From 107dc321de5172aebfbb63a16f0aff28c0f26747 Mon Sep 17 00:00:00 2001 From: Bjørn Christian Seime Date: Wed, 23 Jun 2021 09:00:26 +0200 Subject: Add feature flag for overriding TLS ciphers --- .../java/com/yahoo/vespa/config/server/deploy/ModelContextImpl.java | 5 +++++ 1 file changed, 5 insertions(+) (limited to 'configserver') diff --git a/configserver/src/main/java/com/yahoo/vespa/config/server/deploy/ModelContextImpl.java b/configserver/src/main/java/com/yahoo/vespa/config/server/deploy/ModelContextImpl.java index 94cfba12453..4fa221f3910 100644 --- a/configserver/src/main/java/com/yahoo/vespa/config/server/deploy/ModelContextImpl.java +++ b/configserver/src/main/java/com/yahoo/vespa/config/server/deploy/ModelContextImpl.java @@ -298,6 +298,7 @@ public class ModelContextImpl implements ModelContext { private final StringFlag jvmGCOptionsFlag; private final boolean allowDisableMtls; private final List operatorCertificates; + private final List tlsCiphersOverride; public Properties(ApplicationId applicationId, ConfigserverConfig configserverConfig, @@ -336,6 +337,8 @@ public class ModelContextImpl implements ModelContext { this.allowDisableMtls = PermanentFlags.ALLOW_DISABLE_MTLS.bindTo(flagSource) .with(FetchVector.Dimension.APPLICATION_ID, applicationId.serializedForm()).value(); this.operatorCertificates = operatorCertificates; + this.tlsCiphersOverride = PermanentFlags.TLS_CIPHERS_OVERRIDE.bindTo(flagSource) + .with(FetchVector.Dimension.APPLICATION_ID, applicationId.serializedForm()).value(); } @Override public ModelContext.FeatureFlags featureFlags() { return featureFlags; } @@ -409,6 +412,8 @@ public class ModelContextImpl implements ModelContext { return operatorCertificates; } + @Override public List tlsCiphersOverride() { return tlsCiphersOverride; } + public String flagValueForClusterType(StringFlag flag, Optional clusterType) { return clusterType.map(type -> flag.with(CLUSTER_TYPE, type.name())) .orElse(flag) -- cgit v1.2.3