apache-frontend: Do not remove 'secure' from cookies

/reviewed-on nexedi/slapos!346

apache-frontend: Do not remove 'secure' from cookies
/reviewed-on nexedi/slapos!346
438bfe91 · Łukasz Nowak · Rafael Monnerat · 21b2d1c1 · 438bfe91 · 438bfe91
Commit 438bfe91 authored Jun 14, 2018 by Łukasz Nowak Committed by Rafael Monnerat Jun 22, 2018
3 changed files
--- a/software/apache-frontend/README.apache_frontend.rst
+++ b/software/apache-frontend/README.apache_frontend.rst
@@ -290,8 +290,6 @@ Request slave frontend instance so that https://[1:2:3:4:5:6:7:8]:1234 will be
  ProxyPreserveHost On
  ProxyTimeout 600
  RewriteEngine On
-  # Remove "Secure" from cookies, as backend may be https
-  Header edit Set-Cookie "(?i)^(.+);secure$" "$1"
  # Not using HTTPS? Ask that guy over there.
  # Dummy redirection to https. Note: will work only if https listens
  # on standard port (443).
@@ -340,9 +338,6 @@ Request slave frontend instance so that https://[1:2:3:4:5:6:7:8]:1234 will be
  ProxyTimeout 600
  RewriteEngine On

-  # Remove "Secure" from cookies, as backend may be https
-  Header edit Set-Cookie "(?i)^(.+);secure$" "$1"
-
  # Not using HTTPS? Ask that guy over there.
  # Dummy redirection to https. Note: will work only if https listens
  # on standard port (443).
@@ -416,8 +411,6 @@ the proxy::
  LogLevel info
  LogFormat "%%h %%l %%{REMOTE_USER}i %%t \"%%r\" %%>s %%b \"%%{Referer}i\" \"%%{User-Agent}i\" %%D" combined
  CustomLog "%(access_log)s" combined
-  # Remove "Secure" from cookies, as backend may be https
-  Header edit Set-Cookie "(?i)^(.+);secure$" "$1"
  # Not using HTTPS? Ask that guy over there.
  # Dummy redirection to https. Note: will work only if https listens
  # on standard port (443).

--- a/software/apache-frontend/buildout.hash.cfg
+++ b/software/apache-frontend/buildout.hash.cfg
@@ -54,7 +54,7 @@ md5sum = d98a01182f38868612948c87d5231428

 [template-default-slave-virtualhost]
 filename = templates/default-virtualhost.conf.in
-md5sum = 4a2db0b69d2941cdf08ebf55575d8ad8
+md5sum = 7890469ecc5e7f46be5b2c3074a09b52

 [template-cached-slave-virtualhost]
 filename = templates/cached-virtualhost.conf.in

--- a/software/apache-frontend/templates/default-virtualhost.conf.in
+++ b/software/apache-frontend/templates/default-virtualhost.conf.in
@@ -123,9 +123,6 @@
  LogFormat "%h %l %{REMOTE_USER}i %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %D" combined
  CustomLog "{{ slave_parameter.get('access_log') }}" combined

-  # Remove "Secure" from cookies, as backend may be https
-  Header edit Set-Cookie "(?i)^(.+);secure$" "$1"
-
 {% if enable_h2 %}
  Protocols h2 http/1.1
 {% endif -%}