首頁 探索 說明
註冊 登入
lqb
/
elasticsearch
镜像来自 https://gitee.com/mirrors/elasticsearch.git
1
0
複刻 0
檔案 問題管理 0 Wiki
瀏覽代碼

Default S3 endpoint scheme to HTTPS when not specified (#127704)

(cherry picked from commit 8dc6bf8893a800b59bb4d2549411ce771843a5cf)
Nick Tindall 5 月之前
父節點
0861046e8d
當前提交
740c86ed22
共有 2 個文件被更改,包括 37 次插入1 次删除
分割檢視 顯示文件統計
  1. 15 1
      modules/repository-s3/src/main/java/org/elasticsearch/repositories/s3/S3Service.java
  2. 22 0
      modules/repository-s3/src/test/java/org/elasticsearch/repositories/s3/S3ServiceTests.java

+ 15 - 1
modules/repository-s3/src/main/java/org/elasticsearch/repositories/s3/S3Service.java
查看文件 

@@ -254,7 +254,21 @@ class S3Service extends AbstractLifecycleComponent {
 
         }
 
 
         if (Strings.hasLength(clientSettings.endpoint)) {
 
-            s3clientBuilder.endpointOverride(URI.create(clientSettings.endpoint));
 
+            String endpoint = clientSettings.endpoint;
 
+            if ((endpoint.startsWith("http://") || endpoint.startsWith("https://")) == false) {
 
+                // The SDK does not know how to interpret endpoints without a scheme prefix and will error. Therefore, when the scheme is
 
+                // absent, we'll supply HTTPS as a default to avoid errors.
 
+                // See https://docs.aws.amazon.com/sdk-for-java/latest/developer-guide/client-configuration.html#client-config-other-diffs
 
+                endpoint = "https://" + endpoint;
 
+                LOGGER.warn(
 
+                    """
 
+                        found S3 client with endpoint [{}] that is missing a scheme, guessing it should use 'https://'; \
 
+                        to suppress this warning, add a scheme prefix to the [{}] setting on this node""",
 
+                    clientSettings.endpoint,
 
+                    S3ClientSettings.ENDPOINT_SETTING.getConcreteSettingForNamespace("CLIENT_NAME").getKey()
 
+                );
 
+            }
 
+            s3clientBuilder.endpointOverride(URI.create(endpoint));
 
         }
 
 
         return s3clientBuilder;

+ 22 - 0
modules/repository-s3/src/test/java/org/elasticsearch/repositories/s3/S3ServiceTests.java
查看文件 

@@ -8,7 +8,9 @@
 
  */
 
 package org.elasticsearch.repositories.s3;
 
 
+import software.amazon.awssdk.http.SdkHttpClient;
 
 import software.amazon.awssdk.regions.Region;
 
+import software.amazon.awssdk.services.s3.S3Client;
 
 import software.amazon.awssdk.services.s3.endpoints.S3EndpointParams;
 
 import software.amazon.awssdk.services.s3.endpoints.internal.DefaultS3EndpointProvider;
 
 
@@ -23,8 +25,10 @@ import org.elasticsearch.test.junit.annotations.TestLogging;
 
 import org.elasticsearch.watcher.ResourceWatcherService;
 
 
 import java.io.IOException;
 
+import java.net.URI;
 
 import java.util.concurrent.atomic.AtomicBoolean;
 
 
+import static org.hamcrest.Matchers.equalTo;
 
 import static org.mockito.Mockito.mock;
 
 
 public class S3ServiceTests extends ESTestCase {
 
@@ -184,4 +188,22 @@ public class S3ServiceTests extends ESTestCase {
 
             );
 
         }
 
     }
 
+
 
+    public void testEndpointOverrideSchemeDefaultsToHttpsWhenNotSpecified() {
 
+        final S3Service s3Service = new S3Service(
 
+            mock(Environment.class),
 
+            Settings.EMPTY,
 
+            mock(ResourceWatcherService.class),
 
+            () -> Region.of("es-test-region")
 
+        );
 
+        final String endpointWithoutScheme = randomIdentifier() + ".ignore";
 
+        S3Client s3Client = s3Service.buildClient(
 
+            S3ClientSettings.getClientSettings(
 
+                Settings.builder().put("s3.client.test-client.endpoint", endpointWithoutScheme).build(),
 
+                "test-client"
 
+            ),
 
+            mock(SdkHttpClient.class)
 
+        );
 
+        assertThat(s3Client.serviceClientConfiguration().endpointOverride().get(), equalTo(URI.create("https://" + endpointWithoutScheme)));
 
+    }
 
 }