From 6246d9e0a449dc63da3a24e155136fbe4f842921 Mon Sep 17 00:00:00 2001
From: Jarrod Johnson <jjohnson2@lenovo.com>
Date: Thu, 21 May 2020 14:29:58 -0400
Subject: [PATCH] Default to never allowing insecure protocol

It erroneously used http rather than https
without user intervention.
---
 confluent_server/confluent/discovery/protocols/pxe.py | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/confluent_server/confluent/discovery/protocols/pxe.py b/confluent_server/confluent/discovery/protocols/pxe.py
index 326430ed..a1c69b27 100644
--- a/confluent_server/confluent/discovery/protocols/pxe.py
+++ b/confluent_server/confluent/discovery/protocols/pxe.py
@@ -415,6 +415,8 @@ def check_reply(node, info, packet, sock, cfg, reqview):
     rqtype = packet[53][0]
     insecuremode = cfd.get(node, {}).get('deployment.useinsecureprotocols',
         'never')
+    if not insecuremode:
+        insecuremode = 'never'
     if insecuremode == 'never' and not httpboot:
         if rqtype == 1 and info['architecture']:
             log.log(