只允许HTTPS连接的OpenSearch停靠实例

Question

我正在尝试在我的本地机器上配置OpenSearch，并使用以下配置通过docker-组合来部署它：

opensearch:
    image: opensearchproject/opensearch:1.0.0
    restart: unless-stopped
    ports:
      - "9200:9200"
      - "9300:9300"
    environment:
      discovery.type: single-node

实例成功启动，但是当尝试通过web接口访问它时，它只接受具有默认基本auth凭据(admin:admin)的HTTPS连接。即

https://localhost:9200要求我输入管理员凭据，然后返回一个预期的响应：

{
  "name" : "a39dcf825899",
  "cluster_name" : "docker-cluster",
  "cluster_uuid" : "d2ZBZDQRTyG6SvYlCmX3Iw",
  "version" : {
    "distribution" : "opensearch",
    "number" : "1.0.0",
    "build_type" : "tar",
    "build_hash" : "34550c5b17124ddc59458ef774f6b43a086522e3",
    "build_date" : "2021-07-02T23:22:21.383695Z",
    "build_snapshot" : false,
    "lucene_version" : "8.8.2",
    "minimum_wire_compatibility_version" : "6.8.0",
    "minimum_index_compatibility_version" : "6.0.0-beta1"
  },
  "tagline" : "The OpenSearch Project: https://opensearch.org/"
}

但是，当试图通过HTTP连接到实例时，我会得到一个空响应：

在铬上：

​

​

在运行在单独的Docker容器中的Django实例上使用OpenSearch Python (属于同一个docker-compose.yml)：

opensearchpy.exceptions.ConnectionError: ConnectionError(('Connection aborted.', RemoteDisconnected('Remote end closed connection without response'))) caused by: ProtocolError(('Connection aborted.', RemoteDisconnected('Remote end closed connection without response')))

作为参考，我用来将OpenSearch客户端连接到OpenSearch实例的代码是：

cls._os_client = OpenSearch(
                [{"host": 'opensearch', "port": '9200'}],
                use_ssl=False,
                verify_certs=False,
                ssl_assert_hostname=False,
                ssl_show_warn=False
            )

如何配置OpenSearch以允许不安全的HTTP连接？

Answer 1

您可以禁用安全性，只需将DISABLE_SECURITY_PLUGIN=true添加到您的env。