From 0f39171f93a0d90ee514f40415a0450bd4ae7fb4 Mon Sep 17 00:00:00 2001
From: JonnyWong16 <9099342+JonnyWong16@users.noreply.github.com>
Date: Mon, 14 Nov 2022 11:09:22 -0800
Subject: [PATCH] Make webserver TLS version advanced config

Ref: #1870
---
 plexpy/config.py   | 1 +
 plexpy/webstart.py | 7 ++++++-
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/plexpy/config.py b/plexpy/config.py
index 724e1a08..544cf79a 100644
--- a/plexpy/config.py
+++ b/plexpy/config.py
@@ -126,6 +126,7 @@ _CONFIG_DEFINITIONS = {
     'HTTPS_KEY': (str, 'General', ''),
     'HTTPS_DOMAIN': (str, 'General', 'localhost'),
     'HTTPS_IP': (str, 'General', '127.0.0.1'),
+    'HTTPS_MIN_TLS_VERSION': (str, 'Advanced', 'TLSv1.2'),
     'HTTP_BASIC_AUTH': (int, 'General', 0),
     'HTTP_ENVIRONMENT': (str, 'General', 'production'),
     'HTTP_HASH_PASSWORD': (int, 'General', 1),
diff --git a/plexpy/webstart.py b/plexpy/webstart.py
index 3b8a1a90..964a8b75 100644
--- a/plexpy/webstart.py
+++ b/plexpy/webstart.py
@@ -46,6 +46,7 @@ def start():
         'https_cert': plexpy.CONFIG.HTTPS_CERT,
         'https_cert_chain': plexpy.CONFIG.HTTPS_CERT_CHAIN,
         'https_key': plexpy.CONFIG.HTTPS_KEY,
+        'https_min_tls_version': plexpy.CONFIG.HTTPS_MIN_TLS_VERSION,
         'http_username': plexpy.CONFIG.HTTP_USERNAME,
         'http_password': plexpy.CONFIG.HTTP_PASSWORD,
         'http_basic_auth': plexpy.CONFIG.HTTP_BASIC_AUTH
@@ -106,7 +107,11 @@ def initialize(options):
             purpose=ssl.Purpose.CLIENT_AUTH,
             cafile=https_cert_chain
         )
-        context.minimum_version = ssl.TLSVersion.TLSv1_2
+
+        min_tls_version = options['https_min_tls_version'].replace('.', '_')
+        context.minimum_version = getattr(ssl.TLSVersion, min_tls_version, ssl.TLSVersion.TLSv1_2)
+        logger.debug("Tautulli WebStart :: Web server minimum TLS version set to %s.", context.minimum_version.name)
+
         context.load_cert_chain(https_cert, https_key)
 
         options_dict['server.ssl_context'] = context