Problem:
Greetings,
I am having problems getting the provisioning templates proxy working over HTTP to support installers that don’t do HTTPS and at the same time keep communication between foreman and the proxy using HTTPS.
The URL returned by the ks=<%= foreman_url(‘provision’) %> call seems to always return the URL of the proxy but it does not seem to respect the setting :template_url from the configuration file.
All templates render the following URL https://pxe.internal.example.com:8443 instead of the expected
URL set in the configuration file for the proxy http://pxe.internal.example.com:8080
Is it possible to have foreman and foreman-proxy communicate over https and at the same time
have the foreman-proxy serve templates over http?
Is there anything I am missing on my config? I don’t understand why :template_url: is not being used.
Thank you in advance for your time and help.
A.
Expected outcome:
- Communication between foreman and proxy done over https
- Template URL used for rendering PXELinux kickstart uses http as set in :template_url config parameter.
Foreman and Proxy versions:
Foreman and Proxies are at version 1.24.2
Distribution and version:
CentOS 7.7.1908
Other relevant data:
The foreman-proxy has the following features enabled:
DHCP, HTTPBoot, TFTP, and Templates
cat /etc/foreman-proxy/settings.yml
---
:settings_directory: /etc/foreman-proxy/settings.d
:http_port: 8080
:https_port: 8443
:ssl_certificate: /etc/foreman-proxy/ssl/pxe.internal.example.com.pem
:ssl_ca_file: /etc/foreman-proxy/ssl/ca.pem
:ssl_private_key: /etc/foreman-proxy/ssl/pxe.internal.example.com.key
:trusted_hosts:
- foreman.internal.example.com
:foreman_url: https://foreman.internal.example.com
cat /etc/foreman-proxy/settings.d/templates.yml
---
:enabled: http
:template_url: http://pxe.internal.example.com:8080