Everything seems fine, but now I want to disable TLS 1.0 and 1.1; I've found a number of posts online that suggest adding a line like the following to my /etc/shiny-server/shiny-server.conf
ssl_protocols TLSv1.2;
But after adding it, the shiny server fails to launch; shiny.log gives the error:
Hi, unfortunately there isn't a way to control SSL settings like this directly with Shiny Server Pro.
I think you're right, the posts you found were talking about running Shiny Server "behind" nginx, which is a fine way to do it. It's definitely the direction I recommend going if you want this degree of control over SSL settings.
FYI, we're going to add the ability to disable TLS 1.0 and/or 1.1 in the next version of Shiny Server Pro (1.5.8, expected to ship in late August). Thanks for the feedback.