我检查了 es 软件包使用我的kerberos令牌的方式。
我可以通过浏览器, curl ( curl -negotiate -U )和来达到 es 请求带有 requests_kerberos (使用共同可选 config),但带有python elasticsearch软件包,调用简单 es.cat。 health()我得到 401 authenticationException ...
我的问题是:
- 我在哪里错了,我想念什么?
- 甚至有可能迫使ES Python Lib使用Kerberos还是在引擎盖下起作用?
提前致谢。
I checked the documentation of elasticsearch:7.x but still didn't find the way how I can force the python ES package to use my kerberos token.
I can reach the ES through a browser, curl ( curl --negotiate -u ) and requests with requests_kerberos ( with mutual OPTIONAL config ) but with the python elasticsearch package calling a simple es.cat.health() I get 401 AuthenticationException...
My questions are:
- where was I wrong, what did I miss?
- is it even possible to force the ES python lib to use kerberos or does it work under the hood?
Thanks in advance.
发布评论
评论(1)
看来我们已经找到了一个解决方案,但基本上不是来自文档。
我已经在文档中阅读了有关
elasticsearch对象可以接收http_auth输入的,但不幸的是,我没有找到它的确切等待。因此,您可以将
elasticsearch强制使用httpkerberosauth从request> requests_kerberoslib以相同的方式使用,以便将其用于简单的获取请求>它运行良好,但是欢迎任何其他建议,知识共享或评论。
It seems We've found a solution, but basically not from the docs.
I've read in the doc about the
Elasticsearchobject can receivehttp_authinput, but unfortunately I didn't find what it exactly waits for.So, you can force the
Elasticsearchto use theHTTPKerberosAuthclass from therequests_kerberoslib in same way as you can use that for a simple get request >It works well, but any other suggestions, knowledge share or comments are welcomed.