Mercurial > hg > orthanc

diff OrthancServer/Resources/Configuration.json @ 4382:3aacd2bd8bbc varian

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
review changeset 4381:df313e410f0c
author Sebastien Jodogne <s.jodogne@gmail.com>
date Thu, 17 Dec 2020 15:10:04 +0100
parents df313e410f0c
children 7e0d015ad109
line wrap: on
line diff
--- a/OrthancServer/Resources/Configuration.json	Fri Dec 11 11:59:10 2020 -0500
+++ b/OrthancServer/Resources/Configuration.json	Thu Dec 17 15:10:04 2020 +0100
@@ -171,19 +171,24 @@
   "SslCertificate" : "certificate.pem",
 
   // Sets the minimum accepted SSL protocol version
-  // See https://github.com/civetweb/civetweb/blob/master/docs/UserManual.md 
-  // "ssl_protocol_version" for mapping
-  // By default require SSL 1.2
-  // This option is only meaningful if "SslEnabled" is true.
+  // (cf. "ssl_protocol_version" option of civetweb). By default,
+  // require SSL 1.2. This option is only meaningful if "SslEnabled"
+  // is true. (new in Orthanc 1.8.2)
+  //
+  // Value => Protocols
+  //   0      SSL2+SSL3+TLS1.0+TLS1.1+TLS1.2
+  //   1      SSL3+TLS1.0+TLS1.1+TLS1.2
+  //   2      TLS1.0+TLS1.1+TLS1.2
+  //   3      TLS1.1+TLS1.2
+  //   4      TLS1.2
+  "SslMinimumProtocolVersion" : 4,
+
+  // Set the accepted ciphers for SSL connections. The ciphers must be
+  // provided as a list of strings. If not set, this will default to
+  // FIPS 140-2 ciphers. This option is only meaningful if
+  // "SslEnabled" is true. (new in Orthanc 1.8.2)
   /**
-    "SslMinimumProtocolVersion" : "4",
-  **/
-
-  // Set the allowed ciphers for SSL connections
-  // If not set, this will default to FIPS 140-2 ciphers
-  // This option is only meaningful if "SslEnabled" is true.
-  /**
-    "SslCiphersAccepted" : "",
+    "SslCiphersAccepted" : [ "AES128-GCM-SHA256" ],
   **/
 
   // Whether or not peer client certificates shall be checked. This