Resolve "Nginx should accept ECDSA certificates" (!2693) · Merge requests · GitLab.org / omnibus-gitlab

PtyMatt requested to merge PtyMatt/omnibus-gitlab:3716-nginx-ecdsa-certs into master Aug 13, 2018

What does this MR do?

This MR adds new ciphers in the Nginx configuration file, so both RSA and ECDSA certificates are accepted by default by the web server (OpenSSL picks the adapted ones).

As this is still less common and old IDE won't accept EC certs, only modern AEAD encryption methods are enabled.

Checklist

See Definition of done.

Change added to CHANGELOG.md. Not applicable for Documentation changes and minor changes.
Documentation created/updated
Tests added
Integration tests added to GitLab QA, if applicable
MR targeting master branch
MR has a green pipeline on GitLab.com

Reviewer Checklist

In addition to above, reviewer must:

Pipeline is green on dev.gitlab.org if the change is not touching documentation or internal cookbooks

References

Resolves #3716 (closed)

Resolve "Nginx should accept ECDSA certificates"

What does this MR do?

Checklist

Reviewer Checklist

References

Merge request reports