Elasticsearch transport client settings (com.akana.es.client.security)

Elasticsearch client security settings

EnableSSL (elastic.client.enableSSL)

Enable SSL with Shield security on ES Cluster. Applicable only for TransportClient

Default: false

keystorePath (elastic.client.keystorePath)

Keystore path. Applicable to PKCS12 and JKS.

keystorePassword (elastic.client.keystorePassword)

Password for the keystore. Applicable to PKCS12 and JKS.

keyPassword (elastic.client.keyPassword)

Password for the private key in the keystore. defaults to keystorePassword. Applicable to PKCS12 and JKS.

alias (elastic.client.alias)

Alias for the keystore

aliasPassword (elastic.client.aliasPassword)

Alias password

clientUser (elastic.client.clientUser)

Elastic client user name. required if x-pack security is enabled.

userPassword (elastic.client.clientUserPassword)

The password for the client user. required if x-pack security is enabled.

truststorePath (elastic.client.truststorePath)

Truststore path. Applicable to PKCS12 and JKS.

truststorePassword (elastic.client.truststorePassword)

Password to the truststore. Applicable to PKCS12 and JKS.

keystoreType (elastic.client.keystoreType)

Keystore type. Possible types are PKCS12, JKS or PEM

Default: PKCS12

sslKey (elastic.client.sslKey)

Path to the PEM encoded file containing the private key.

sslCertificate (elastic.client.sslCertificate)

Path to a PEM encoded file containing the certificate (or certificate chain) that will be presented to clients when they connect.

certificateAuthorities (elastic.client.certificateAuthorities)

List of paths to the PEM encoded certificate files that should be trusted. If you are using a public CA that is already trusted by the Java runtime, you do not need to set this property.

keyPassword (elastic.client.keyPassphrase)

The passphrase that is used to decrypt the private key. This value is not required if the key is not be encrypted.

transportSSLVerificationMode (elastic.client.transportSSLVerificationMode)

The ssl verification mode. Valid values are none, certificate or full. See the documentation for details.

Default: none

sslHostNameVerifierMode (elastic.client.sslHostNameVerifierMode)

The ssl host name verifier mode. Valid values are allow_all or default. The default enforces the host name verification.

Default: allow_all