Add TLS version and cipher to the accessLog

2021-01-19 18:52:06 +10:00 · 2021-01-19 18:52:06 +10:00 · b05a5c818d
commit b05a5c818d
parent 41d22ef17e
6 changed files with 54 additions and 17 deletions
--- a/pkg/middlewares/accesslog/logger_test.go
+++ b/pkg/middlewares/accesslog/logger_test.go
@ -355,9 +355,11 @@ func TestLoggerJSON(t *testing.T) {
 				Duration:                  assertFloat64NotZero(),
 				Overhead:                  assertFloat64NotZero(),
 				RetryAttempts:             assertFloat64(float64(testRetryAttempts)),
+				TLSVersion:                assertString("1.3"),
+				TLSCipher:                 assertString("TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256"),
 				"time":                    assertNotEmpty(),
-				"StartLocal":              assertNotEmpty(),
-				"StartUTC":                assertNotEmpty(),
+				StartLocal:                assertNotEmpty(),
+				StartUTC:                  assertNotEmpty(),
 			},
 		},
 		{
@ -772,7 +774,10 @@ func doLoggingTLSOpt(t *testing.T, config *types.AccessLog, enableTLS bool) {
 		},
 	}
 	if enableTLS {
-		req.TLS = &tls.ConnectionState{}
+		req.TLS = &tls.ConnectionState{
+			Version:     tls.VersionTLS13,
+			CipherSuite: tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
+		}
 	}

 	logger.ServeHTTP(httptest.NewRecorder(), req, http.HandlerFunc(logWriterTestHandlerFunc))