Project

General

Profile

Refactor #31435

Tracker #31386: Default to TLS 1.2+

Drop ssl_protocol parameter on foreman_proxy_content

Added by Ewoud Kohl van Wijngaarden 8 months ago. Updated 8 months ago.

Status:
Closed
Priority:
Normal
Category:
Foreman modules
Target version:
Difficulty:
Triaged:
Yes
Bugzilla link:

Description

There is a parameter on foreman_proxy_content to set Apache's SSLProtocol on vhosts. However, it's possible to set this Apache wide. As we're moving to TLS 1.2+ by default (#31386), this only makes it easy to avoid this. It will remain possible to set individual services via Hiera.

Associated revisions

Revision dee96cd8 (diff)
Added by Ewoud Kohl van Wijngaarden 8 months ago

Fixes #31435 - Drop ssl_protocol parameter

This parameter makes it easy to avoid the Apache global. Most users
should not be setting this. A way to set the Apache global is being
introduced.

History

#1 Updated by The Foreman Bot 8 months ago

  • Assignee set to Ewoud Kohl van Wijngaarden
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/puppet-foreman_proxy_content/pull/302 added

#2 Updated by The Foreman Bot 8 months ago

  • Fixed in Releases 2.4.0 added

#3 Updated by Ewoud Kohl van Wijngaarden 8 months ago

  • Status changed from Ready For Testing to Closed

Also available in: Atom PDF