Mongodb 从Spark应用程序连接到启用SSL的mongo群集时出现问题
我正在尝试从spark应用程序连接到启用SSL的mongo群集。我正在尝试使用自签名证书,并得到以下错误Mongodb 从Spark应用程序连接到启用SSL的mongo群集时出现问题,mongodb,scala,apache-spark,ssl,Mongodb,Scala,Apache Spark,Ssl,我正在尝试从spark应用程序连接到启用SSL的mongo群集。我正在尝试使用自签名证书,并得到以下错误 Exception in monitor thread while connecting to server CLUSTER_NAME com.mongodb.MongoSocketWriteException: Exception sending message at com.mongodb.internal.connection.InternalStreamConnection.
Exception in monitor thread while connecting to server CLUSTER_NAME
com.mongodb.MongoSocketWriteException: Exception sending message
at com.mongodb.internal.connection.InternalStreamConnection.translateWriteException(InternalStreamConnection.java:525)
at com.mongodb.internal.connection.InternalStreamConnection.sendMessage(InternalStreamConnection.java:413)
at com.mongodb.internal.connection.InternalStreamConnection.sendCommandMessage(InternalStreamConnection.java:269)
at com.mongodb.internal.connection.InternalStreamConnection.sendAndReceive(InternalStreamConnection.java:253)
at com.mongodb.internal.connection.CommandHelper.sendAndReceive(CommandHelper.java:83)
at com.mongodb.internal.connection.CommandHelper.executeCommand(CommandHelper.java:33)
at com.mongodb.internal.connection.InternalStreamConnectionInitializer.initializeConnectionDescription(InternalStreamConnectionInitializer.java:106)
at com.mongodb.internal.connection.InternalStreamConnectionInitializer.initialize(InternalStreamConnectionInitializer.java:63)
at com.mongodb.internal.connection.InternalStreamConnection.open(InternalStreamConnection.java:127)
at com.mongodb.internal.connection.DefaultServerMonitor$ServerMonitorRunnable.run(DefaultServerMonitor.java:117)
at java.lang.Thread.run(Thread.java:745)
Caused by: javax.net.ssl.SSLHandshakeException: java.security.cert.CertificateException: No name matching CLUSTER_NAME found
at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1509)
at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)
val uri: String = "mongodb://" + URLEncoder.encode(Login, "UTF-8") + ":" + URLEncoder.encode(Password, "UTF-8") + "@" + cluster + ":27017/" + database + "." + collection + "?authSource=" + (if (authenticationDatabase != "") authenticationDatabase else "admin") + (if (replicaset == null) "" else "&replicaSet=" + replicaset) + "&ssl=true"
class TrustAllX509TrustManager extends X509TrustManager {
override def getAcceptedIssuers = new Array[X509Certificate](0)
override def checkClientTrusted(certs: Array[X509Certificate], authType: String): Unit = {
}
override def checkServerTrusted(certs: Array[X509Certificate], authType: String): Unit = {
}
}
谢谢 这与建立任何其他SSL连接相同。在密钥库中导入您的证书,并使用以下代码引用该密钥库
System.setProperty("javax.net.ssl.trustStore", "keystoreFilefullpath")
System.setProperty("javax.net.ssl.trustStorePassword", "password")
一旦设置了这些参数,Kafka SSL就可以工作了。如果您是从Spark发布的,则必须使用--files选项将密钥库文件上载到驱动程序/执行程序,这与建立任何其他SSL连接相同。在密钥库中导入您的证书,并使用以下代码引用该密钥库
System.setProperty("javax.net.ssl.trustStore", "keystoreFilefullpath")
System.setProperty("javax.net.ssl.trustStorePassword", "password")
一旦设置了这些参数,Kafka SSL就可以工作了。如果您是从Spark发布的,则必须使用--files选项将密钥库文件上载到驱动程序/执行程序OP请插入读取配置uri示例,或在详细信息中删除对该文件的引用。OP请插入读取配置uri示例,或在详细信息中删除对该文件的引用。