Revision efeaef92
Added by Eric Helms about 3 years ago
| spec/classes/candlepin_spec.rb | ||
|---|---|---|
|
it { is_expected.to compile.with_all_deps }
|
||
|
it do
|
||
|
is_expected.to contain_file("/etc/tomcat/server.xml").
|
||
|
with_content(/sslProtocols="TLSv1.2,TLSv1.3"/).
|
||
|
with_content(/sslProtocol="TLSv1.2,TLSv1.3"/).
|
||
|
with_content(/sslEnabledProtocols="TLSv1.2,TLSv1.3"/)
|
||
|
end
|
||
|
end
|
||
| templates/tomcat/server.xml.erb | ||
|---|---|---|
|
SSLEnabled="true"
|
||
|
maxThreads="150" scheme="https" secure="true"
|
||
|
clientAuth="want"
|
||
|
sslProtocols="<%= scope['::candlepin::tls_versions'].map { |version| "TLSv#{version}"}.join(",") %>"
|
||
|
sslProtocol="<%= scope['::candlepin::tls_versions'].map { |version| "TLSv#{version}"}.join(",") %>"
|
||
|
sslEnabledProtocols="<%= scope['::candlepin::tls_versions'].map { |version| "TLSv#{version}"}.join(",") %>"
|
||
|
keystoreFile="<%= scope['::candlepin::keystore_file'] %>"
|
||
|
keystorePass="<%= scope['::candlepin::keystore_password'] %>"
|
||
Also available in: Unified diff
Tomcat parameter is named sslProtocol not sslProtocols