Hard time getting TLS v1.2 to work

[sj3fk3]

to me it's unclear to what the configuration variable MQTT_TLS_VERSION should be set to. the documentations states:

Specifies the version of the SSL/TLS protocol to be used. By default TLS v1 is used. Previous versions (all versions beginning with SSL) are possible but not recommended due to possible security problems. Defaults to ssl.PROTOCOL_TLSv1.

Then in de code i see this:

Line 96: self.tls_version: int = ssl.PROTOCOL_TLSv1

So should it be a string or a int? and if int, what value should it be for TLSv.1.2

[sj3fk3]

I guess, it's 2, but I do think the documentation could be a little bit more clear. Also defaulting to TLSv1 might not be best idea since sliced bread.

[pikowai]

It's an integer defined in the ssl library i think, use ssl.PROTOCOL_TLSv1_2
to get v1.2

[Sohaib90]

To use TLS v1.2 all you have to do is
app.config['MQTT_TLS_ENABLED'] = True
app.config['MQTT_TLS_VERSION'] = ssl.PROTOCOL_TLSv1_2
when configuring the mqtt parameters while setting up

importing ssl and using the ssl specified TLSv1.2 is the safe way to do it