@PublicEvolving public class SecurityOptions extends Object
Modifier and Type | Field and Description |
---|---|
static ConfigOption<String> |
KERBEROS_LOGIN_CONTEXTS |
static ConfigOption<String> |
KERBEROS_LOGIN_KEYTAB |
static ConfigOption<String> |
KERBEROS_LOGIN_PRINCIPAL |
static ConfigOption<Boolean> |
KERBEROS_LOGIN_USETICKETCACHE |
static ConfigOption<String> |
SSL_ALGORITHMS
The standard SSL algorithms to be supported.
|
static ConfigOption<Boolean> |
SSL_ENABLED
Deprecated.
Use
SSL_INTERNAL_ENABLED and SSL_REST_ENABLED instead. |
static ConfigOption<Integer> |
SSL_INTERNAL_CLOSE_NOTIFY_FLUSH_TIMEOUT
SSL session timeout after flushing the close_notify message.
|
static ConfigOption<Boolean> |
SSL_INTERNAL_ENABLED
Enable SSL for internal communication (akka rpc, netty data transport, blob server).
|
static ConfigOption<Integer> |
SSL_INTERNAL_HANDSHAKE_TIMEOUT
SSL session timeout during handshakes.
|
static ConfigOption<String> |
SSL_INTERNAL_KEY_PASSWORD
For internal SSL, the password to decrypt the private key.
|
static ConfigOption<String> |
SSL_INTERNAL_KEYSTORE
For internal SSL, the Java keystore file containing the private key and certificate.
|
static ConfigOption<String> |
SSL_INTERNAL_KEYSTORE_PASSWORD
For internal SSL, the password to decrypt the keystore file containing the certificate.
|
static ConfigOption<Integer> |
SSL_INTERNAL_SESSION_CACHE_SIZE
SSL session cache size.
|
static ConfigOption<Integer> |
SSL_INTERNAL_SESSION_TIMEOUT
SSL session timeout.
|
static ConfigOption<String> |
SSL_INTERNAL_TRUSTSTORE
For internal SSL, the truststore file containing the public CA certificates to verify the ssl peers.
|
static ConfigOption<String> |
SSL_INTERNAL_TRUSTSTORE_PASSWORD
For internal SSL, the secret to decrypt the truststore.
|
static ConfigOption<String> |
SSL_KEY_PASSWORD
Secret to decrypt the server key.
|
static ConfigOption<String> |
SSL_KEYSTORE
The Java keystore file containing the flink endpoint key and certificate.
|
static ConfigOption<String> |
SSL_KEYSTORE_PASSWORD
Secret to decrypt the keystore file.
|
static ConfigOption<String> |
SSL_PROTOCOL
SSL protocol version to be supported.
|
static ConfigOption<Boolean> |
SSL_REST_AUTHENTICATION_ENABLED
Enable mututal SSL authentication for external REST endpoints.
|
static ConfigOption<Boolean> |
SSL_REST_ENABLED
Enable SSL for external REST endpoints.
|
static ConfigOption<String> |
SSL_REST_KEY_PASSWORD
For external (REST) SSL, the password to decrypt the private key.
|
static ConfigOption<String> |
SSL_REST_KEYSTORE
For external (REST) SSL, the Java keystore file containing the private key and certificate.
|
static ConfigOption<String> |
SSL_REST_KEYSTORE_PASSWORD
For external (REST) SSL, the password to decrypt the keystore file containing the certificate.
|
static ConfigOption<String> |
SSL_REST_TRUSTSTORE
For external (REST) SSL, the truststore file containing the public CA certificates to verify the ssl peers.
|
static ConfigOption<String> |
SSL_REST_TRUSTSTORE_PASSWORD
For external (REST) SSL, the secret to decrypt the truststore.
|
static ConfigOption<String> |
SSL_TRUSTSTORE
The truststore file containing the public CA certificates to verify the ssl peers.
|
static ConfigOption<String> |
SSL_TRUSTSTORE_PASSWORD
Secret to decrypt the truststore.
|
static ConfigOption<Boolean> |
SSL_VERIFY_HOSTNAME
Flag to enable/disable hostname verification for the ssl connections.
|
static ConfigOption<Boolean> |
ZOOKEEPER_SASL_DISABLE |
static ConfigOption<String> |
ZOOKEEPER_SASL_LOGIN_CONTEXT_NAME |
static ConfigOption<String> |
ZOOKEEPER_SASL_SERVICE_NAME |
Constructor and Description |
---|
SecurityOptions() |
public static final ConfigOption<String> KERBEROS_LOGIN_PRINCIPAL
public static final ConfigOption<String> KERBEROS_LOGIN_KEYTAB
public static final ConfigOption<Boolean> KERBEROS_LOGIN_USETICKETCACHE
public static final ConfigOption<String> KERBEROS_LOGIN_CONTEXTS
public static final ConfigOption<Boolean> ZOOKEEPER_SASL_DISABLE
public static final ConfigOption<String> ZOOKEEPER_SASL_SERVICE_NAME
public static final ConfigOption<String> ZOOKEEPER_SASL_LOGIN_CONTEXT_NAME
@Deprecated public static final ConfigOption<Boolean> SSL_ENABLED
SSL_INTERNAL_ENABLED
and SSL_REST_ENABLED
instead.public static final ConfigOption<Boolean> SSL_INTERNAL_ENABLED
public static final ConfigOption<Boolean> SSL_REST_ENABLED
public static final ConfigOption<Boolean> SSL_REST_AUTHENTICATION_ENABLED
public static final ConfigOption<String> SSL_KEYSTORE
public static final ConfigOption<String> SSL_KEYSTORE_PASSWORD
public static final ConfigOption<String> SSL_KEY_PASSWORD
public static final ConfigOption<String> SSL_TRUSTSTORE
public static final ConfigOption<String> SSL_TRUSTSTORE_PASSWORD
public static final ConfigOption<String> SSL_INTERNAL_KEYSTORE
public static final ConfigOption<String> SSL_INTERNAL_KEYSTORE_PASSWORD
public static final ConfigOption<String> SSL_INTERNAL_KEY_PASSWORD
public static final ConfigOption<String> SSL_INTERNAL_TRUSTSTORE
public static final ConfigOption<String> SSL_INTERNAL_TRUSTSTORE_PASSWORD
public static final ConfigOption<String> SSL_REST_KEYSTORE
public static final ConfigOption<String> SSL_REST_KEYSTORE_PASSWORD
public static final ConfigOption<String> SSL_REST_KEY_PASSWORD
public static final ConfigOption<String> SSL_REST_TRUSTSTORE
public static final ConfigOption<String> SSL_REST_TRUSTSTORE_PASSWORD
public static final ConfigOption<String> SSL_PROTOCOL
public static final ConfigOption<String> SSL_ALGORITHMS
More options here - http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites
public static final ConfigOption<Boolean> SSL_VERIFY_HOSTNAME
public static final ConfigOption<Integer> SSL_INTERNAL_SESSION_CACHE_SIZE
public static final ConfigOption<Integer> SSL_INTERNAL_SESSION_TIMEOUT
public static final ConfigOption<Integer> SSL_INTERNAL_HANDSHAKE_TIMEOUT
public static final ConfigOption<Integer> SSL_INTERNAL_CLOSE_NOTIFY_FLUSH_TIMEOUT
Copyright © 2014–2020 The Apache Software Foundation. All rights reserved.