mirror of
https://github.com/ClickHouse/ClickHouse.git
synced 2024-11-23 08:02:02 +00:00
Update MD docs
This commit is contained in:
parent
5f70361583
commit
87cf0e38fd
@ -65,7 +65,7 @@ XML substitution example:
|
|||||||
|
|
||||||
Substitutions can also be performed from ZooKeeper. To do this, specify the attribute `from_zk = "/path/to/node"`. The element value is replaced with the contents of the node at `/path/to/node` in ZooKeeper. You can also put an entire XML subtree on the ZooKeeper node and it will be fully inserted into the source element.
|
Substitutions can also be performed from ZooKeeper. To do this, specify the attribute `from_zk = "/path/to/node"`. The element value is replaced with the contents of the node at `/path/to/node` in ZooKeeper. You can also put an entire XML subtree on the ZooKeeper node and it will be fully inserted into the source element.
|
||||||
|
|
||||||
## Encrypting Configuration {#encryption}
|
## Encrypting and Hiding Configuration {#encryption}
|
||||||
|
|
||||||
You can use symmetric encryption to encrypt a configuration element, for example, a password field. To do so, first configure the [encryption codec](../sql-reference/statements/create/table.md#encryption-codecs), then add attribute `encrypted_by` with the name of the encryption codec as value to the element to encrypt.
|
You can use symmetric encryption to encrypt a configuration element, for example, a password field. To do so, first configure the [encryption codec](../sql-reference/statements/create/table.md#encryption-codecs), then add attribute `encrypted_by` with the name of the encryption codec as value to the element to encrypt.
|
||||||
|
|
||||||
@ -102,16 +102,14 @@ Example:
|
|||||||
961F000000040000000000EEDDEF4F453CFE6457C4234BD7C09258BD651D85
|
961F000000040000000000EEDDEF4F453CFE6457C4234BD7C09258BD651D85
|
||||||
```
|
```
|
||||||
|
|
||||||
## Hiding Configuration {#hidden}
|
Even with applied encryption in the preprocessed file the elements are still saved in plain text. In case this is a problem, we suggest two alternatives: either set file permissions of the preprocessed file to 600 or use the `hide_in_preprocessed` attribute.
|
||||||
|
|
||||||
You can use `hidden` attribute to hide certain elements from the preprocessed file.
|
|
||||||
|
|
||||||
Example:
|
Example:
|
||||||
|
|
||||||
```xml
|
```xml
|
||||||
<clickhouse>
|
<clickhouse>
|
||||||
|
|
||||||
<interserver_http_credentials hidden="true">
|
<interserver_http_credentials hide_in_preprocessed="true">
|
||||||
<user>admin</user>
|
<user>admin</user>
|
||||||
<password>secret</password>
|
<password>secret</password>
|
||||||
</interserver_http_credentials>
|
</interserver_http_credentials>
|
||||||
|
@ -122,16 +122,14 @@ $ cat /etc/clickhouse-server/users.d/alice.xml
|
|||||||
961F000000040000000000EEDDEF4F453CFE6457C4234BD7C09258BD651D85
|
961F000000040000000000EEDDEF4F453CFE6457C4234BD7C09258BD651D85
|
||||||
```
|
```
|
||||||
|
|
||||||
## Скрытие {#hidden}
|
Даже с применённым шифрованием в файле предобработки элементы все равно сохраняются в незашифрованном виде. В случае если это является проблемой, мы предлагаем две альтернативы: или установить разрешения на файл предобработки 600 или использовать аттрибут `hide_in_preprocessed`.
|
||||||
|
|
||||||
Вы можете использовать `hidden` аттрибут для скрытие некоторых элементов в файле предобработки.
|
|
||||||
|
|
||||||
Пример:
|
Пример:
|
||||||
|
|
||||||
```xml
|
```xml
|
||||||
<clickhouse>
|
<clickhouse>
|
||||||
|
|
||||||
<interserver_http_credentials hidden="true">
|
<interserver_http_credentials hide_in_preprocessed="true">
|
||||||
<user>admin</user>
|
<user>admin</user>
|
||||||
<password>secret</password>
|
<password>secret</password>
|
||||||
</interserver_http_credentials>
|
</interserver_http_credentials>
|
||||||
|
Loading…
Reference in New Issue
Block a user