search

mojolicious / mojo

:sparkles: Mojolicious - Perl real-time web framework
https://mojolicious.org
Artistic License 2.0
2.66k stars 576 forks source link

How to pass tls options (force TLS 1.2) to Mojo::UserAgent? #1733

Closed knutov closed 3 years ago

knutov commented 3 years ago

What is the correct way to pass tls options to Mojo::UserAgent now?

I want to force use only TLS 1.2.

IO::Socket::SSL::set_client_defaults(SSL_version => 'TLSv12:!SSLv2:!SSLv3:!TLSv1:!TLSv11'); works for me, but this setting works only as global option.

Perl (v5.18.2, linux) Mojolicious (9.03, Waffle)

Grinnz commented 3 years ago

Please use the support channels for discussion and questions.

Mojo::UserAgent only has passthrough for the ca, cert, key, and insecure TLS options currently - setting global defaults is an alternative.

jberger commented 3 years ago

Can't you use https://docs.mojolicious.org/Mojo/UserAgent#socket_options ?

Grinnz commented 3 years ago

That accepts IO::Socket::IP options not TLS options.

kraih commented 3 years ago

As a feature request this would have been reasonable.