[SSPCPP-641] add ability to set SOAP client protocols and cipher suites Created:
15/Jan/15 Updated: 15/Jan/15
Status:
Project:
Component/s:
Affects
Version/s:
Fix Version/s:
Open
Shibboleth SP - C++
SAML 1.x Single Sign-On, SAML 2.0 Single Sign-On
2.5.3
Type:
Reporter:
Resolution:
Labels:
Remaining
Estimate:
Time Spent:
Original
Estimate:
New Feature
Ian Young
Unresolved
SOAP
Not Specified
None
Priority:
Assignee:
Major
Scott Cantor
Not Specified
Not Specified
Multiple
Operating
System:
Multiple
CPU Type:
C/C++ Compiler: Multiple
Multiple
Web Server:
Description
Given the exposure given to cryptographic issues in the last year, it would be nice for the SP to
have the following abilities related to its TLS client as used in back-channel queries:

ability to set the permitted protocols and cipher suites for outbound connections (I
thought the latter was already available, but I can't find any documentation for it)

ability to discover the effective permitted protocols and cipher suites the SP's client will
use, e.g., by logging

ideally, but probably less importantly, a way of getting the SP's client to log the
negotiated protocol and cipher suite when it establishes a connection
Generated at Tue Feb 09 14:11:24 EST 2016 using JIRA 7.0.10#70120sha1:37e3d7a6fc4d580639533e7f7c232c925e554a6a.