Skip to content

Commit

Permalink
[u] Fix: Insecure Transportation Security Protocol Supported (TLS 1.0) (
Browse files Browse the repository at this point in the history
  • Loading branch information
achave11-ucsc committed Sep 20, 2023
2 parents 41ac8d1 + 7bd280a commit f2694c6
Show file tree
Hide file tree
Showing 3 changed files with 14 additions and 3 deletions.
10 changes: 10 additions & 0 deletions UPGRADING.rst
Original file line number Diff line number Diff line change
Expand Up @@ -20,6 +20,16 @@ reverted. This is all fairly informal and loosely defined. Hopefully we won't
have too many entries in this file.


DataBiosphere/azul-private#15 Insecure Transportation Security Protocol Supported (TLS 1.0)
===========================================================================================

Operator
~~~~~~~~

Manually deploy the ``gitlab`` component of any main deployment, just before
pushing the merge commit to the GitLab instance in that deployment.


#5189 Delete unused Docker images from ECR
==========================================

Expand Down
5 changes: 3 additions & 2 deletions terraform/api_gateway.tf.json.template.py
Original file line number Diff line number Diff line change
Expand Up @@ -370,7 +370,8 @@ def for_domain(cls, domain):
'aws_api_gateway_domain_name': {
f'{app.name}_{i}': {
'domain_name': '${aws_acm_certificate.%s_%i.domain_name}' % (app.name, i),
'certificate_arn': '${aws_acm_certificate_validation.%s_%i.certificate_arn}' % (app.name, i)
'certificate_arn': '${aws_acm_certificate_validation.%s_%i.certificate_arn}' % (app.name, i),
'security_policy': 'TLS_1_2'
} for i, domain in enumerate(app.domains)
},
'aws_api_gateway_method_settings': {
Expand Down Expand Up @@ -618,7 +619,7 @@ def for_domain(cls, domain):
app.name: {
'port': 443,
'protocol': 'HTTPS',
'ssl_policy': 'ELBSecurityPolicy-2016-08',
'ssl_policy': 'ELBSecurityPolicy-FS-1-2-Res-2019-08',
'certificate_arn': '${aws_acm_certificate.%s_0.arn}' % app.name,
'default_action': [
{
Expand Down
2 changes: 1 addition & 1 deletion terraform/gitlab/gitlab.tf.json.template.py
Original file line number Diff line number Diff line change
Expand Up @@ -1025,7 +1025,7 @@ def qq(*words):
'gitlab_http': {
'port': 443,
'protocol': 'HTTPS',
'ssl_policy': 'ELBSecurityPolicy-2016-08',
'ssl_policy': 'ELBSecurityPolicy-FS-1-2-Res-2019-08',
'certificate_arn': '${aws_acm_certificate.gitlab.arn}',
'default_action': [
{
Expand Down

0 comments on commit f2694c6

Please sign in to comment.