Deprecation of TLS 1.0 and 1.1 on Contentful product domains

Scheduled Maintenance Report for Contentful

Completed

The scheduled maintenance has been completed.

Posted Oct 31, 2019 - 09:50 UTC

In progress

Scheduled maintenance is currently in progress. We will provide updates as necessary.

Posted Oct 31, 2019 - 00:00 UTC

Scheduled

Related to https://www.contentfulstatus.com/incidents/5mx2zyt96c4t

As of October 31st, 2019 the following product domains will no longer be supporting TLS versions 1.0 and 1.1. That means TLS 1.2 (with HTTPS) will be required to use services available via a specific domain:

api.contentful.com
app.contentful.com
assets.contentful.com/assets.ctfassets.net
downloads.contentful.com
images.contentful.com
preview.contentful.com
static.contentful.com
upload.contentful.com
videos.contentful.com

Q: Why is this being done?

With the earlier versions of TLS/SSL, there have been security vulnerabilities identified that rendered these protocol versions unsafe. We already see less than 1% of all API traffic to be using older versions of TLS, and we believe this change will help the rest of customers to make the switch to more reliable and safer versions of TLS protocol.

Q: How does this affect me?

We have contacted most of the customers using TLS 1.0 and/or TLS 1.1 with our APIs. If we have not contacted you and you are unsure if and how this change affects your app or site please feel free to reach out to Contentful Support. We are also happy to assist with the migration.

Posted Sep 23, 2019 - 09:23 UTC

This scheduled maintenance affected: Web App and Assets CDN.