How we can configure cipher suites in Ratpack?

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

How we can configure cipher suites in Ratpack?

ankit8051
In my Ratpack + Spring application, there is a requirement to use TLS 1.2 security levels and to enforce following ciphers.

TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384
TLS_RSA_WITH_AES_256_GCM_SHA384
TLS_RSA_WITH_AES_256_CBC_SHA256
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384
TLS_DHE_RSA_WITH_AES_256_CBC_SHA256

I don't find any way for that.

Please help me to get the solution.

Thanks in advance.
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: How we can configure cipher suites in Ratpack?

Denys
You can find an example in the test ratpack.ssl.HttpsSpec

In the end configuration is made through standard Java http://docs.oracle.com/javase/8/docs/api/javax/net/ssl/SSLContext.html

And algorythms are set with http://docs.oracle.com/javase/8/docs/api/javax/net/ssl/SSLParameters.html#setAlgorithmConstraints-java.security.AlgorithmConstraints-

Java 8 docs say it supports TLSv1 but you have to check about TLSv1.2 version specifically ...
Loading...