ElasticSearch:SpringBoot中连接单机与集群ES的通用连接配置(集群连接时使用ssl认证)

最新推荐文章于 2024-07-28 17:50:48 发布
最新推荐文章于 2024-07-28 17:50:48 发布
阅读量3k 收藏 12
点赞数 2
分类专栏: SpringBoot ElasticSearch
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/qq_39198749/article/details/117702067
版权

1. 背景

  1. 在做项目的过程,我们通常在本地开发时,需要连接单机的es进行测试,但是正式上线后,需要连接ES集群,并需要ssl认证,这种情况下,既要满足本地开发的需要,又要满足上线后集群的连接配置,故写下本文,用来记录
  2. 我比较希望在SpringBoot启动的时候,就建立es连接,故使用了 @PostConstruct 注解,详见下文。

2. SpringBoot连接单机或集群ES

2.1 首先定义外部文件elasticsearch.properties

我将该文件存放在src/main/resources/config/elasticsearch.properties下【该文件当然也可以写在不同环境的yml文件中】

#ES配置文件
#是否是单机
elasticsearch.isSingleton=true
#ca位置
elasticsearch.capath=src/main/resources/ca/xxxx
#这个参数暂时保留
elasticsearch.keystorepass=
#账号密码
elasticsearch.username=username
elasticsearch.password=password
# 三个es节点信息
elasticsearch.node1Ip=11.14.11.72
elasticsearch.node1Port=9200
elasticsearch.node1Scheme=http
elasticsearch.node2Ip=22.94.239.72
elasticsearch.node2Port=9200
elasticsearch.node2Scheme=http
elasticsearch.node3Ip=33.94.239.72
elasticsearch.node3Port=9200
elasticsearch.node3Scheme=http

2.2 配置一个bean读取上述配置

import lombok.Data;
import org.springframework.boot.context.properties.ConfigurationProperties;
import org.springframework.context.annotation.PropertySource;
import org.springframework.stereotype.Component;


@Data
@Component
@ConfigurationProperties(prefix = "elasticsearch")
@PropertySource(value = {"classpath:config/elasticsearch.properties"}, encoding = "utf-8")
public class ESConfig {

    private Boolean isSingleton;

    private String capath;

    private String keystorepass;

    private String username;

    private String password;

    private String node1Ip;

    private Integer node1Port;

    private String node1Scheme;

    private String node2Ip;

    private Integer node2Port;

    private String node2Scheme;

    private String node3Ip;

    private Integer node3Port;

    private String node3Scheme;

}

2.3 ES连接配置类

import lombok.extern.slf4j.Slf4j;
import org.apache.http.HttpHost;
import org.apache.http.auth.AuthScope;
import org.apache.http.auth.UsernamePasswordCredentials;
import org.apache.http.client.CredentialsProvider;
import org.apache.http.conn.ssl.NoopHostnameVerifier;
import org.apache.http.impl.client.BasicCredentialsProvider;
import org.apache.http.impl.nio.client.HttpAsyncClientBuilder;
import org.apache.http.ssl.SSLContextBuilder;
import org.apache.http.ssl.SSLContexts;
import org.elasticsearch.client.RestClient;
import org.elasticsearch.client.RestClientBuilder;
import org.elasticsearch.client.RestHighLevelClient;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;

import javax.annotation.PostConstruct;
import javax.net.ssl.SSLContext;
import java.io.InputStream;
import java.nio.file.Files;
import java.nio.file.Path;
import java.nio.file.Paths;
import java.security.KeyStore;


@Slf4j
@Component
public class ESClient {

    public RestHighLevelClient restHighLevelClient;

    @Autowired
    private ESConfig esConfig;

    @PostConstruct
    private void init() {
        //初始化RestHighLevelClient
        this.initRestHighLevelClient();
    }

    private ESClient() {
    }

    private void initRestHighLevelClient() {
        try {
            if (restHighLevelClient == null) {
                if (!esConfig.getIsSingleton()) {
                    //正式环境 使用ssl认证 集群连接
                    log.info("******************ES集群连接开始****************");
                    restHighLevelClient = getClusterHighLevelClient();
                    log.info("******************ES集群连接成功****************");
                    return;
                }
                //单机连接
                log.info("******************单机ES连接开始****************");
                restHighLevelClient = getSingleHighLevelClient();
                log.info("******************单机ES连接成功****************");
            }
        } catch (Exception e) {
            log.error("es连接出现异常:{}", e.toString());
        }
    }

    /**
     * 集群连接
     *
     * @return
     * @throws Exception
     */
    private RestHighLevelClient getClusterHighLevelClient() throws Exception {
        Path trustStorePath = Paths.get(esConfig.getCapath());
        KeyStore truststore = KeyStore.getInstance("pkcs12");

        String keyStorePass = esConfig.getKeystorepass();
        InputStream is = Files.newInputStream(trustStorePath);
        truststore.load(is, keyStorePass.toCharArray());

        SSLContextBuilder sslBuilder = SSLContexts.custom().loadTrustMaterial(truststore, null);
        final SSLContext sslContext = sslBuilder.build();

        final CredentialsProvider credentialsProvider = new BasicCredentialsProvider();
        credentialsProvider.setCredentials(AuthScope.ANY,
                new UsernamePasswordCredentials(esConfig.getUsername(), esConfig.getPassword()));
        log.info("连接ES集群: {}:{},{}:{},{}:{}", esConfig.getNode1Ip(), esConfig.getNode1Port(), esConfig.getNode2Ip(), esConfig.getNode2Port(), esConfig.getNode3Ip(), esConfig.getNode3Port());
        RestClientBuilder rclientBuilder = RestClient.builder(
                new HttpHost(esConfig.getNode1Ip(), esConfig.getNode1Port(), esConfig.getNode1Scheme()),
                new HttpHost(esConfig.getNode2Ip(), esConfig.getNode2Port(), esConfig.getNode2Scheme()),
                new HttpHost(esConfig.getNode3Ip(), esConfig.getNode3Port(), esConfig.getNode3Scheme()))
                .setHttpClientConfigCallback(new RestClientBuilder.HttpClientConfigCallback() {
                    @Override
                    public HttpAsyncClientBuilder customizeHttpClient(HttpAsyncClientBuilder httpClientBuilder) {
                        return httpClientBuilder.setSSLContext(sslContext)
                                .setSSLHostnameVerifier(new NoopHostnameVerifier())
                                .setDefaultCredentialsProvider(credentialsProvider);
                    }
                });
        restHighLevelClient = new RestHighLevelClient(rclientBuilder);
        return restHighLevelClient;
    }

    /**
     * 单机连接
     *
     * @return
     * @throws Exception
     */
    private RestHighLevelClient getSingleHighLevelClient() {
        final CredentialsProvider credentialsProvider = new BasicCredentialsProvider();
        credentialsProvider.setCredentials(AuthScope.ANY, new UsernamePasswordCredentials(esConfig.getUsername(), esConfig.getPassword()));
        log.info("连接单机ES: {}:{}", esConfig.getNode1Ip(), esConfig.getNode1Port());
        RestClientBuilder rclientBuilder = RestClient.builder(new HttpHost(esConfig.getNode1Ip(), esConfig.getNode1Port(), esConfig.getNode1Scheme()))
                .setHttpClientConfigCallback(new RestClientBuilder.HttpClientConfigCallback() {
                    @Override
                    public HttpAsyncClientBuilder customizeHttpClient(HttpAsyncClientBuilder httpClientBuilder) {
                        return httpClientBuilder.setSSLHostnameVerifier(new NoopHostnameVerifier())
                                .setDefaultCredentialsProvider(credentialsProvider);
                    }
                });
        restHighLevelClient = new RestHighLevelClient(rclientBuilder);
        return restHighLevelClient;
    }

}

3. 测试

import com.alibaba.fastjson.JSONObject;
import com.qs.myspringboottest.config.dbconnected.ESClient;
import org.elasticsearch.action.search.SearchRequest;
import org.elasticsearch.action.search.SearchResponse;
import org.elasticsearch.client.RequestOptions;
import org.elasticsearch.client.RestHighLevelClient;
import org.elasticsearch.index.query.QueryBuilders;
import org.elasticsearch.search.builder.SearchSourceBuilder;
import org.junit.Test;
import org.junit.runner.RunWith;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.boot.test.context.SpringBootTest;
import org.springframework.test.context.junit4.SpringRunner;

import java.io.IOException;


@RunWith(SpringRunner.class)
@SpringBootTest
public class ServiceTest1 {

    @Autowired
    private ESClient esClient;

    @Test
    public void myTest2() throws IOException {
       //获取esclient
        RestHighLevelClient restHighLevelClient = esClient.restHighLevelClient;
        SearchRequest searchRequest = new SearchRequest("indexTest");
        
        SearchSourceBuilder builder = new SearchSourceBuilder();
        builder.query(QueryBuilders.matchAllQuery());
        
        searchRequest.source(builder);

        SearchResponse searchResponse = restHighLevelClient.search(searchRequest, RequestOptions.DEFAULT);
        System.out.println(JSONObject.toJSONString(searchResponse));
    }
}

然后在SpringBoot启动过程中就会建立ES连接

2021-06-08 14:37:05.496  INFO 22736 --- [           main] c.q.m.config.dbconnected.ESClient        : ******************单机ES连接开始****************
2021-06-08 14:37:05.499  INFO 22736 --- [           main] c.q.m.config.dbconnected.ESClient        : 连接单机ES: 11.14.11.72:9200
2021-06-08 14:37:08.312  INFO 22736 --- [           main] c.q.m.config.dbconnected.ESClient        : ******************单机ES连接结束****************
alwaysonline1204
关注
专栏目录
springboot连接es集群
zsj777的专栏
09-04 2943
代码:es集群没有像类似redis集群那样需要修改很多东西,es集群比单节点多的仅仅是在spring.data.elasticsearch.cluster-nodes后多加几个连接: server.port=7777 server.servlet.path =/es # elasticsearch集群名称,默认的是elasticsearch spring.data.elasticsearch.cluster-name=wtyy-es #节点的地址 注意api模式下端口号是9300,千万不要写成9200
springboot连接es
止境博客
07-09 2411
springboot配置 ##es spring.data.elasticsearch.local=false spring.data.elasticsearch.cluster-name=kevin-application spring.data.elasticsearch.cluster-nodes=106.13.37.72:9300 spring.data.elasticsearch.repositories.enabled=true import org.springframework.dat.
spring 连接es代码
01-20
spring 连接es代码
Springboot 整合Elasticsearch
Java_Scholar0的博客
07-28 401
Springboot 整合Elasticsearch
springboot配置es集群两种方式
geejkse_seff的博客
08-30 2439
es与java交互的默认端口号是9300,与http交互的端口号是9200;方式2改成9200端口会在启动的候提示连接失败。
配置https ssl elasticsearchspringboot项目连接elasticsearch https
我怀念的
11-13 2807
elasticsearch https https
spring集成ES
qq_22650813的博客
08-31 722
修改pom.xml文件 <!-- elasticsearch--> <dependency> <groupId>org.springframework.data</groupId> <artifactId>spring-data-elasticsearch</artifactId> <version>2.1.23.RELEA
elasticsearch开启ssl安全认证和跨集群访问配置
最新发布
08-23
本人记录了elasticsearch开启ssl安全认证和跨集群访问配置
SpringBoot连接Elasticsearch实战总结
xiaosen的博客
09-17 4033
记一次线上的elasticsearch查询采坑 第一次使用elasticsearch,于是从网上找轮子复制粘贴。早好轮子测试完毕,上线。可是几天下来发现接口响应间一直都偏高(默认的超间是500ms),所以就不停的对代码优化,缩短间。但是到最后代码已经不能再优化了,响应间依然没有明显的下降趋势,甚至在高峰期会严重超。接下来会慢慢讲解elasticsearch使用优化。 Spring Bo...
集群的力量:深入理解 Elasticsearch集群机制
07-18
Elasticsearch 是一款功能强大且广泛使用的搜索与数据分析引擎,基于 Lucene 开发。它具有诸多优势,包括分布式处理能力、实搜索、高度可扩展性、多租户支持等。这些特性使得 Elasticsearch 成为处理大规模数据集...
springboot集成ElasticSearch使用RestHighLevelClient连接客户端
weixin_44907173的博客
11-12 2493
ES查询结构图 1.pom依赖引用 <dependency> <groupId>org.elasticsearch.client</groupId> <artifactId>elasticsearch-rest-high-level-client</artifactId> <version>7.6.2</version>
集成Spring、Elasticsearch、paoding,将ES服务嵌入到Web程序
12-02
集成Spring、Elasticsearch、paoding,将ES服务嵌入到Web程序,详细项目过程可参见http://blog.csdn.net/geloin/article/details/17073759。
springboot整合ElasticSearch集群
03-29
springboot 2.0.2集成elasticsearch5.5.1,并使用集群模式,亲测可用!!!
《Linux运维总结:基于银河麒麟V10+ARM64架构部署多机elasticsearch7.17.21分布式集群+单机kibana7.17.21二进制版ssl集群
东城绝神
05-14 1603
《Linux运维总结:基于银河麒麟V10+ARM64架构二进制部署elasticsearch7.17.21集群 + kibana(方案三)》
springboot2.7集成es8 https方式绕过证书访问集群
hcd1129的博客
03-19 960
springboot2 elasticsearch8 https
SpringBootes集群的基本操作
有趣的灵魂万里挑一,好看的皮囊你又没有
07-05 1782
springbot对es的基本crud操作
springboot集成Elasticsearch7.16,使用https方式连接并忽略SSL证书
qq_40310480的博客
09-06 1920
千万万苦利用科学上网找到了,记录一下。
esspringboot的两种连接方式
热门推荐
mingover的专栏
10-04 1万+
使用客户端调用es服务的两种方式 有两种方式,一种 是9200端口或叫rest 接口, 另一种是用 节点的9300端口或叫 TransportClient 说明 es的官网https://www.elastic.co/guide/en/elasticsearch/client/java-api/current/java-api.html We plan on deprecating the T...
springboot集成spring-data-elasticsearch 完成对es的操作
ratel的博客
01-17 6620
springboot工程集成spring-data-elasticsearch 完成对的es的操作
java ssl elastic_es集群开启ssl后,java如何连接es集群
06-07
连接开启了SSLElasticsearch集群,需要使用Java的TransportClient,并使用SSLContext来设置SSL连接。以下是一个简单的示例代码: ```java import org.elasticsearch.client.transport.TransportClient; import org.elasticsearch.common.settings.Settings; import org.elasticsearch.common.transport.TransportAddress; import org.elasticsearch.common.xcontent.XContentBuilder; import org.elasticsearch.common.xcontent.XContentFactory; import org.elasticsearch.transport.client.PreBuiltTransportClient; import javax.net.ssl.SSLContext; import java.net.InetAddress; import java.security.KeyStore; import java.security.SecureRandom; import java.security.cert.CertificateException; import java.security.cert.X509Certificate; import javax.net.ssl.TrustManager; import javax.net.ssl.X509TrustManager; public class ESClient { public static void main(String[] args) throws Exception { Settings settings = Settings.builder() .put("cluster.name", "myClusterName") .put("xpack.security.user", "myUsername:myPassword") .put("xpack.security.transport.ssl.enabled", true) .put("xpack.security.transport.ssl.verification_mode", "certificate") .put("xpack.security.transport.ssl.keystore.path", "/path/to/keystore.jks") .put("xpack.security.transport.ssl.truststore.path", "/path/to/truststore.jks") .build(); SSLContext sslContext = SSLContext.getInstance("TLS"); KeyStore keyStore = KeyStore.getInstance("jks"); KeyStore trustStore = KeyStore.getInstance("jks"); keyStore.load(ESClient.class.getResourceAsStream("/path/to/keystore.jks"), "keystore_password".toCharArray()); trustStore.load(ESClient.class.getResourceAsStream("/path/to/truststore.jks"), "truststore_password".toCharArray()); TrustManager[] trustManagers = new TrustManager[] { new X509TrustManager() { public void checkClientTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {} public void checkServerTrusted(X509Certificate[] x509Certificates, String s) throws CertificateException {} public X509Certificate[] getAcceptedIssuers() { return new X509Certificate[0]; } }}; sslContext.init(null, trustManagers, new SecureRandom()); TransportClient client = new PreBuiltTransportClient(settings) .addTransportAddress(new TransportAddress(InetAddress.getByName("localhost"), 9300)) .setSSLContext(sslContext); XContentBuilder builder = XContentFactory.jsonBuilder(); builder.startObject().field("name", "John").endObject(); client.prepareIndex("myindex", "mytype", "1") .setSource(builder) .get(); client.close(); } } ``` 在这个示例代码,我们首先使用Elasticsearch的TransportClient创建了一个连接,然后设置了连接ES集群所需的一些参数。其,`xpack.security.user`参数是用于认证的用户名和密码,`xpack.security.transport.ssl.enabled`参数设置为`true`表示开启SSL连接,`xpack.security.transport.ssl.verification_mode`参数设置为`certificate`表示只信任CA签署的证书。最后,我们设置了keystore和truststore的路径,并使用SSLContext将其加载。 接下来,我们使用TransportClient发送了一个简单的索引请求,将一个JSON文档插入到名为`myindex`、类型为`mytype`、ID为`1`的索引。 注意,这只是一个简单的示例,实际应用还需要根据实际情况进行配置和调整。
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值