TLS 1.3 Support

[Joe-Winchester]

Is your feature request related to a problem or limitation? Please describe.
Investigate TLS 1.3 and allowed ciphers within Zowe

[1000TurquoisePogs]

Currently, node 12 supports tls 1.3, but I don't believe 8 does.
I heard from Petr that java 8 doesnt support tls 1.3 either.
Yet, sooner or later there will be a java that supports 1.3.
It could be a long time until the minimum java & node we support support 1.3, so until then I suggest a transition period where zowe will accept either 1.2 or 1.3, and clients can handle this behavior. It may also be possible for us to have a heterogeneous tls support by which our node services could have this 1.3-optional behavior while the java services wouldn't yet.

[supmi01]

I think it makes sense to list tls support per component.
Since Zowe is modular, to the point, you can run components like APIML standalone, without having to install node at all.

[supmi01]

It looks like TLS 1.3 support was added back to Java 8, in February this year please confirm @achmelo
I am reading this https://www.ibm.com/common/ssi/ShowDoc.wss?docURL=/common/ssi/rep_ca/8/897/ENUS220-008/index.html&request_locale=en
And this https://www.ibm.com/support/pages/apar/PH19502

[balhar-jakub]

We need to verify that we have tests in place in the Marist system that uses TLS 1.3 setup. I believe this is missing at the moment.
Once we have this verification we need to make sure that the documentation is updated appropriately.

With V3 I believe we should look into changing TLS 1.3 as the default.

[1000TurquoisePogs]

I've observed Zowe defaulting to TLS v1.3 for a long time, within v2 and v3.
The zowe yaml now makes this both more obvious but also configurable https://github.com/zowe/zowe-install-packaging/blob/v3.x/staging/example-zowe.yaml#L352
I'm closing this as a result but please re-open if you think I misunderstood.