ctripcorp/zeus
1
1
Fork 0
mirror of https://github.com/ctripcorp/zeus.git synced 2024-09-20 15:46:01 +08:00
Code Issues Packages Projects Releases Wiki Activity

add ssl protocol config

Browse source
This commit is contained in:
fanqq 2016-07-05 14:43:29 +08:00
parent d580f5d27f
commit f7c3f12fb6
1 changed files with 12 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
src/main/java/com/ctrip/zeus/service/build/conf/ServerConf.java
View file

@ -52,6 +52,7 @@ public class ServerConf {
confWriter.writeCommand("ssl", "on");
confWriter.writeCommand("ssl_certificate", SSL_PATH + vsId + "/ssl.crt");
confWriter.writeCommand("ssl_certificate_key", SSL_PATH + vsId + "/ssl.key");
confWriter.writeCommand("ssl_protocols",getProtocols(slbId,vsId));
}
if (configHandler.getEnable("server.vs.health.check", slbId, vsId, null, false)) {
@ -79,6 +80,17 @@ public class ServerConf {
return confWriter.getValue();
}
private String getProtocols(Long slbId, Long vsId) throws Exception {
String result = "TLSv1 TLSv1.1 TLSv1.2";
if (configHandler.getEnable("ssl.protocol.sslv2",slbId,vsId,null,false)){
result += " SSLv2";
}
if (configHandler.getEnable("ssl.protocol.sslv3",slbId,vsId,null,false)){
result += " SSLv3";
}
return result;
}
private String getServerNames(VirtualServer vs) throws Exception {
StringBuilder b = new StringBuilder(128);