee2a5ce08bcbf7ebe3f13c0818a8ca7a5319 Mon Sep 17 00:00:00 2001
From: lhinds <lhinds@redhat.com>
Date: Tue, 7 Mar 2017 13:13:52 +0000
Subject: Adds Horizon secure cookie map.

Puppet-horizon already contains a `secure_cookies` parameter, that
sets `CSRF_COOKIE_SECURE` and `SESSION_COOKIE_SECURE` within
`/templates/local_settings.py.erb`.

This change introduces the services map for TripleO Heat Templates

Change-Id: Ie6f6158929c33da8c5f245e2379aebe1afd524ef
Closes-bug: #1640491
---
 puppet/services/horizon.yaml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/puppet/services/horizon.yaml b/puppet/services/horizon.yaml
index 60b009a8..e5e1f7a0 100644
--- a/puppet/services/horizon.yaml
+++ b/puppet/services/horizon.yaml
@@ -40,6 +40,10 @@ parameters:
     type: string
     hidden: true
     default: ''
+  HorizonSecureCookies:
+    description: Set CSRF_COOKIE_SECURE / SESSION_COOKIE_SECURE in Horizon
+    type: boolean
+    default: true
   MemcachedIPv6:
     default: false
     description: Enable IPv6 features in Memcached.
@@ -88,6 +92,7 @@ outputs:
                 passwords:
                   - {get_param: HorizonSecret}
                   - {get_param: [DefaultPasswords, horizon_secret]}
+          horizon::secure_cookies: {get_param: [HorizonSecureCookies]}
           memcached_ipv6: {get_param: MemcachedIPv6}
         -
           if:
-- 
cgit 1.2.3-korg