Closed Bug 1238599 Opened 8 years ago Closed 8 years ago

Zeus redirect brasstacks.mozilla.com HTTP to HTTPS

Categories

(Infrastructure & Operations Graveyard :: WebOps: Other, task)

Product:
Infrastructure & Operations Graveyard
Component:
WebOps: Other
Type:
task
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: emorley, Assigned: ericz)

References

Details

(Whiteboard: [kanban:https://webops.kanbanize.com/ctrl_board/2/2433] ) 

Please can Zeus be configured to 301 redirect HTTP to HTTPS for http://brasstacks.mozilla.com - since at the moment it will accept HTTP connections (which could lead to inadvertent use of the API in bug 1235097 over unencrypted HTTP).

Many thanks :-)
Note that there's a nginx redirect on the site root to the HTTPS OrangeFactor page, so when testing you'll need to use a sub-page instead, eg

[~/src]$ curl -I "http://brasstacks.mozilla.com/orangefactor/"
HTTP/1.1 200 OK
Server: nginx/0.8.54
Date: Mon, 11 Jan 2016 16:16:50 GMT
Content-Type: text/html
Content-Length: 10757
Last-Modified: Mon, 11 Jan 2016 16:00:37 GMT
Connection: keep-alive
Accept-Ranges: bytes
Summary: Redirect brasstacks.mozilla.com HTTP to HTTPS → Zeus redirect brasstacks.mozilla.com HTTP to HTTPS
Whiteboard: [kanban:https://webops.kanbanize.com/ctrl_board/2/2433]
Assignee: server-ops-webops → eziegenhorn
Zeus redirect created and verified.  Now-unused pool brasstacks1.dmz.scl3:80 removed.
Status: NEW → RESOLVED
Closed: 8 years ago
Resolution: --- → FIXED
Looking good - many thanks :-)

[~/src]$ curl -I "http://brasstacks.mozilla.com/orangefactor/api/"
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
Date: Thu, 14 Jan 2016 12:11:58 GMT
Location: https://brasstacks.mozilla.com/orangefactor/api/
Connection: Keep-Alive
Content-Length: 0
Status: RESOLVED → VERIFIED
Product: Infrastructure & Operations → Infrastructure & Operations Graveyard
You need to log in before you can comment on or make changes to this bug.