go-packages/iris
1
0
Fork 0
mirror of https://github.com/kataras/iris.git synced 2025-02-09 02:34:55 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity

core/router/supervisor:https ForceRSA to true

Browse Source 
Former-commit-id: 86174563b57b142b1e70da6756a54b12b6d5e353
This commit is contained in:
Gerasimos Maropoulos 2018-03-31 06:38:30 +03:00
parent 502b4654d4
commit fbf2bd6480
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
core/host/supervisor.go
View File

@ -308,6 +308,7 @@ func (su *Supervisor) ListenAndServeAutoTLS(domain string, email string, cacheDi
HostPolicy: hostPolicy, HostPolicy: hostPolicy,
Email: email, Email: email,
Cache: cache, Cache: cache,
ForceRSA: true,
} }
srv2 := &http.Server{ srv2 := &http.Server{
@ -329,11 +330,15 @@ func (su *Supervisor) ListenAndServeAutoTLS(domain string, email string, cacheDi
go srv2.ListenAndServe() go srv2.ListenAndServe()
su.Server.TLSConfig = &tls.Config{ su.Server.TLSConfig = &tls.Config{
GetCertificate: autoTLSManager.GetCertificate,
MinVersion: tls.VersionTLS10, MinVersion: tls.VersionTLS10,
GetCertificate: autoTLSManager.GetCertificate,
PreferServerCipherSuites: true, PreferServerCipherSuites: true,
// Keep the defaults.
CurvePreferences: []tls.CurveID{ CurvePreferences: []tls.CurveID{
tls.X25519, tls.X25519,
tls.CurveP256,
tls.CurveP384,
tls.CurveP521,
}, },
} }
return su.ListenAndServeTLS("", "") return su.ListenAndServeTLS("", "")