httplib: Add --xxx-min-tls-version option to select minimum tls values for HTTP servers

This allows administrators to disable TLS 1.0 and 1.1, for example. Example: rclone rcd --rc-min-tls-version=tls1.2 --rc-cert <cert> --rc-key <key>
2026-01-06 10:33:34 +00:00 · 2022-10-19 17:13:12 +01:00
parent 188b9f8cf1
commit d2fef05fe4
6 changed files with 61 additions and 2 deletions
--- a/docs/content/flags.md
+++ b/docs/content/flags.md
@@ -119,6 +119,7 @@ These flags are available for every command.
      --rc-job-expire-interval duration      Interval to check for expired async jobs (default 10s)
      --rc-key string                        SSL PEM Private key
      --rc-max-header-bytes int              Maximum size of request header (default 4096)
+      --rc-min-tls-version string            Minimum TLS version that is acceptable
      --rc-no-auth                           Don't require auth for certain methods
      --rc-pass string                       Password for authentication
      --rc-realm string                      Realm for authentication (default "rclone")
--- a/docs/content/rc.md
+++ b/docs/content/rc.md
@@ -41,6 +41,11 @@ SSL PEM Private key

 Maximum size of request header (default 4096)

+### --rc-min-tls-version=VALUE
+
+The minimum TLS version that is acceptable. Valid values are "tls1.0",
+"tls1.1", "tls1.2" and "tls1.3" (default "tls1.0").
+
 ### --rc-user=VALUE

 User name for authentication.