Skip to content

[SSL] Update index.mdx #22103

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: production
Choose a base branch
from
Open

[SSL] Update index.mdx #22103

wants to merge 1 commit into from

Conversation

ngayerie
Copy link
Contributor

Summary

Clarifying ACM vs SaaS for the cipher suites configuration

@ngayerie ngayerie requested review from RebeccaTamachiro and a team as code owners April 30, 2025 16:09
@github-actions github-actions bot added the product:ssl Related to SSL label Apr 30, 2025
@hyperlint-ai Hyperlint AI
Copy link
Contributor

hyperlint-ai bot commented Apr 30, 2025

Howdy and thanks for contributing to our repo. The Cloudflare team reviews new, external PRs within two (2) weeks. If it's been two weeks or longer without any movement, please tag the PR Assignees in a comment.

We review internal PRs within 1 week. If it's something urgent or has been sitting without a comment, start a thread in the Developer Docs space internally.

PR Change Summary

Clarified the differences between Advanced Certificate Manager and Cloudflare for SaaS regarding cipher suites configuration.

  • Updated the description of cipher suites configuration for Advanced Certificate Manager.
  • Added information about cipher suites configuration for Cloudflare for SaaS.
  • Clarified the context for restricting cipher suites in relation to custom hostnames.

Modified Files

  • src/content/docs/ssl/edge-certificates/additional-options/cipher-suites/customize-cipher-suites/index.mdx
How can I customize these reviews?

Check out the Hyperlint AI Reviewer docs for more information on how to customize the review.

If you just want to ignore it on this PR, you can add the hyperlint-ignore label to the PR. Future changes won't trigger a Hyperlint review.

Note specifically for link checks, we only check the first 30 links in a file and we cache the results for several hours (for instance, if you just added a page, you might experience this). Our recommendation is to add hyperlint-ignore to the PR to ignore the link check for this PR.

@github-actions GitHub Actions
Copy link
Contributor

Preview URL: https://a10098fe.preview.developers.cloudflare.com
Preview Branch URL: https://ngayerie-patch-15.preview.developers.cloudflare.com

Files with changes (up to 15)

Original Link Updated Link
https://developers.cloudflare.com/ssl/edge-certificates/additional-options/cipher-suites/customize-cipher-suites/ https://ngayerie-patch-15.preview.developers.cloudflare.com/ssl/edge-certificates/additional-options/cipher-suites/customize-cipher-suites/

kurumar
kurumar reviewed Apr 30, 2025
View reviewed changes
...ocs/ssl/edge-certificates/additional-options/cipher-suites/customize-cipher-suites/index.mdx
@@ -11,7 +11,8 @@ head:

import { Render, TabItem, Tabs, DirectoryListing } from "~/components";

With an [Advanced Certificate Manager](/ssl/edge-certificates/advanced-certificate-manager/) subscription, you can restrict connections between Cloudflare and clients — such as your visitor's browser — to specific [cipher suites](/ssl/edge-certificates/additional-options/cipher-suites/).
With an [Advanced Certificate Manager](/ssl/edge-certificates/advanced-certificate-manager/) subscription, you can restrict connections between clients — such as your visitor's browser — and Cloudflare to specific [cipher suites](/ssl/edge-certificates/additional-options/cipher-suites/).
With a [Cloudflare for SaaS](/cloudflare-for-platforms/cloudflare-for-saas/) subscription, you can configure cipher suites for the connection between clients and [Custom Hostnames](/cloudflare-for-platforms/cloudflare-for-saas/domain-support/).
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thank you for the PR, @ngayerie! I would like to suggest making it a blue box NOTE instead of a paragraph, since it's a guide for the Advanced Certificate subscription. This way, we can redirect people who start reading it and are looking for the Custom Hostname guide.

:::note
If you are a SaaS provider looking to restrict cipher suites for connections to [Custom Hostnames](/cloudflare-for-platforms/cloudflare-for-saas/domain-support/), this can be configured with a [Cloudflare for SaaS](/cloudflare-for-platforms/cloudflare-for-saas/) subscription. Refer to [TLS settings - Cloudflare for SaaS](/cloudflare-for-platforms/cloudflare-for-saas/security/certificate-management/enforce-mtls/#cipher-suites) instead.
:::

And after that, we can delete the ### Cloudflare for SaaS part from this page entirely, as it caused confusion in the first place.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kurumar kurumar kurumar left review comments

@RebeccaTamachiro RebeccaTamachiro Awaiting requested review from RebeccaTamachiro RebeccaTamachiro is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

@RebeccaTamachiro RebeccaTamachiro

Labels
product:ssl Related to SSL size/xs
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@ngayerie @kurumar @RebeccaTamachiro