-
Notifications
You must be signed in to change notification settings - Fork 618
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support TLS/Ciphersuite configuration options #249
Comments
That sounds like a good idea since it provides more control over the defaults. I'm inclined to consider this an option of the listener since it more about the TLS handshake than managing certificates. I'd go with adding a
So you would have to first update the |
For the values of the |
@ajlake Are you going to pick this up or shall I do this? |
someone, please implement this feature |
I'll have a look. |
Add support for configuring the min and max TLS versions as well as the ciphers to be used. Fixes #249
I've pushed a branch which contains a fix for this issue. You can add Example:
I still need to add a test and update the documentation in |
Add support for configuring the min and max TLS versions as well as the ciphers to be used. Fixes #249
We would like to be able to configure Fabio to only accept TLS 1.2 + certain ciphersuites. Would you accept a contribution for this? Looking for some guidance on an impl that would be accepted. Thanks!
Thoughts:
TLSMinVersion String
("1.0", "1.1", or "1.2" recognized options)CipherSuites String
(comma-separated list)from tls package common.go
from tls package cipher_suites.go
The text was updated successfully, but these errors were encountered: