Open 0xAurelius opened 2 years ago
Specific URL: https://carbon.klimadao.finance
Depreciated TLS Versions: Article states 'March 31, 2022, the minimum default TLS version for custom domains will be 1.2' , https://www.digitalocean.com/blog/new-in-digitalocean-app-platform-glitch-integration, BUT both TLS 1.0 and TLS 1.1 is active.
Test TLS curl -o /dev/null -L -v -s https://carbon.klimadao.finance --tls-max 1.0 curl -o /dev/null -L -v -s https://carbon.klimadao.finance --tls-max 1.1
TLS Change confirmed (OK) - TLS 1.0 & TLS 1.1 not offered any more.
Not sure if this will be possible with DOAP, might need to tackle after we move to k8s hosting
from gordob:
we can set CORS on DOAP, and we can in theory set custom headers on the Dash app as outlined here: https://github.com/plotly/dash-renderer/pull/75