Skip to content
Cloudflare API
Start here
API Reference

Origin TLS Compliance Modes

Get Origin TLS Compliance Modes setting
client.originTLSComplianceModes.get(OriginTLSComplianceModeGetParams { zone_id } params, RequestOptionsoptions?): OriginTLSComplianceModeGetResponse { id, editable, value, modified_on }
GET/zones/{zone_id}/settings/origin_tls_compliance_modes
Replace Origin TLS Compliance Modes setting
client.originTLSComplianceModes.update(OriginTLSComplianceModeUpdateParams { zone_id, value } params, RequestOptionsoptions?): OriginTLSComplianceModeUpdateResponse { id, editable, value, modified_on }
PUT/zones/{zone_id}/settings/origin_tls_compliance_modes
Change Origin TLS Compliance Modes setting
client.originTLSComplianceModes.edit(OriginTLSComplianceModeEditParams { zone_id, value } params, RequestOptionsoptions?): OriginTLSComplianceModeEditResponse { id, editable, value, modified_on }
PATCH/zones/{zone_id}/settings/origin_tls_compliance_modes
Delete Origin TLS Compliance Modes setting
client.originTLSComplianceModes.delete(OriginTLSComplianceModeDeleteParams { zone_id } params, RequestOptionsoptions?): OriginTLSComplianceModeDeleteResponse { id, editable, modified_on }
DELETE/zones/{zone_id}/settings/origin_tls_compliance_modes
ModelsExpand Collapse
OriginTLSComplianceModeGetResponse { id, editable, value, modified_on }
id: "origin_tls_compliance_modes"

The identifier of the caching setting.

editable: boolean

Whether the setting is editable.

value: Array<string>

List of TLS compliance modes that constrain the key-exchange algorithms Cloudflare may use when establishing the TLS connection to the zone’s origin. Currently supported values are fips (FIPS-approved curves) and pqh (post-quantum hybrid). Future modes (e.g. cnsa2) may be added; clients should treat unknown values as opaque strings. Multiple modes are combined as the intersection of their permitted algorithm lists; selections whose intersection is empty are rejected. An empty list clears the constraint.

modified_on?: string | null

Last time this setting was modified.

formatdate-time
OriginTLSComplianceModeUpdateResponse { id, editable, value, modified_on }
id: "origin_tls_compliance_modes"

The identifier of the caching setting.

editable: boolean

Whether the setting is editable.

value: Array<string>

List of TLS compliance modes that constrain the key-exchange algorithms Cloudflare may use when establishing the TLS connection to the zone’s origin. Currently supported values are fips (FIPS-approved curves) and pqh (post-quantum hybrid). Future modes (e.g. cnsa2) may be added; clients should treat unknown values as opaque strings. Multiple modes are combined as the intersection of their permitted algorithm lists; selections whose intersection is empty are rejected. An empty list clears the constraint.

modified_on?: string | null

Last time this setting was modified.

formatdate-time
OriginTLSComplianceModeEditResponse { id, editable, value, modified_on }
id: "origin_tls_compliance_modes"

The identifier of the caching setting.

editable: boolean

Whether the setting is editable.

value: Array<string>

List of TLS compliance modes that constrain the key-exchange algorithms Cloudflare may use when establishing the TLS connection to the zone’s origin. Currently supported values are fips (FIPS-approved curves) and pqh (post-quantum hybrid). Future modes (e.g. cnsa2) may be added; clients should treat unknown values as opaque strings. Multiple modes are combined as the intersection of their permitted algorithm lists; selections whose intersection is empty are rejected. An empty list clears the constraint.

modified_on?: string | null

Last time this setting was modified.

formatdate-time
OriginTLSComplianceModeDeleteResponse { id, editable, modified_on }
id: "origin_tls_compliance_modes"

The identifier of the caching setting.

editable: boolean

Whether the setting is editable.

modified_on?: string | null

Last time this setting was modified.

formatdate-time