rspec/rules/S4423/python/how-to-fix-it/ssl.adoc

== How to fix it in Python Standard Library

=== Code examples

==== Noncompliant code example

[source,python,diff-id=21,diff-type=noncompliant]
----
import ssl

ssl.SSLContext(ssl.PROTOCOL_SSLv3) # Noncompliant
----

==== Compliant solution

[source,python,diff-id=21,diff-type=compliant]
----
import ssl

context = ssl.create_default_context(ssl.Purpose.CLIENT_AUTH)
context.minimum_version = ssl.TLSVersion.TLSv1_2
----

=== How does this work?

include::../../common/fix/fix.adoc[]
Modify S4423: Learn-As-You-Code Migration (#2097) Co-authored-by: hendrik-buchwald-sonarsource <64110887+hendrik-buchwald-sonarsource@users.noreply.github.com> 2023-06-20 17:36:01 +02:00			`== How to fix it in Python Standard Library`

			`=== Code examples`

			`==== Noncompliant code example`

Diff blocks: fix incorrect use for python (#2795) Improvement identified in #2790. Add a prefix to the diff-id when it is used multiple times in different "how to fix it in XYZ" sections to avoid ambiguity and pedantically follow the spec: > A single and unique diff-id should be used only once for each type of code example as shown in the description of a rule. Obvious typos around `diff-type` were fixed. An obvious extra use of diff blocks was removed. 2023-08-21 15:22:49 +02:00			`[source,python,diff-id=21,diff-type=noncompliant]`
Modify S4423: Learn-As-You-Code Migration (#2097) Co-authored-by: hendrik-buchwald-sonarsource <64110887+hendrik-buchwald-sonarsource@users.noreply.github.com> 2023-06-20 17:36:01 +02:00			`----`
			`import ssl`

			`ssl.SSLContext(ssl.PROTOCOL_SSLv3) # Noncompliant`
			`----`

			`==== Compliant solution`

Diff blocks: fix incorrect use for python (#2795) Improvement identified in #2790. Add a prefix to the diff-id when it is used multiple times in different "how to fix it in XYZ" sections to avoid ambiguity and pedantically follow the spec: > A single and unique diff-id should be used only once for each type of code example as shown in the description of a rule. Obvious typos around `diff-type` were fixed. An obvious extra use of diff blocks was removed. 2023-08-21 15:22:49 +02:00			`[source,python,diff-id=21,diff-type=compliant]`
Modify S4423: Learn-As-You-Code Migration (#2097) Co-authored-by: hendrik-buchwald-sonarsource <64110887+hendrik-buchwald-sonarsource@users.noreply.github.com> 2023-06-20 17:36:01 +02:00			`----`
			`import ssl`

Modify rule S4423: Adjust Python compliant examples (APPSEC-1556) (#3688) * Use recommended helper method in compliant solution * Change minimal version to TLSv1.2 (to match other languages) 2024-02-29 12:36:15 +01:00			`context = ssl.create_default_context(ssl.Purpose.CLIENT_AUTH)`
			`context.minimum_version = ssl.TLSVersion.TLSv1_2`
Modify S4423: Learn-As-You-Code Migration (#2097) Co-authored-by: hendrik-buchwald-sonarsource <64110887+hendrik-buchwald-sonarsource@users.noreply.github.com> 2023-06-20 17:36:01 +02:00			`----`

			`=== How does this work?`

			`include::../../common/fix/fix.adoc[]`