Project

General

Profile

Refactor #31435

Tracker #31386: Default to TLS 1.2+

Drop ssl_protocol parameter on foreman_proxy_content

Added by Ewoud Kohl van Wijngaarden 11 months ago. Updated 10 months ago.

Status:
Closed
Priority:
Normal
Category:
Foreman modules
Target version:
Difficulty:
Triaged:
Yes
Bugzilla link:

Description

There is a parameter on foreman_proxy_content to set Apache's SSLProtocol on vhosts. However, it's possible to set this Apache wide. As we're moving to TLS 1.2+ by default (#31386), this only makes it easy to avoid this. It will remain possible to set individual services via Hiera.

Associated revisions

Revision dee96cd8 (diff)
Added by Ewoud Kohl van Wijngaarden 10 months ago

Fixes #31435 - Drop ssl_protocol parameter

This parameter makes it easy to avoid the Apache global. Most users
should not be setting this. A way to set the Apache global is being
introduced.

History

#1 Updated by The Foreman Bot 11 months ago

  • Assignee set to Ewoud Kohl van Wijngaarden
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/puppet-foreman_proxy_content/pull/302 added

#2 Updated by The Foreman Bot 10 months ago

  • Fixed in Releases 2.4.0 added

#3 Updated by Ewoud Kohl van Wijngaarden 10 months ago

  • Status changed from Ready For Testing to Closed

Also available in: Atom PDF