Mercurial > p > roundup > code
comparison scripts/oauth-get-token.py @ 7111:a7853002495c
Swap maximum_version for minumum_version in comment
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Thu, 08 Dec 2022 10:54:24 -0500 |
| parents | 0597120e0a74 |
| children |
comparison
equal
deleted
inserted
replaced
| 7110:0597120e0a74 | 7111:a7853002495c |
|---|---|
| 154 # Even unencrypted (http://) url is fine as the credentials | 154 # Even unencrypted (http://) url is fine as the credentials |
| 155 # will be saved in clear text on disk for use. So a | 155 # will be saved in clear text on disk for use. So a |
| 156 # compromised local host will still get the credentials. | 156 # compromised local host will still get the credentials. |
| 157 context = ssl.SSLContext(ssl_version=ssl.PROTOCOL_TLS_SERVER) | 157 context = ssl.SSLContext(ssl_version=ssl.PROTOCOL_TLS_SERVER) |
| 158 | 158 |
| 159 # This should not be needed. Uses Python 3.10+ setting. | 159 # This should not be needed as PROTOCOL_TLS_SERVER disables |
| 160 # context.maximum_version = ssl.TLSVersion.TLSv1_2 | 160 # unsafe protocols. Uses Python 3.10+ setting ssl.TLSVersion.... |
| 161 # for previous versions maybe: | 161 # context.minimum_version = ssl.TLSVersion.TLSv1_2 |
| 162 # for previous Python versions 3.6+ maybe: | |
| 162 # ssl.PROTOCOL_TLSv1_2 | 163 # ssl.PROTOCOL_TLSv1_2 |
| 163 # would work? | 164 # would work? |
| 164 | 165 |
| 165 context.load_cert_chain \ | 166 context.load_cert_chain \ |
| 166 ( keyfile = self.args.keyfile | 167 ( keyfile = self.args.keyfile |