yk
/
docker-gate-sys
1
0
Derivar 0
Código Questões 0 Pedidos de integração 0 Lançamentos 0 Wiki Trabalho
依据青岛擎方整理的一整套docker部署方案, 包含emqx,lefaceSvr,web后台程序,redis,msql,nginx等,均使用docker部署。
Não pode escolher mais do que 25 tópicos Os tópicos devem começar com uma letra ou um número, podem incluir traços ('-') e podem ter até 35 caracteres.
3 Cometimentos
1 Ramo
667 MiB
 
 
 
 
 
Ramo: master
Ramos Etiquetas
${ item.name }
Criar ramo ${ searchTerm }
de 'master'
${ noResults }
docker-gate-sys/emqx/emqx_auth_http.conf

177 linhas
5.7 KiB
Em bruto Ligação permanente Responsabilidade Histórico 

  1. ##--------------------------------------------------------------------

  2. ## HTTP Auth/ACL Plugin

  3. ##--------------------------------------------------------------------

  4. 

  5. ## HTTP URL API path for Auth Request

  6. ##

  7. ## Value: URL

  8. ##

  9. ## Examples: http://127.0.0.1:80/mqtt/auth, https://[::1]:80/mqtt/auth

  10. auth.http.auth_req.url = http://127.0.0.1:80/mqtt/auth

  11. 

  12. ## HTTP Request Method for Auth Request

  13. ##

  14. ## Value: post | get

  15. auth.http.auth_req.method = post

  16. 

  17. ## HTTP Request Headers for Auth Request, Content-Type header is configured by default.

  18. ## The possible values of the Content-Type header: application/x-www-form-urlencoded, application/json

  19. ##

  20. ## Examples: auth.http.auth_req.headers.accept = */*

  21. auth.http.auth_req.headers.content_type = application/x-www-form-urlencoded

  22. 

  23. ## Parameters used to construct the request body or query string parameters

  24. ## When the request method is GET, these parameters will be converted into query string parameters

  25. ## When the request method is POST, the final format is determined by content-type

  26. ##

  27. ## Available Variables:

  28. ##  - %u: username

  29. ##  - %c: clientid

  30. ##  - %a: ipaddress

  31. ##  - %r: protocol

  32. ##  - %P: password

  33. ##  - %p: sockport of server accepted

  34. ##  - %C: common name of client TLS cert

  35. ##  - %d: subject of client TLS cert

  36. ##

  37. ## Value: <K1>=<V1>,<K2>=<V2>,...

  38. auth.http.auth_req.params = clientid=%c,username=%u,password=%P

  39. 

  40. ## HTTP URL API path for SuperUser Request

  41. ##

  42. ## Value: URL

  43. ##

  44. ## Examples: http://127.0.0.1:80/mqtt/superuser, https://[::1]:80/mqtt/superuser

  45. auth.http.super_req.url = http://127.0.0.1:80/mqtt/superuser

  46. 

  47. ## HTTP Request Method for SuperUser Request

  48. ##

  49. ## Value: post | get

  50. auth.http.super_req.method = post

  51. 

  52. ## HTTP Request Headers for SuperUser Request, Content-Type header is configured by default.

  53. ## The possible values of the Content-Type header: application/x-www-form-urlencoded, application/json

  54. ##

  55. ## Examples: auth.http.super_req.headers.accept = */*

  56. auth.http.super_req.headers.content-type = application/x-www-form-urlencoded

  57. 

  58. ## Parameters used to construct the request body or query string parameters

  59. ## When the request method is GET, these parameters will be converted into query string parameters

  60. ## When the request method is POST, the final format is determined by content-type

  61. ##

  62. ## Available Variables:

  63. ##  - %u: username

  64. ##  - %c: clientid

  65. ##  - %a: ipaddress

  66. ##  - %r: protocol

  67. ##  - %P: password

  68. ##  - %p: sockport of server accepted

  69. ##  - %C: common name of client TLS cert

  70. ##  - %d: subject of client TLS cert

  71. ##

  72. ## Value: <K1>=<V1>,<K2>=<V2>,...

  73. auth.http.super_req.params = clientid=%c,username=%u

  74. 

  75. ## HTTP URL API path for ACL Request

  76. ## Comment out this config to disable ACL checks

  77. ##

  78. ## Value: URL

  79. ##

  80. ## Examples: http://127.0.0.1:80/mqtt/acl, https://[::1]:80/mqtt/acl

  81. auth.http.acl_req.url = http://127.0.0.1:80/mqtt/acl

  82. 

  83. ## HTTP Request Method for ACL Request

  84. ##

  85. ## Value: post | get

  86. auth.http.acl_req.method = post

  87. 

  88. ## HTTP Request Headers for ACL Request, Content-Type header is configured by default.

  89. ## The possible values of the Content-Type header: application/x-www-form-urlencoded, application/json

  90. ##

  91. ## Examples: auth.http.acl_req.headers.accept = */*

  92. auth.http.acl_req.headers.content-type = application/x-www-form-urlencoded

  93. 

  94. ## Parameters used to construct the request body or query string parameters

  95. ## When the request method is GET, these parameters will be converted into query string parameters

  96. ## When the request method is POST, the final format is determined by content-type

  97. ##

  98. ## Available Variables:

  99. ##  - %A: access (1 - subscribe, 2 - publish)

  100. ##  - %u: username

  101. ##  - %c: clientid

  102. ##  - %a: ipaddress

  103. ##  - %r: protocol

  104. ##  - %P: password

  105. ##  - %p: sockport of server accepted

  106. ##  - %C: common name of client TLS cert

  107. ##  - %d: subject of client TLS cert

  108. ##  - %t: topic

  109. ##

  110. ## Value: <K1>=<V1>,<K2>=<V2>,...

  111. auth.http.acl_req.params = access=%A,username=%u,clientid=%c,ipaddr=%a,topic=%t,mountpoint=%m

  112. 

  113. ## Time-out time for the request.

  114. ##

  115. ## Value: Duration

  116. ## -h: hour, e.g. '2h' for 2 hours

  117. ## -m: minute, e.g. '5m' for 5 minutes

  118. ## -s: second, e.g. '30s' for 30 seconds

  119. ##

  120. ## Default: 5s

  121. auth.http.timeout = 5s

  122. 

  123. ## Connection time-out time, used during the initial request,

  124. ## when the client is connecting to the server.

  125. ##

  126. ## Value: Duration

  127. ## -h: hour, e.g. '2h' for 2 hours

  128. ## -m: minute, e.g. '5m' for 5 minutes

  129. ## -s: second, e.g. '30s' for 30 seconds

  130. ##

  131. ## Default: 5s

  132. auth.http.connect_timeout = 5s

  133. 

  134. ## Connection process pool size

  135. ##

  136. ## Value: Number

  137. auth.http.pool_size = 32

  138. 

  139. ## Whether to enable HTTP Pipelining

  140. ##

  141. ## See: https://en.wikipedia.org/wiki/HTTP_pipelining

  142. auth.http.enable_pipelining = true

  143. 

  144. ##------------------------------------------------------------------------------

  145. ## SSL options

  146. 

  147. ## Path to the file containing PEM-encoded CA certificates. The CA certificates

  148. ## are used during server authentication and when building the client certificate chain.

  149. ##

  150. ## Value: File

  151. ## auth.http.ssl.cacertfile = etc/certs/ca.pem

  152. 

  153. ## The path to a file containing the client's certificate.

  154. ##

  155. ## Value: File

  156. ## auth.http.ssl.certfile = etc/certs/client-cert.pem

  157. 

  158. ## Path to a file containing the client's private PEM-encoded key.

  159. ##

  160. ## Value: File

  161. ## auth.http.ssl.keyfile = etc/certs/client-key.pem

  162. 

  163. ## In mode verify_none the default behavior is to allow all x509-path

  164. ## validation errors.

  165. ##

  166. ## Value: true | false

  167. ## auth.http.ssl.verify = false

  168. 

  169. ## If not specified, the server's names returned in server's certificate is validated against

  170. ## what's provided `auth.http.auth_req.url` config's host part.

  171. ## Setting to 'disable' will make EMQ X ignore unmatched server names.

  172. ## If set with a host name, the server's names returned in server's certificate is validated

  173. ## against this value.

  174. ##

  175. ## Value: String | disable

  176. ## auth.http.ssl.server_name_indication = disable