March 2021
Intermediate to advanced
265 pages
6h 50m
Chinese
Content preview from Presto实战
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
安全
|
191
生成的
keystore.jks
文件需要在服务器上使用,并在
http-server.https.keystore.path
属性中指定。类似的用法也适用于
http-server.https.keystore.keystore.key
属性中的
storepass
密码。
上述例子使用的是
通配符证书
,我们指定通用名(
CN
)为
*.example.com
。若
Presto
集群中的所有节点使用相同的域,则这个证书可以为它们所共享。这个证书还可以和
coordinator.example.com
、
worker1.example.com
、
worker2.example.com
等一起使用。这种
方法的缺点是
example.com
域下的任何节点都可以使用该证书。
你可以通过使用主题替代名(
SubjectAltName
)来限制子域,在这里你可以列出子域。这
允许你创建单个证书,它可以为一个有限的、特定的主机列表所共享。另一种方法是为每
个节点创建一个证书,这要求你为每个节点明确定义完整的域。这增加了管理负担,并且
在扩展
Presto
集群时具有挑战性,因为新节点需要绑定到完整域的证书。
当客户端连接到协调器时,协调器将其证书发送给客户端以验证其真实性:如果是自签名
的,则包含协调器的证书;如果是由
CA
签发的
,则包含一个证书链。稍后将讨论如何使
用
CA
的
证书链。因为
keystore
也包含了证书,所以你可以简单地将
keystore
复制到客户
端机器上,并将其作为
truststore
使用
。然而,这并不安全,因为
keystore ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.