3.65 和3.56 版本 分布式部署后 新增security.toml配置后,volume进程存在 端口不存在 #5576
Unanswered
starso2018
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
3.65 和3.56 版本 分布式部署后 3个master 3个volume 服务正常,测试通过。新增security.tom配置后,做了certstrap认证结果 master经常挂掉 volume进程存在,端口不存在。
security.toml文件
[jwt.signing]
key = "000000"
expires_after_seconds = 50 # seconds
[cors.allowed_origins]
values = "*"
[jwt.signing.read]
key = "000000"
expires_after_seconds = 150 # seconds
[jwt.filer_signing]
key = "Ling000000"
expires_after_seconds = 150 # seconds
[jwt.filer_signing.read]
key = "Ling000000"
expires_after_seconds = 150 # seconds
[grpc]
ca = "/opt/software/certstrap/out/swFS_CA.crt"
allowed_wildcard_domain = "" # .mycompany.com
[grpc.volume]
cert = "/opt/software/certstrap/out/volume.crt"
key = "/opt/software/certstrap/out/volume.key"
allowed_commonNames = "" # comma-separated SSL certificate common names
[grpc.master]
cert = "/opt/software/certstrap/out/master.crt"
key = "/opt/software/certstrap/out/master.key"
allowed_commonNames = "" # comma-separated SSL certificate common names
[grpc.filer]
cert = "/opt/software/certstrap/out/filer.crt"
key = "/opt/software/certstrap/out/filer.key"
[grpc.s3]
cert = ""
key = ""
allowed_commonNames = "" # comma-separated SSL certificate common names
[grpc.msg_broker]
cert = ""
key = ""
allowed_commonNames = "" # comma-separated SSL certificate common names
[grpc.client]
cert = "/opt/software/certstrap/out/client.crt"
key = "/opt/software/certstrap/out/client.key"
[https.client]
enabled = true
[https.volume]
cert = ""
key = ""
ca = ""
[https.master]
cert = ""
key = ""
ca = ""
Beta Was this translation helpful? Give feedback.
All reactions