TLJH How to set TLS options for traefik

stephan · May 23, 2022, 10:25am

Hi,

I am a system administrator at an university and manage a jupyter installation here.
Recently I got an email, that the SSL configuration is not secure and that I should update asap.

I tried to use the following traefik config:

[tls]
  [tls.options]
    [tls.options.default]
       minVersion = "VersionTLS12"
       sniStrict = true
       cipherSuites = [
         "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384",
         "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305",
         "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256",
         "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256",
         "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305",
         "TLS_AES_128_GCM_SHA256",
         "TLS_AES_256_GCM_SHA384",
         "TLS_CHACHA20_POLY1305_SHA256",
      ]
      curvePreferences = [
        "CurveP521",
        "CurveP384"
      ]
        [tls.options.mintls13]
            minVersion = "VersionTLS13"

I both tried to place a file “ssl.toml” in “/opt/tljh/config/traefik_config.d” and “/opt/tljh/state/rules”.

It seems, that the file is completely ignored. What am I missing? Incorrect snytax? Wrong directory?

Kind regards,
Stephan

Topic		Replies	Views
Problems with TLJH HTTPS / SSL problems JupyterHub jupyterhub	2	542	June 6, 2020
How to host Jupyterhub at a given URL? The Littlest JupyterHub jupyterhub , how-to , help-wanted	3	1446	September 12, 2020
Can't access TLJH via a browser JupyterHub help-wanted	2	885	February 3, 2023
Connection is not secure with automatic HTTPS JupyterHub	3	1022	August 3, 2021
Adding new rules to the tljh traefik proxy JupyterHub help-wanted	0	422	July 2, 2021

TLJH How to set TLS options for traefik

Related topics