thevar1able/ClickHouse
1
0
Fork 0
mirror of https://github.com/ClickHouse/ClickHouse.git synced 2024-11-15 03:53:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
129d1e387e
ClickHouse/tests/integration/test_composable_protocols/configs/config.xml

Ignoring revisions in .git-blame-ignore-revs. Click here to bypass and see the normal blame view.

87 lines
3.5 KiB
XML
Raw Normal View History

add test
2022-09-25 15:46:12 +00:00
<clickhouse>
auth_use_forwarded_address config setting added, using forwarded address for proxied TCP and HTTP connection, likely bug is fixed in AccessControl, relevant test is appended
2022-12-20 17:39:40 +00:00
<auth_use_forwarded_address>true</auth_use_forwarded_address>
add test
2022-09-25 15:46:12 +00:00
<!-- Used with https_port and tcp_port_secure. Full ssl options list: https://github.com/ClickHouse-Extras/poco/blob/master/NetSSL_OpenSSL/include/Poco/Net/SSLManager.h#L71 -->
<openSSL>
<server> <!-- Used for https server AND secure tcp port -->
<!-- openssl req -subj "/CN=localhost" -new -newkey rsa:2048 -days 365 -nodes -x509 -keyout /etc/clickhouse-server/server.key -out /etc/clickhouse-server/server.crt -->
<certificateFile>/etc/clickhouse-server/config.d/server.crt</certificateFile>
<privateKeyFile>/etc/clickhouse-server/config.d/server.key</privateKeyFile>
<verificationMode>none</verificationMode>
<loadDefaultCAFile>true</loadDefaultCAFile>
<cacheSessions>true</cacheSessions>
<disableProtocols>sslv2,sslv3</disableProtocols>
<preferServerCiphers>true</preferServerCiphers>
</server>
</openSSL>
<listen_host>0.0.0.0</listen_host>
<protocols>
<tcp>
<type>tcp</type>
<host>0.0.0.0</host>
<port>9000</port>
<description>native protocol (tcp)</description>
</tcp>
<tcp_secure>
<type>tls</type>
<impl>tcp</impl>
<port>9440</port>
<description>secure native protocol (tcp_secure)</description>
</tcp_secure>
<tcp_endpoint>
<impl>tcp</impl>
<host>0.0.0.0</host>
<port>9001</port>
<description>native protocol endpoint (tcp)</description>
</tcp_endpoint>
add test for PROXYv1
2022-10-08 00:01:58 +00:00
<tcp_proxy>
<type>proxy1</type>
<impl>tcp</impl>
<port>9100</port>
<description>native protocol with PROXYv1 (tcp_proxy)</description>
</tcp_proxy>
add test
2022-09-25 15:46:12 +00:00
<http>
<type>http</type>
<port>8123</port>
<description>http protocol</description>
</http>
<https>
<type>tls</type>
<impl>http</impl>
<host>0.0.0.0</host>
<port>8443</port>
<description>https protocol</description>
</https>
<https_endpoint>
<impl>https</impl>
<port>8444</port>
<description>https protocol endpoint</description>
</https_endpoint>
More parameters for tls layer in protocols
2024-05-16 14:17:07 +00:00
<https_tls1_2>
<type>tls</type>
<impl>http</impl>
<host>0.0.0.0</host>
<port>8445</port>
<description>https protocol with TLSv1_2 minimum version</description>
<disableProtocols>sslv2,sslv3,tlsv1,tlsv1_1</disableProtocols>
<certificateFile>/etc/clickhouse-server/config.d/server.crt</certificateFile>
<privateKeyFile>/etc/clickhouse-server/config.d/server.key</privateKeyFile>
</https_tls1_2>
<https_tls1_3>
<type>tls</type>
<impl>http</impl>
<host>0.0.0.0</host>
<port>8446</port>
<description>https protocol with TLSv1_3 minimum version</description>
<disableProtocols>sslv2,sslv3,tlsv1,tlsv1_1,tlsv1_2</disableProtocols>
<certificateFile>/etc/clickhouse-server/config.d/server.crt</certificateFile>
<privateKeyFile>/etc/clickhouse-server/config.d/server.key</privateKeyFile>
</https_tls1_3>
add test
2022-09-25 15:46:12 +00:00
</protocols>
<!--tcp_port>9010</tcp_port-->
backward compatibility changes + fixes
2023-08-29 23:50:41 +00:00
<validate_tcp_client_information>true</validate_tcp_client_information>
add test
2022-09-25 15:46:12 +00:00
</clickhouse>
Reference in New Issue Copy Permalink