Refactor #31435
Tracker #31386: Default to TLS 1.2+
Drop ssl_protocol parameter on foreman_proxy_content
Status:
Closed
Priority:
Normal
Assignee:
Category:
Foreman modules
Target version:
Difficulty:
Triaged:
Yes
Description
There is a parameter on foreman_proxy_content to set Apache's SSLProtocol on vhosts. However, it's possible to set this Apache wide. As we're moving to TLS 1.2+ by default (#31386), this only makes it easy to avoid this. It will remain possible to set individual services via Hiera.
Associated revisions
History
#1
Updated by The Foreman Bot over 2 years ago
- Assignee set to Ewoud Kohl van Wijngaarden
- Status changed from New to Ready For Testing
- Pull request https://github.com/theforeman/puppet-foreman_proxy_content/pull/302 added
#2
Updated by The Foreman Bot over 2 years ago
- Fixed in Releases 2.4.0 added
#3
Updated by Ewoud Kohl van Wijngaarden over 2 years ago
- Status changed from Ready For Testing to Closed
Applied in changeset puppet-foreman_proxy_content|dee96cd80c762e0f19c55ff730718f6ba594456a.
Fixes #31435 - Drop ssl_protocol parameter
This parameter makes it easy to avoid the Apache global. Most users
should not be setting this. A way to set the Apache global is being
introduced.