From 99c562b94a55a7f42fa6d24e7b1e0e2771e8137b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Th=C3=A9ophile=20Helleboid=20-=20chtitux?=
 <chtitux@gmail.com>
Date: Mon, 6 Sep 2021 13:45:40 +0400
Subject: [PATCH 1/2] Add TLSv1.1 and TLSv1.2 for origin_ssl_protocols in
 examples

TLSv1 and TLSv1.1 should be deprecated but we may keep them for extended compatibility.

TLSv1.2 should always be used (where TLSv1.3 is not available).
---
 examples/complete/main.tf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/examples/complete/main.tf b/examples/complete/main.tf
index 5b171ba..8573c48 100644
--- a/examples/complete/main.tf
+++ b/examples/complete/main.tf
@@ -45,7 +45,7 @@ module "cloudfront" {
         http_port              = 80
         https_port             = 443
         origin_protocol_policy = "match-viewer"
-        origin_ssl_protocols   = ["TLSv1"]
+        origin_ssl_protocols   = ["TLSv1", "TLSv1.1", "TLSv1.2"]
       }
 
       custom_header = [

From f014add3799f7779067dd71f2ec1c3384acc1e79 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Th=C3=A9ophile=20Helleboid=20-=20chtitux?=
 <chtitux@gmail.com>
Date: Mon, 6 Sep 2021 13:47:16 +0400
Subject: [PATCH 2/2] README: add TLSv1.1 and TLSv1.2 for origin_ssl_protocols

---
 README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 7165d92..795d59b 100644
--- a/README.md
+++ b/README.md
@@ -35,7 +35,7 @@ module "cdn" {
         http_port              = 80
         https_port             = 443
         origin_protocol_policy = "match-viewer"
-        origin_ssl_protocols   = ["TLSv1"]
+        origin_ssl_protocols   = ["TLSv1", "TLSv1.1", "TLSv1.2"]
       }
     }