You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Is your feature request related to a problem? Please describe.
The App Framework started supporting Zowe wide TLS configuration under zowe.network.server, to simplify configuration work, API ML should support the same.
zowe.network.server.listenAddresses: This is an array of strings of IPv4 or IPv6 addresses that servers will be instructed to listen on.
Default: - "0.0.0.0"
zowe.network.server.tls.maxTls: This is a string stating which TLS version to use as a maximum. The value can be one of "TLSv1.2", "TLSv1.3".
Default: `TLSv1.3"
zowe.network.server.tls.minTls: This is a string stating which TLS version to use as a minimum. The value can be one of "TLSv1.2", "TLSv1.3".
Default: `TLSv1.2"
Please use this code if it is helpful. I started to make changes for APIML but did not finish, and never figured out how to do ciphers.
Most importantly this will help IPv6 support though!
Keep in mind: zowe.yaml defines both client & server customization.
This branch has the following behavior:
server parameters: If component config, use. Else if global config, use. Else default.
client parameters: If component config, use. Else if global config, use. Else if server component config, use. Else if server global config, use. Else default
In effect, one can customize both server & client with server parameters alone, but can customize them separately if ever needed.
Is your feature request related to a problem? Please describe.
The App Framework started supporting Zowe wide TLS configuration under zowe.network.server, to simplify configuration work, API ML should support the same.
zowe.network.server.listenAddresses
: This is an array of strings of IPv4 or IPv6 addresses that servers will be instructed to listen on.Default:
- "0.0.0.0"
zowe.network.server.tls.maxTls
: This is a string stating which TLS version to use as a maximum. The value can be one of "TLSv1.2", "TLSv1.3".Default: `TLSv1.3"
zowe.network.server.tls.minTls
: This is a string stating which TLS version to use as a minimum. The value can be one of "TLSv1.2", "TLSv1.3".Default: `TLSv1.2"
zowe.network.server.tls.ciphers
: This is an array of strings in the format of IANA cipher names. There are many possible values as seen here: https://testssl.sh/openssl-iana.mapping.htmlDefault: Changes regularly as needed for industry standards. A reference for likely ciphers is here: https://wiki.mozilla.org/Security/Server_Side_TLS
Describe the solution you'd like
Linked docs issue is - zowe/docs-site#3685
The text was updated successfully, but these errors were encountered: