win_chocolatey: add TLSv1.2 support for install phase (#41992)

(cherry picked from commit e3521776f5)
pull/42147/merge
Jordan Borean 6 years ago committed by Matt Clay
parent 26f8b67fbd
commit b9bff5e39a

@ -0,0 +1,2 @@
bugfixes:
- win_chocolatey - enable TLSv1.2 support when downloading the Chocolatey installer https://github.com/ansible/ansible/issues/41906

@ -47,8 +47,17 @@ Function Chocolatey-Install-Upgrade
$ChocoAlreadyInstalled = Get-Command -Name "choco.exe" -ErrorAction SilentlyContinue
if ($ChocoAlreadyInstalled -eq $null)
{
# We need to install chocolatey
# Enable TLS1.1/TLS1.2 if they're available but disabled (eg. .NET 4.5)
$security_protcols = [Net.ServicePointManager]::SecurityProtocol -bor [Net.SecurityProtocolType]::SystemDefault
if ([Net.SecurityProtocolType].GetMember("Tls11").Count -gt 0) {
$security_protcols = $security_protcols -bor [Net.SecurityProtocolType]::Tls11
}
if ([Net.SecurityProtocolType].GetMember("Tls12").Count -gt 0) {
$security_protcols = $security_protcols -bor [Net.SecurityProtocolType]::Tls12
}
[Net.ServicePointManager]::SecurityProtocol = $security_protcols
$wc = New-Object System.Net.WebClient;
if ($proxy_url)
{

Loading…
Cancel
Save