openstack
/
openstack-ansible-os_barbican
Code Issues Proposed changes

Rename TLSv1.0 to TLSv1 in apache config 

According to the apache2 documentation [1], TLSv1.0 is not a valid
option and may lead to an error:

SSLProtocol: Illegal protocol 'TLSv1.0'

[1] https://httpd.apache.org/docs/2.4/mod/mod_ssl.html#SSLProtocol

Change-Id: I344066790003241bc2f8d0737cb47eb39def4f29
This commit is contained in:
Damian Dabrowski 2022-09-14 19:59:57 +02:00
parent 302178f9a5
commit 21a8256175
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
defaults/main.yml
View File

@ -211,7 +211,7 @@ barbican_ssl: false
barbican_ssl_cert: /etc/ssl/certs/barbican.pem
barbican_ssl_key: /etc/ssl/private/barbican.key
barbican_ssl_ca_cert: /etc/ssl/certs/barbican-ca.pem
barbican_ssl_protocol: "{{ ssl_protocol | default('ALL -SSLv2 -SSLv3 -TLSv1.0 -TLSv1.1') }}"
barbican_ssl_protocol: "{{ ssl_protocol | default('ALL -SSLv2 -SSLv3 -TLSv1 -TLSv1.1') }}"
barbican_ssl_cipher_suite: "{{ ssl_cipher_suite | default('ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:!aNULL:!MD5:!DSS') }}"
# if using a self-signed certificate, set this to true to regenerate it