From 17bb631c0573935484f236771a069e7c11d32a14 Mon Sep 17 00:00:00 2001 From: Jiri Kozel Date: Wed, 6 Dec 2023 15:00:37 +0100 Subject: [PATCH] Enable to use not-so-secure SSL communication (UnsafeLegacyRenegotiation) in LTC --- .env.demo | 2 +- .env.dev | 2 +- .env.test | 2 +- CHANGELOG.md | 15 ++++++++++++--- doc/env-settings.md | 6 ++++++ 5 files changed, 21 insertions(+), 6 deletions(-) diff --git a/.env.demo b/.env.demo index af5d8fee0..90fb09887 100644 --- a/.env.demo +++ b/.env.demo @@ -65,7 +65,7 @@ LAYMAN_CLIENT_URL=http://layman_client:3000/client/ # client LAYMAN_CLIENT_PUBLIC_URL=http://localhost/client/ -LAYMAN_CLIENT_VERSION=v1.17.1 +LAYMAN_CLIENT_VERSION=v1.17.2 # extra hosts to be added to /etc/hosts EXTRA_HOST1=1.2.3.4:1.2.3.4 diff --git a/.env.dev b/.env.dev index 200880373..627780c2a 100644 --- a/.env.dev +++ b/.env.dev @@ -65,7 +65,7 @@ LAYMAN_CLIENT_URL=http://layman_client:3000/client/ # client LAYMAN_CLIENT_PUBLIC_URL=http://localhost:3000/client/ -LAYMAN_CLIENT_VERSION=v1.17.1 +LAYMAN_CLIENT_VERSION=v1.17.2 ############################################################################## diff --git a/.env.test b/.env.test index 94615adc2..219359460 100644 --- a/.env.test +++ b/.env.test @@ -65,7 +65,7 @@ LAYMAN_CLIENT_URL=http://layman_client_test:3000/client/ # client LAYMAN_CLIENT_PUBLIC_URL=http://layman_test_run_1:8000/client/ -LAYMAN_CLIENT_VERSION=v1.17.1 +LAYMAN_CLIENT_VERSION=v1.17.2 ############################################################################## diff --git a/CHANGELOG.md b/CHANGELOG.md index 9c5671f1f..afc9d12b6 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -5,9 +5,9 @@ ### Upgrade requirements - Change environment variable [LAYMAN_CLIENT_VERSION](doc/env-settings.md#LAYMAN_CLIENT_VERSION): ``` - LAYMAN_CLIENT_VERSION=v1.17.1 + LAYMAN_CLIENT_VERSION=v1.17.2 ``` - It was already required in v1.22.2. + It was already required in v1.22.3. - Set new environment variable [LAYMAN_ROLE_SERVICE_URI](doc/env-settings.md#LAYMAN_ROLE_SERVICE_URI) ### Migrations and checks #### Schema migrations @@ -23,14 +23,23 @@ - [GET](doc/rest.md#get-workspace-map)/[PATCH](doc/rest.md#patch-workspace-map) Workspace Map - GET Workspace [Layers](doc/rest.md#get-workspace-layers)/[Maps](doc/rest.md#get-workspace-maps) - GET [Layers](doc/rest.md#get-layers)/[Maps](doc/rest.md#get-maps)/[Publications](doc/rest.md#get-publications) -- All changes from [v1.22.1](#v1221) and [v1.22.2](#v1222). +- All changes from [v1.22.1](#v1221), [v1.22.2](#v1222) and [v1.22.3](#v1223). - [#960](https://github.com/LayerManager/layman/issues/960) Handle WMS requests with HTTP error more efficiently in timgen. - [#962](https://github.com/LayerManager/layman/issues/962) Make values of `layman_metadata.publication_status` and `status` key(s) more consistent in responses of PATCH Workspace [Layer](doc/rest.md#patch-workspace-layer)/[Map](doc/rest.md#patch-workspace-map) and GET Workspace [Layer](doc/rest.md#get-workspace-layer)/[Map](doc/rest.md#get-workspace-map). ## v1.22.3 2023-12-06 +### Upgrade requirements +- Change environment variable [LAYMAN_CLIENT_VERSION](doc/env-settings.md#LAYMAN_CLIENT_VERSION): + ``` + LAYMAN_CLIENT_VERSION=v1.17.2 + ``` ### Changes - Improve logging in Layman Test Client related to Passport.js. +- [968](https://github.com/LayerManager/layman/issues/968) Enable to use not-so-secure SSL communication (UnsafeLegacyRenegotiation) in Layman Test Client. It can be activated by environment variable [NODE_OPTIONS](doc/env-settings.md#NODE_OPTIONS): + ``` + NODE_OPTIONS="--openssl-config=/code/unsafe_openssl.cnf" + ``` ## v1.22.2 2023-11-10 diff --git a/doc/env-settings.md b/doc/env-settings.md index cc49dc551..4736f701e 100644 --- a/doc/env-settings.md +++ b/doc/env-settings.md @@ -122,6 +122,12 @@ See [`secret` at express-session documentation](https://www.npmjs.com/package/ex ### LTC_SESSION_MAX_AGE See [`cookie.maxAge` at express-session documentation](https://www.npmjs.com/package/express-session#cookiemaxage). + +### NODE_OPTIONS +See [NODE_OPTIONS](https://nodejs.org/docs/latest-v18.x/api/cli.html#node_optionsoptions). + +To enable not-so-secure SSL communication (UnsafeLegacyRenegotiation), set `NODE_OPTIONS="--openssl-config=/code/unsafe_openssl.cnf"`. + ## Connection to Redis ### LAYMAN_REDIS_URL