Revision efeaef92
Added by Eric Helms about 3 years ago
spec/classes/candlepin_spec.rb | ||
---|---|---|
it { is_expected.to compile.with_all_deps }
|
||
it do
|
||
is_expected.to contain_file("/etc/tomcat/server.xml").
|
||
with_content(/sslProtocols="TLSv1.2,TLSv1.3"/).
|
||
with_content(/sslProtocol="TLSv1.2,TLSv1.3"/).
|
||
with_content(/sslEnabledProtocols="TLSv1.2,TLSv1.3"/)
|
||
end
|
||
end
|
templates/tomcat/server.xml.erb | ||
---|---|---|
SSLEnabled="true"
|
||
maxThreads="150" scheme="https" secure="true"
|
||
clientAuth="want"
|
||
sslProtocols="<%= scope['::candlepin::tls_versions'].map { |version| "TLSv#{version}"}.join(",") %>"
|
||
sslProtocol="<%= scope['::candlepin::tls_versions'].map { |version| "TLSv#{version}"}.join(",") %>"
|
||
sslEnabledProtocols="<%= scope['::candlepin::tls_versions'].map { |version| "TLSv#{version}"}.join(",") %>"
|
||
keystoreFile="<%= scope['::candlepin::keystore_file'] %>"
|
||
keystorePass="<%= scope['::candlepin::keystore_password'] %>"
|
Also available in: Unified diff
Tomcat parameter is named sslProtocol not sslProtocols