horizon のコンテナでhorizonをHTTPS化する。
手順
- horizon コンテナにログイン
- /etc/httpd/conf.d/ssl.conf 修正
- コンテナ再起動
ログイン
# docker ps
CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES
ab109739a033 kolla/centos-source-manila-share:queens "kolla_start" 2 hours ago Restarting (1) 51 seconds ago manila_share
43c45131b740 kolla/centos-source-manila-scheduler:queens "kolla_start" 2 hours ago Up 2 hours manila_scheduler
313fcf872a06 kolla/centos-source-manila-data:queens "kolla_start" 2 hours ago Up 2 hours manila_data
e8d723fef1a4 kolla/centos-source-manila-api:queens "kolla_start" 2 hours ago Restarting (1) 4 seconds ago manila_api
df0eeda4a35b kolla/centos-source-horizon:queens "kolla_start" 2 hours ago Up 3 minutes horizon
ba1aa66b3c70 kolla/centos-source-heat-engine:queens "kolla_start" 2 hours ago Up 2 hours heat_engine
7a99a622e247 kolla/centos-source-heat-api-cfn:queens "kolla_start" 2 hours ago Up 2 hours heat_api_cfn
d3b5669aff16 kolla/centos-source-heat-api:queens "kolla_start" 2 hours ago Up 2 hours heat_api
7c6b49e46961 kolla/centos-source-neutron-bgp-dragent:queens "kolla_start" 2 hours ago Up 2 hours neutron_bgp_dragent
7b043fc70e34 kolla/centos-source-neutron-metadata-agent:queens "kolla_start" 2 hours ago Up 2 hours neutron_metadata_agent
cb58001b41f6 kolla/centos-source-neutron-l3-agent:queens "kolla_start" 2 hours ago Up 2 hours neutron_l3_agent
1d5fc5630757 kolla/centos-source-neutron-dhcp-agent:queens "kolla_start" 2 hours ago Up 2 hours neutron_dhcp_agent
b2fc74c8e428 kolla/centos-source-neutron-openvswitch-agent:queens "kolla_start" 2 hours ago Up 2 hours neutron_openvswitch_agent
3e8ef7289077 kolla/centos-source-neutron-server:queens "kolla_start" 2 hours ago Up 2 hours neutron_server
832cae84fab4 kolla/centos-source-openvswitch-vswitchd:queens "kolla_start" 2 hours ago Up 2 hours openvswitch_vswitchd
4dd0a7fa6d31 kolla/centos-source-openvswitch-db-server:queens "kolla_start" 2 hours ago Up 2 hours openvswitch_db
8096e4ec00e5 kolla/centos-source-nova-compute:queens "kolla_start" 2 hours ago Up 2 hours nova_compute
ea8129516288 kolla/centos-source-nova-novncproxy:queens "kolla_start" 2 hours ago Up 2 hours nova_novncproxy
6703fef99aab kolla/centos-source-nova-consoleauth:queens "kolla_start" 2 hours ago Up 2 hours nova_consoleauth
fb2068c78891 kolla/centos-source-nova-conductor:queens "kolla_start" 2 hours ago Up 2 hours nova_conductor
97057ff78bb6 kolla/centos-source-nova-scheduler:queens "kolla_start" 2 hours ago Up 2 hours nova_scheduler
25e12c436198 kolla/centos-source-nova-api:queens "kolla_start" 2 hours ago Up 2 hours nova_api
f3d3d445c1d2 kolla/centos-source-nova-placement-api:queens "kolla_start" 2 hours ago Up 2 hours placement_api
f47d12a757df kolla/centos-source-nova-libvirt:queens "kolla_start" 2 hours ago Up 2 hours nova_libvirt
1d8e05ba3c99 kolla/centos-source-nova-ssh:queens "kolla_start" 2 hours ago Up 2 hours nova_ssh
810e9ff31daf kolla/centos-source-cinder-backup:queens "kolla_start" 2 hours ago Up 2 hours cinder_backup
3bf3abd9b269 kolla/centos-source-cinder-volume:queens "kolla_start" 2 hours ago Up 2 hours cinder_volume
417c1087b432 kolla/centos-source-cinder-scheduler:queens "kolla_start" 2 hours ago Up 2 hours cinder_scheduler
fda972374b3f kolla/centos-source-cinder-api:queens "kolla_start" 2 hours ago Up 2 hours cinder_api
fd9107b2cc79 kolla/centos-source-glance-api:queens "kolla_start" 2 hours ago Up 2 hours glance_api
b814c910e21f kolla/centos-source-keystone-fernet:queens "kolla_start" 2 hours ago Up 2 hours keystone_fernet
7bda77c6543d kolla/centos-source-keystone-ssh:queens "kolla_start" 2 hours ago Up 2 hours keystone_ssh
0a151029226c kolla/centos-source-keystone:queens "kolla_start" 2 hours ago Up 2 hours keystone
d76caff26d23 kolla/centos-source-rabbitmq:queens "kolla_start" 2 hours ago Up 2 hours rabbitmq
113a23dfefb6 kolla/centos-source-mariadb:queens "kolla_start" 2 hours ago Up 2 hours mariadb
d64c194fa844 kolla/centos-source-memcached:queens "kolla_start" 2 hours ago Up 2 hours memcached
4ce505333564 kolla/centos-source-chrony:queens "kolla_start" 2 hours ago Up 2 hours chrony
c230924e585e kolla/centos-source-cron:queens "kolla_start" 2 hours ago Up 2 hours cron
5d9710d55d76 kolla/centos-source-kolla-toolbox:queens "kolla_start" 2 hours ago Up 2 hours kolla_toolbox
b9bc9d971441 kolla/centos-source-fluentd:queens "kolla_start" 2 hours ago Up 2 hours fluentd
# docker exec -it horizon /bin/bash
(horizon)[root@openstack /]#
ssl.conf 修正
(自己証明書はすでに作成されているのでそのまま利用する)
最終行に以下追加。
Listen 443 https #コメント削除
<Location />
Require all granted
</Location>
WSGIScriptReloading On
WSGIDaemonProcess horizon-https processes=5 threads=1 user=horizon group=horizon display-name=%{GROUP} python-path=/var/lib/kolla/venv/lib/python2.7/site-packages
WSGIProcessGroup horizon-https
WSGIScriptAlias / /var/lib/kolla/venv/lib/python2.7/site-packages/openstack_dashboard/wsgi/django.wsgi
WSGIPassAuthorization On
WSGIApplicationGroup %{GLOBAL}
Alias /static /var/lib/kolla/venv/lib/python2.7/site-packages/static
コンテナ再起動
docker restart horizon
アクセスすると。
 |
| 無事HTTPS化された |