From daddeaf7beca36a07056deb468952065b8dce343 Mon Sep 17 00:00:00 2001 From: Stefan Negru Date: Fri, 9 Apr 2021 12:42:59 +0300 Subject: [PATCH] user version 1_2 of TLS --- sda_orchestrator/utils/consumer.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/sda_orchestrator/utils/consumer.py b/sda_orchestrator/utils/consumer.py index fa24750..47b77a7 100644 --- a/sda_orchestrator/utils/consumer.py +++ b/sda_orchestrator/utils/consumer.py @@ -38,7 +38,7 @@ def __init__( self.max_retries = max_retries self.connection = None self.ssl = bool(strtobool(environ.get("BROKER_SSL", "True"))) - context = ssl.SSLContext(protocol=ssl.PROTOCOL_TLSv1_1) + context = ssl.SSLContext(protocol=ssl.PROTOCOL_TLSv1_2) context.check_hostname = False cacertfile = Path(environ.get("SSL_CACERT", "/tls/certs/ca.crt")) certfile = Path(environ.get("SSL_CLIENTCERT", "/tls/certs/orch.crt"))