## Change Origin TLS Compliance Modes setting `client.OriginTLSComplianceModes.Edit(ctx, params) (*OriginTLSComplianceModeEditResponse, error)` **patch** `/zones/{zone_id}/settings/origin_tls_compliance_modes` Update the set of TLS compliance modes for the zone. PATCH performs a full replace of the modes list, not a merge — the request body is treated as the complete new list, and any modes not present in it are removed. (To remove a single mode from an existing configuration, send the updated list without it.) The request body must be of the form `{"value": ["fips", "pqh"]}`. Currently supported modes are `fips` and `pqh`; an empty list clears the constraint. Future modes (e.g. `cnsa2`) may be added; clients should treat unknown values as opaque strings. Invalid mode values are rejected with a 4xx response. ### Parameters - `params OriginTLSComplianceModeEditParams` - `ZoneID param.Field[string]` Path param: Identifier. - `Value param.Field[[]string]` Body param: List of TLS compliance modes that constrain the key-exchange algorithms Cloudflare may use when establishing the TLS connection to the zone's origin. Currently supported values are `fips` (FIPS-approved curves) and `pqh` (post-quantum hybrid). Future modes (e.g. `cnsa2`) may be added; clients should treat unknown values as opaque strings. Multiple modes are combined as the intersection of their permitted algorithm lists; selections whose intersection is empty are rejected. An empty list clears the constraint. ### Returns - `type OriginTLSComplianceModeEditResponse struct{…}` - `ID OriginTLSComplianceModeEditResponseID` The identifier of the caching setting. - `const OriginTLSComplianceModeEditResponseIDOriginTLSComplianceModes OriginTLSComplianceModeEditResponseID = "origin_tls_compliance_modes"` - `Editable bool` Whether the setting is editable. - `Value []string` List of TLS compliance modes that constrain the key-exchange algorithms Cloudflare may use when establishing the TLS connection to the zone's origin. Currently supported values are `fips` (FIPS-approved curves) and `pqh` (post-quantum hybrid). Future modes (e.g. `cnsa2`) may be added; clients should treat unknown values as opaque strings. Multiple modes are combined as the intersection of their permitted algorithm lists; selections whose intersection is empty are rejected. An empty list clears the constraint. - `ModifiedOn Time` Last time this setting was modified. ### Example ```go package main import ( "context" "fmt" "github.com/cloudflare/cloudflare-go" "github.com/cloudflare/cloudflare-go/option" "github.com/cloudflare/cloudflare-go/origin_tls_compliance_modes" ) func main() { client := cloudflare.NewClient( option.WithAPIToken("Sn3lZJTBX6kkg7OdcBUAxOO963GEIyGQqnFTOFYY"), ) response, err := client.OriginTLSComplianceModes.Edit(context.TODO(), origin_tls_compliance_modes.OriginTLSComplianceModeEditParams{ ZoneID: cloudflare.F("023e105f4ecef8ad9ca31a8372d0c353"), Value: cloudflare.F([]string{"fips", "pqh"}), }) if err != nil { panic(err.Error()) } fmt.Printf("%+v\n", response.ID) } ``` #### Response ```json { "errors": [ { "code": 1000, "message": "message", "documentation_url": "documentation_url", "source": { "pointer": "pointer" } } ], "messages": [ { "code": 1000, "message": "message", "documentation_url": "documentation_url", "source": { "pointer": "pointer" } } ], "success": true, "result": { "id": "origin_tls_compliance_modes", "editable": true, "value": [ "fips", "pqh" ], "modified_on": "2014-01-01T05:20:00.12345Z" } } ```