英文:
Golang elastic search security auto-configuration HTTP CA” certificate is not trusted
问题
我是你的中文翻译助手,以下是翻译好的内容:
我是golang的新手,尝试使用go的默认包(go-elasticsearch)连接到Elasticsearch。以下是我尝试使用的连接代码:
Elasticsearch配置:
var _elasticSearchConfiguration = elasticsearch.Config{Addresses: []string{"https://localhost:9200",},Username: "elastic",Password: "123456",Transport: &http.Transport{MaxIdleConnsPerHost: 10,ResponseHeaderTimeout: time.Second,DialContext: (&net.Dialer{Timeout: time.Second}).DialContext,TLSClientConfig: &tls.Config{MinVersion: tls.VersionTLS12,},},}
使用上述配置:
func GetAllJsonObjectDemos(responseWriter http.ResponseWriter, request *http.Request) {_elasticsearch, err := elasticsearch.NewClient(_elasticSearchConfiguration)if err != nil {log.Fatalf("Error creating elasticsearch client: %v", err)}elasticSearchResponse, err := _elasticsearch.Info()if err != nil {log.Fatalf("Error getting response: %s", err)}defer elasticSearchResponse.Body.Close()log.Println(elasticSearchResponse)}
我真的很想知道我在这里漏掉了什么,感谢所有的贡献者。
我期待着golang和Elasticsearch的连接代码,或者任何建议。
英文:
I am new to golang, trying to conenct golang with elastic search below is my code which I tried to connect using default package of go (go-elasticsearch)
Elastic Search Configuration
var _elasticSearchConfiguration = elasticsearch.Config{Addresses: []string{"https://localhost:9200",},Username: "elastic",Password: "123456",Transport: &http.Transport{MaxIdleConnsPerHost: 10,ResponseHeaderTimeout: time.Second,DialContext: (&net.Dialer{Timeout: time.Second}).DialContext,TLSClientConfig: &tls.Config{MinVersion: tls.VersionTLS12,},},}
usage of the above configuration
func GetAllJsonObjectDemos(responseWriter http.ResponseWriter, request *http.Request) {_elasticsearch, err := elasticsearch.NewClient(_elasticSearchConfiguration)if err != nil {log.Fatalf("Error creating elasticsearch client: %v", err)}elasticSearchResponse, err := _elasticsearch.Info()if err != nil {log.Fatalf("Error getting response: %s", err)}defer elasticSearchResponse.Body.Close()log.Println(elasticSearchResponse)}
I would really like to know what Am I missing here, Thanks to all the contributors.
I am expecting Connection code of golang & elastic search or any suggestion.
答案1
得分: 1
要解决certificate is not trusted错误,你可以将证书添加到tls配置的RootCAs中。
示例代码
rootCAs, _ := x509.SystemCertPool()if rootCAs == nil {rootCAs = x509.NewCertPool()}// 读取证书文件certs, err := os.ReadFile("localCertFile")// 将证书添加到系统池中rootCAs.AppendCertsFromPEM(certs)var _elasticSearchConfiguration = elasticsearch.Config{Addresses: []string{"https://localhost:9200",},Username: "elastic",Password: "123456",Transport: &http.Transport{MaxIdleConnsPerHost: 10,ResponseHeaderTimeout: time.Second,DialContext: (&net.Dialer{Timeout: time.Second}).DialContext,TLSClientConfig: &tls.Config{RootCAs: rootCAs,MinVersion: tls.VersionTLS12,},},}
请注意,以上代码是用于将证书添加到TLS配置中的示例代码。你需要将localCertFile替换为你实际的证书文件路径,并根据你的实际情况进行相应的修改。
英文:
To resolve the error certificate is not trusted, you could add the certificate to RootCAs of tls config.
Sample codes
rootCAs, _ := x509.SystemCertPool()if rootCAs == nil {rootCAs = x509.NewCertPool()}// Read the cert filecerts, err := os.ReadFile("localCertFile")// add our cert to the system poolrootCAs.AppendCertsFromPEM(certs)var _elasticSearchConfiguration = elasticsearch.Config{Addresses: []string{"https://localhost:9200",},Username: "elastic",Password: "123456",Transport: &http.Transport{MaxIdleConnsPerHost: 10,ResponseHeaderTimeout: time.Second,DialContext: (&net.Dialer{Timeout: time.Second}).DialContext,TLSClientConfig: &tls.Config{RootCAs: rootCAs,MinVersion: tls.VersionTLS12,},},}
通过集体智慧和协作来改善编程学习和解决问题的方式。致力于成为全球开发者共同参与的知识库,让每个人都能够通过互相帮助和分享经验来进步。
评论