luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity

Make TLS 1.2 *explicitly* required for cluster communications

Browse source
This commit is contained in:
Jeff Mitchell 2017-01-31 13:30:25 -05:00
parent 7304311648
commit 67410ab230
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
vault/cluster.go
View file

@ -377,6 +377,7 @@ func (c *Core) ClusterTLSConfig() (*tls.Config, error) {
ServerName: parsedCert.Subject.CommonName,
ClientAuth: tls.RequireAndVerifyClientCert,
ClientCAs: c.clusterCertPool,
MinVersion: tls.VersionTLS12,
}
return tlsConfig, nil