Mirror
/
seaweedfs
mirror of https://github.com/seaweedfs/seaweedfs.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

feat: add TLS configuration options for Cassandra2 store 

Signed-off-by: walnuts1018 <r.juglans.1018@gmail.com>
pull/7998/head
walnuts1018 4 days ago
parent
1ea6b0c0d9
commit
82b76fc9eb
No known key found for this signature in database GPG Key ID: 794164839308579
2 changed files with 18 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 6
      weed/command/scaffold/filer.toml
  2. 13
      weed/filer/cassandra2/cassandra_store.go

6
weed/command/scaffold/filer.toml
View File

@ -186,6 +186,12 @@ hosts = [
] ]
username = "" username = ""
password = "" password = ""
# Set the CA certificate path
tls_ca_file=""
# Set the client certificate path
tls_client_crt_file=""
# Set the client private key path
tls_client_key_file=""
# This changes the data layout. Only add new directories. Removing/Updating will cause data loss. # This changes the data layout. Only add new directories. Removing/Updating will cause data loss.
superLargeDirectories = [] superLargeDirectories = []
# Name of the datacenter local to this filer, used as host selection fallback. # Name of the datacenter local to this filer, used as host selection fallback.

13
weed/filer/cassandra2/cassandra_store.go
View File

@ -34,6 +34,9 @@ func (store *Cassandra2Store) Initialize(configuration util.Configuration, prefi
configuration.GetStringSlice(prefix+"hosts"), configuration.GetStringSlice(prefix+"hosts"),
configuration.GetString(prefix+"username"), configuration.GetString(prefix+"username"),
configuration.GetString(prefix+"password"), configuration.GetString(prefix+"password"),
configuration.GetString(prefix+"tls_ca_file"),
configuration.GetString(prefix+"tls_client_crt_file"),
configuration.GetString(prefix+"tls_client_key_file"),
configuration.GetStringSlice(prefix+"superLargeDirectories"), configuration.GetStringSlice(prefix+"superLargeDirectories"),
configuration.GetString(prefix+"localDC"), configuration.GetString(prefix+"localDC"),
configuration.GetInt(prefix+"connection_timeout_millisecond"), configuration.GetInt(prefix+"connection_timeout_millisecond"),
@ -45,11 +48,19 @@ func (store *Cassandra2Store) isSuperLargeDirectory(dir string) (dirHash string,
return return
} }
func (store *Cassandra2Store) initialize(keyspace string, hosts []string, username string, password string, superLargeDirectories []string, localDC string, timeout int) (err error) {
func (store *Cassandra2Store) initialize(keyspace string, hosts []string, username string, password string, tlsCaFile string, tlsClientCrtFile string, tlsClientKeyFile string, superLargeDirectories []string, localDC string, timeout int) (err error) {
store.cluster = gocql.NewCluster(hosts...) store.cluster = gocql.NewCluster(hosts...)
if username != "" && password != "" { if username != "" && password != "" {
store.cluster.Authenticator = gocql.PasswordAuthenticator{Username: username, Password: password} store.cluster.Authenticator = gocql.PasswordAuthenticator{Username: username, Password: password}
} }
if tlsCaFile != "" || tlsClientCrtFile != "" || tlsClientKeyFile != "" {
store.cluster.SslOpts = &gocql.SslOptions{
CaPath: tlsCaFile,
CertPath: tlsClientCrtFile,
KeyPath: tlsClientKeyFile,
EnableHostVerification: true,
}
}
store.cluster.Keyspace = keyspace store.cluster.Keyspace = keyspace
store.cluster.Timeout = time.Duration(timeout) * time.Millisecond store.cluster.Timeout = time.Duration(timeout) * time.Millisecond
glog.V(0).Infof("timeout = %d", timeout) glog.V(0).Infof("timeout = %d", timeout)

Write Preview
Loading…
Cancel
Save