Enable to use not-so-secure SSL communication (UnsafeLegacyRenegotiat…

…ion) in LTC
LayerManager · Dec 6, 2023 · 9227977 · 9227977
1 parent dae668e
commit 9227977
Show file tree

Hide file tree

Showing 5 changed files with 21 additions and 6 deletions.
diff --git a/.env.demo b/.env.demo
@@ -65,7 +65,7 @@ LAYMAN_CLIENT_URL=http://layman_client:3000/client/
 
 # client
 LAYMAN_CLIENT_PUBLIC_URL=http://localhost/client/
-LAYMAN_CLIENT_VERSION=v1.17.1
+LAYMAN_CLIENT_VERSION=v1.17.2
 
 # extra hosts to be added to /etc/hosts
 EXTRA_HOST1=1.2.3.4:1.2.3.4

diff --git a/.env.dev b/.env.dev
@@ -65,7 +65,7 @@ LAYMAN_CLIENT_URL=http://layman_client:3000/client/
 
 # client
 LAYMAN_CLIENT_PUBLIC_URL=http://localhost:3000/client/
-LAYMAN_CLIENT_VERSION=v1.17.1
+LAYMAN_CLIENT_VERSION=v1.17.2
 
 
 ##############################################################################

diff --git a/.env.test b/.env.test
@@ -65,7 +65,7 @@ LAYMAN_CLIENT_URL=http://layman_client_test:3000/client/
 
 # client
 LAYMAN_CLIENT_PUBLIC_URL=http://layman_test_run_1:8000/client/
-LAYMAN_CLIENT_VERSION=v1.17.1
+LAYMAN_CLIENT_VERSION=v1.17.2
 
 
 ##############################################################################

diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -5,9 +5,9 @@
 ### Upgrade requirements
 - Change environment variable [LAYMAN_CLIENT_VERSION](doc/env-settings.md#LAYMAN_CLIENT_VERSION):
   ```
-  LAYMAN_CLIENT_VERSION=v1.17.1
+  LAYMAN_CLIENT_VERSION=v1.17.2
   ```
-  It was already required in v1.22.2.
+  It was already required in v1.22.3.
 - Set new environment variable [LAYMAN_ROLE_SERVICE_URI](doc/env-settings.md#LAYMAN_ROLE_SERVICE_URI)
 ### Migrations and checks
 #### Schema migrations
@@ -23,14 +23,23 @@
   - [GET](doc/rest.md#get-workspace-map)/[PATCH](doc/rest.md#patch-workspace-map) Workspace Map
   - GET Workspace [Layers](doc/rest.md#get-workspace-layers)/[Maps](doc/rest.md#get-workspace-maps)
   - GET [Layers](doc/rest.md#get-layers)/[Maps](doc/rest.md#get-maps)/[Publications](doc/rest.md#get-publications)
-- All changes from [v1.22.1](#v1221) and [v1.22.2](#v1222).
+- All changes from [v1.22.1](#v1221), [v1.22.2](#v1222) and [v1.22.3](#v1223).
 - [#960](https://github.com/LayerManager/layman/issues/960) Handle WMS requests with HTTP error more efficiently in timgen.
 - [#962](https://github.com/LayerManager/layman/issues/962) Make values of `layman_metadata.publication_status` and `status` key(s) more consistent in responses of PATCH Workspace [Layer](doc/rest.md#patch-workspace-layer)/[Map](doc/rest.md#patch-workspace-map) and GET Workspace [Layer](doc/rest.md#get-workspace-layer)/[Map](doc/rest.md#get-workspace-map).
 
 ## v1.22.3
  2023-12-06
+### Upgrade requirements
+- Change environment variable [LAYMAN_CLIENT_VERSION](doc/env-settings.md#LAYMAN_CLIENT_VERSION):
+  ```
+  LAYMAN_CLIENT_VERSION=v1.17.2
+  ```
 ### Changes
 - Improve logging in Layman Test Client related to Passport.js.
+- [968](https://github.com/LayerManager/layman/issues/968) Enable to use not-so-secure SSL communication (UnsafeLegacyRenegotiation) in Layman Test Client. It can be activated by environment variable [NODE_OPTIONS](doc/env-settings.md#NODE_OPTIONS):
+  ```
+  NODE_OPTIONS="--openssl-config=/code/unsafe_openssl.cnf"
+  ```
 
 ## v1.22.2
  2023-11-10

diff --git a/doc/env-settings.md b/doc/env-settings.md
@@ -122,6 +122,12 @@ See [`secret` at express-session documentation](https://www.npmjs.com/package/ex
 ### LTC_SESSION_MAX_AGE
 See [`cookie.maxAge` at express-session documentation](https://www.npmjs.com/package/express-session#cookiemaxage).
 
+
+### NODE_OPTIONS
+See [NODE_OPTIONS](https://nodejs.org/docs/latest-v18.x/api/cli.html#node_optionsoptions).
+
+To enable not-so-secure SSL communication (UnsafeLegacyRenegotiation), set `NODE_OPTIONS="--openssl-config=/code/unsafe_openssl.cnf"`.
+
 ## Connection to Redis
 
 ### LAYMAN_REDIS_URL