-
Notifications
You must be signed in to change notification settings - Fork 45
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
配置HTTPS和SSL通信后报错 #111
Comments
从报错看,问题应该是SCDB默认会校验根证书的合法性,而自签证书不被信任,因此如果评估了相应风险,并在测试环境的话,建议把自签的根证书设置为系统信任的根证书:在scdb的container中执行:sudo cp ${your_ca_file} /etc/ssl/certs |
嗯嗯,这样跑通了,我注意到engine那边可以配置scdb_enable_ssl_client_verification=false,这是用来选择证书ca的有效性的吧?scdb有没有类似的配置呢?生产环境中有可能会用到自签的证书 |
目前没有提供配置关闭默认校验。 |
好的,感谢 |
我在本地利用docker模拟多台机器后部署了scql项目,并成功跑通了样例demo
我来我尝试使用https进行通信,将https的选项和ssl的选项都打开后,用本地ca自签生成了三份不同的server.key和server.crt文件分别给SCDB和ALICE和BOB。发送查询任务时出现了以下错误
附配置文件:
config.yml:
gflags.conf :
The text was updated successfully, but these errors were encountered: