freeipa/ipaplatform/fedora
Christian Heimes 0451db9d3f Enable TLS 1.3 support on the server
urllib3 now supports post-handshake authentication with TLS 1.3. Enable
TLS 1.3 support for Apache HTTPd.

The update depends on bug fixes for TLS 1.3 PHA support in urllib3 and
Apache HTTPd. New builds are available in freeipa-master COPR and in
F30/F31.

Overwrite crypto-policy on Fedora only. Fedora 31 and earlier have TLS
1.0 and 1.1 still enabled by default.

Fixes: https://pagure.io/freeipa/issue/8125
Signed-off-by: Christian Heimes <cheimes@redhat.com>
Reviewed-By: Rob Crittenden <rcritten@redhat.com>
Reviewed-By: Thomas Woerner <twoerner@redhat.com>
2019-12-02 16:48:07 +01:00
..
__init__.py Start to deprecate Python 2 and 3.5 2018-06-19 14:37:53 +02:00
constants.py Use system-wide crypto policy for TLS ciphers 2019-07-02 16:38:00 +02:00
paths.py ipa-client-automount: handle NFS configuration file changes 2019-02-27 21:42:39 +01:00
services.py Use nis-domainname.service on all RH platforms 2019-07-04 10:43:51 +02:00
tasks.py Enable TLS 1.3 support on the server 2019-12-02 16:48:07 +01:00