Moko JuniperHangawari te Hangarau
Rererangi API Aratohu

Ihirangi huna
1 Kupu Whakataki
2 Ka mutuview
3 He aha te Kafka?
4 Nga kupu kupu
5 Me pehea te mahi a te Streaming API
6 Kaupapa Kafka
7 Whakahohe i te API Rererangi
8 Manatokona kei te mahi te API Streaming ki te Pokapū Mana
9 Te whakatuwhera i te Kafka mo nga Kaihautu o waho
10 Te Whakamana Hononga Kiritaki Waho
11 Hōputu Karere
12 Kiritaki Examples
13 Apitihanga
14 Whānui
15 Tuhinga / Rauemi
15.1 Tohutoro
16 Whakairinga Paanga

Kupu Whakataki

Ko tenei aratohu e whakaatu ana me pehea te tango raraunga mai i te Paragon Active Assurance ma te API roma o te hua.
Ko te API tae atu ki te kiritaki rerema kei roto i te whakaurunga Paragon Active Assurance.
Engari, he iti noa te whirihoranga i mua i to whakamahi i te API. Kei te hipoki tenei i te "Whakaritea i te API Rere" kei te wharangi 1 upoko.

Ka mutuview

Ko tenei upoko e whakaatu ana me pehea te whirihora i te Streaming API kia taea ai te ohauru ki nga karere inenga ma te Kafka.
Kei raro ka haere maatau:

  • Me pehea te whakahohe i te Streaming API
  • Me pehea te whirihora i a Kafka ki te whakarongo ki nga kaihoko o waho
  • Me pehea te whirihora i a Kafka ki te whakamahi i nga ACL me te whakatuu whakamunatanga SSL mo nga kaihoko

He aha te Kafka?

Ko te Kafka he papaaho-a-takahanga e taea ai te hopu i nga raraunga i tukuna mai i nga momo puna huihuinga (nga purongo, nga papaunga raraunga, nga taputapu pūkoro) i roto i te ahua o nga awa takahanga, me te rokiroki roa o enei awa takahanga mo te tiki me te raweke a muri ake nei.
Ma te Kafka ka taea te whakahaere i te huihuinga e rere ana i te mutunga-ki-te-mutunga i roto i te tohatoha, te tino tauineine, te rapa, te aukati i te he, me te haumaru.
FAKATOKANGA: Ka taea te whirihora i te Kafka i roto i te maha o nga huarahi rereke, a i hangaia mo te whakahiato me nga punaha taapiri. Ko tenei tuhinga e aro noa ana ki te whirihora ki te whakamahi i te waahanga Streaming API e kitea ana i te Paragon Active Assurance Control Center. Mo nga tatūnga matatau ka tirohia e maatau nga tuhinga Kafka mana: kafka.apache.org/26/documentation.html.

Nga kupu kupu

  • Kafka: Papaaho-a-takahanga.
  • Kaupapa Kafka: Kohinga o nga huihuinga.
  • Kaiohauru/Kaihoko Kafka: Ko te Waahanga he kawenga mo te whakahoki mai i nga kaupapa kua rongoa ki tetahi kaupapa Kafka.
  • Kaihokohoko Kafka: He tūmau paparanga rokiroki o te kāhui Kafka.
  • SSL/TLS: He kawa haumaru te SSL i hangaia mo te tuku korero haumaru i runga i te Ipurangi. Ko TLS te whakakapi o SSL, i whakauruhia i te tau 1999.
  • SASL: Anga e whakarato ana i nga tikanga mo te motuhēhēnga kaiwhakamahi, te arowhai i te pono o te raraunga, me te whakamunatanga.
  • Kaiohauru API Streaming: Ko te Waahanga he kawenga mo te tango i nga huihuinga kua rongoa i roto i nga kaupapa kua tautuhia ki te Paragon Active Assurance me te tikanga mo te uru atu ki waho.
  • Mana Tiwhikete: He hinonga whakawhirinaki ka whakaputa me te whakakore i nga tiwhikete matua a te iwi.
  • Tiwhikete Mana Tiwhikete Tiwhikete pakiaka: Tiwhikete matua a te iwi e tohu ana i tetahi Mana Tiwhikete.

Me pehea te mahi a te Streaming API

Ka rite ki te korero i mua, ka taea e te Streaming API nga kaihoko o waho ki te tiki korero mo nga inenga mai i Kafka.
Ko nga inenga katoa i kohia e nga Kaitohu Whakamatau i te wa o te whakamatautau, te mahi tirotiro ranei ka tukuna ki te ratonga Stream.
Whai muri i te wahanga tukatuka, ka whakaputahia e te ratonga Stream aua inenga ki Kafka me etahi atu metadata.

Juniper Streaming API

Kaupapa Kafka

Kei a Kafka te ariā o nga kaupapa e whakaputahia ai nga raraunga katoa. I roto i te Paragon Active Assurance he maha nga kaupapa Kafka e waatea ana; engari, ko te waahanga iti noa iho o enei hei urunga ki waho.
Ia pūkete Paragon Active Assurance i te Pokapū Mana e rua nga kaupapa i whakatapua. Kei raro nei ko ACCOUNT te ingoa poto o te kaute:

  • paa.public.accounts.{ACCOUNT}.metrics
  • Ka whakaputaina nga karere inenga katoa mo te kaute kua tohua ki tenei kaupapa
  • He nui nga raraunga
  • Te auau whakahou teitei
  • paa.public.accounts.{ACCOUNT}.metadata
  • He raraunga meta e pa ana ki nga raraunga inenga, hei tauiraampte whakamatautau, te aroturuki, te Kaitohu Whakamatau ranei e hono ana ki nga inenga
  • He iti nga raraunga
  • He iti te auau whakahou

Whakahohe i te API Rererangi

FAKATOKANGA: Ko enei tohutohu me whakahaere i runga i te tūmau Center Center ma te whakamahi sudo.
I te mea ka taapirihia e te Streaming API etahi o runga ki te Pokapū Mana, kaore e taea te taunoa. Kia taea ai te API, me whakaahei tatou i te whakaputa i nga inenga ki Kafka i te whirihoranga matua file:

  • /etc/netrounds/netrounds.conf
    KAFKA_METRICS_ENABLED = Tika
    WHAKATŪPATO: Ko te whakaahei i tenei ahuatanga ka pa ki nga mahi a te Pokapū Mana. Me whakarite kia rite te rahi o to tauira.
    Panuku, kia taea ai te tuku whakamua o enei inenga ki nga kaupapa Kafka tika:
  • /etc/netrounds/metrics.yaml
    streaming-api: pono

Hei whakahohe me te tiimata i nga ratonga API Rererangi, whakahaere:
Ka taea e nga ratonga sudo ncc nga inenga timescaledb ka tiimata nga ratonga sudo ncc i nga inenga timescaledb
Hei whakamutunga, whakaara ano i nga ratonga:
Ka timata ano nga ratonga sudo ncc

Manatokona kei te mahi te API Streaming ki te Pokapū Mana

FAKATOKANGA: Me whakahaere enei tohutohu ki runga i te tūmau Center Center.
Ka taea e koe te manatoko kei te whiwhi koe i nga inenga mo nga kaupapa Kafka tika. Hei mahi pera, whakauruhia te whaipainga kafkacat:
sudo apt-tiki whakahou sudo apt-tiki tāuta kafkacat
Mena kei a koe he whakamatautau, he aroturuki ranei e whakahaere ana i te Pokapū Mana, ka taea e koe te whakamahi i te kafkacat ki te whiwhi inenga me te metadata mo enei kaupapa.
Whakakapihia taku kaute ki te ingoa poto o to putea (koinei te mea e kite ana koe i to Pokapū Mana URL):
kaweake METRICS_TOPIC=paa.public.accounts.myaccount.metrics
kaweake METADATA_TOPIC=paa.public.accounts.myaccount.metadata
Me kite koe i nga inenga ma te whakahaere i tenei whakahau:
kafkacat -b ${KAFKA_FQDN}:9092 -t ${METRICS_TOPIC} -C -e
Ki view metadata, whakahaere i te whakahau e whai ake nei (kia mahara kaore tenei e whakahou i nga wa katoa):
kafkacat -b ${KAFKA_FQDN}:9092 -t ${METADATA_TOPIC} -C -e
FAKATOKANGA:
kafkacat” Kiritaki Examples ”i te api 14
Ma tenei ka manatoko he API Streaming mahi mai i te Pokapū Mana. Heoi, ko te mea pea kei te pirangi koe ki te uru atu ki nga raraunga mai i tetahi kaihoko o waho. Ko te waahanga e whai ake nei e whakaatu ana me pehea te whakatuwhera i a Kafka mo te uru ki waho.

Te whakatuwhera i te Kafka mo nga Kaihautu o waho

FAKATOKANGA: Me whakahaere enei tohutohu ki runga i te tūmau Center Center.
Ma te taunoa ka whirihorahia a Kafka e rere ana i runga i te Pokapū Mana kia whakarongo noa ki te localhost mo te whakamahinga o roto.
Ka taea te whakatuwhera i te Kafka mo nga kaihoko o waho ma te whakarereke i nga tautuhinga Kafka.
Te hono atu ki a Kafka: Nga whakatupato
THE OUTDOOR PLUS TOP Rangatahi Kete Hononga Pit ahi me nga whakauru - Ata 1 TUpato: Tena koa panuihia tenei, na te mea he ngawari ki te pa atu ki nga take hononga ki a Kafka mena kaore koe i te mohio ki enei kaupapa.
I roto i te tatūnga Center Mana e whakaahuatia ana i roto i tenei tuhinga, kotahi noa te kaihokohoko Kafka.
Heoi, kia mahara ko te kaihokohoko Kafka te tikanga kia rere hei waahanga o te kahui Kafka tera pea he maha nga kaihokohoko Kafka.
I te wa e hono ana ki tetahi kaihokohoko Kafka, ka whakaturia he hononga tuatahi e te kaihoko Kafka. I runga i tenei hononga ka whakahokia mai e te kaihokohoko Kafka he rarangi o nga "kaiwhakarongo panui", he rarangi o tetahi, neke atu ranei o nga kaihokohoko Kafka.
Ina whiwhi i tenei rarangi, ka momotu te kaihoko Kafka, ka hono ano ki tetahi o enei kaiwhakarongo panui. Ko nga kaiwhakarongo panui me mau nga ingoa kaihautu, nga wahitau IP ranei e waatea ana ki te kaihoko Kafka, kei kore te kiritaki e hono.
Mena ka whakamahia te whakamunatanga SSL, he tiwhikete SSL e herea ana ki tetahi ingoa kaihautu, he mea nui ake kia whiwhi te kaihoko Kafka i te wahitau tika hei hono atu, i te mea karekau ka whakakorehia te hononga.
Pānuitia atu mo te hunga whakarongo Kafka konei: www.confluent.io/blog/kafka-listeners-explained
Whakamuna SSL/TLS
Kia mohio ai ko nga kaihoko pono anake ka whakaaetia kia uru atu ki Kafka me te Streaming API, me whirihora e whai ake nei:

  • Motuhēhēnga: Me whakarato nga kaihoko i te ingoa kaiwhakamahi me te kupuhipa na roto i te hononga haumaru SSL/TLS i waenga i te kiritaki me Kafka.
  • Whakamanatanga: Ka taea e nga kiritaki kua whakamanahia te mahi i nga mahi kua whakaritea e nga ACL.
    Anei he mutungaview:

Juniper Streaming API - Fig

*) Ko te whakamotuhēhēnga ingoa kaiwhakamahi/kupuhipa i mahia i runga i te hongere whakamuna SSL
Kia tino marama ki te mahi whakamunatanga SSL/TLS mo Kafka, tirohia nga tuhinga whaimana: docs.confluent.io/platform/current/kafka/encryption.html
SSL/TLS Tiwhikete Nekeview
FAKATOKANGA: I roto i tenei waahanga ka whakamahia e matou nga kupu e whai ake nei:
Tiwhikete: He tiwhikete SSL i hainatia e te Mana Tiwhikete (CA). Kei ia kaihokohoko Kafka tetahi.
Toa matua: Te toa matua file e pupuri ana i te tiwhikete. Te toa matua file kei roto te kī tūmataiti o te tiwhikete; no reira, me tiaki marie.
Toa Kaitiaki: A file kei roto nga tiwhikete CA whakawhirinaki.
Hei whakarite i te whakamotuhēhēnga i waenga i te kiritaki o waho me te Kafka e whakahaere ana i te Pokapū Mana, me whai i nga taha e rua he toa matua kua tautuhia me tetahi tiwhikete whai hononga kua hainatia e te Mana Tiwhikete (CA) me te tiwhikete pakiaka CA.
I tua atu i tenei, me whai toa te kaihoko me te tiwhikete pakiaka CA.
Ko te tiwhikete pakiaka CA he mea noa ki te kaihokohoko Kafka me te kaihoko Kafka.
Te hanga i nga Tiwhikete e hiahiatia ana
Tei roto i te “Apitiraa” i te api 17.
Kafka Broker SSL/TLS Whirihoranga i te Pokapū Mana
FAKATOKANGA: Me whakahaere enei tohutohu ki runga i te tūmau Center Center.
FAKATOKANGA: I mua i te haere tonu, me hanga e koe te toa matua kei roto te tiwhikete SSL ma te whai i nga tohutohu kei roto i te "Apitihanga" i te wharangi 17. Ko nga huarahi e whakahuatia ake nei ka ahu mai i enei tohutohu.
Ko te toa matua SSL he file rongoa ki runga kōpae me te file toronga .jks.
Ina whiwhi koe i nga tiwhikete e hiahiatia ana mo te kaihokohoko Kafka me te kaihoko Kafka e waatea ana, ka taea e koe te haere tonu ma te whirihora i te kaihokohoko Kafka e rere ana i te Mana Whakahaere. Me mohio koe ki enei e whai ake nei:

  • : Ko te ingoa kaihautu o te Pokapū Mana; me whakatau tenei me te waatea e nga kaihoko Kafka.
  • : Ko te kupuhipa keystore i whakaratohia i te wa e hanga ana i te tiwhikete SSL.
  • a : Koinei nga kupuhipa e hiahia ana koe ki te whakarite mo te kaiwhakahaere me te kaiwhakamahi kiritaki.
    Kia mahara ka taea e koe te taapiri atu i nga kaiwhakamahi, pera i te tohu i roto i te example.
    Whakatikaina, taapiri ranei (me te uru sudo) nga taonga kei raro i /etc/kafka/server.properties, me te whakauru i nga taurangi o runga ake nei e whakaatuhia ana:

Ata Hiko Hiko WHAKATŪPATO: Kaua e tango PLAINTEXT://localhost:9092; ka pakaru te mahi a te Pokapū Mana i te mea kaore e taea e nga ratonga o roto te korero.
…# Ko nga wahitau e whakarongohia ana e te kaihokohoko Kafka.
whakarongo=PLAINTEXT://localhost:9092,SASL_SSL://0.0.0.0:9093
# Ko enei nga kaihautu i panuitia ki nga kaihoko e hono ana.
advertised.listeners=PLAINTEXT://localhost:9092,SASL_SSL:// :9093…
####### whirihora ritenga
# SSL whirihora
ssl.endpoint.identification.algorithm=
ssl.keystore.location=/var/ssl/private/kafka.server.keystore.jks
ssl.keystore.password=
ssl.key.password=
ssl.client.auth=kore
ssl.protocol=TLSv1.2
# whirihoranga SASL sasl.enabled.mechanisms=PAIN
listener.name.sasl_ssl.plain.sasl.jaas.config=org.apache.kafka.common.security.plain.PlainLoginMo dule e hiahiatia ana \ username=”admin” \ password=” "\user_admin=" " \ user_client = " ”; # FAKATOKANGA ka taea te taapiri atu ki nga kaiwhakamahi_ =
# Whakamanatanga, whakakāhia ACLs authorizer.class.name=kafka.security.authorizer.AclAuthorizer super.users=Kaiwhakamahi:admin
Whakaritea Rarangi Mana Uru (ACL)
Te huri i nga ACL ki te localhost
Ata Hiko Hiko WHAKATŪPATO: Me whakatu he ACL mo te localhost, kia taea tonu e te Mana Whakahaere te uru atu ki Kafka. Ki te kore e mahia, ka pakaru nga mea.
######### Nga urunga ACL mo nga kaiwhakamahi ingoamuna
/usr/lib/kafka/bin/kafka-acls.sh \
–authorizer kafka.security.authorizer.AclAuthorizer \ –authorizer-properties zookeeper.connect=localhost:2181 \ –add –allow-principal Kaiwhakamahi:ANONYMOUS –allow-host 127.0.0.1 –cluster
/usr/lib/kafka/bin/kafka-acls.sh \
–authorizer kafka.security.authorizer.AclAuthorizer \ –authorizer-properties zookeeper.connect=localhost:2181 \ –add –allow-principal Kaiwhakamahi:ANONYMOUS –allow-host 127.0.0.1 –kaupapa '*'
/usr/lib/kafka/bin/kafka-acls.sh \
–authorizer kafka.security.authorizer.AclAuthorizer \ –authorizer-properties zookeeper.connect=localhost:2181 \ –add –allow-principal Kaiwhakamahi:ANONYMOUS –allow-host 127.0.0.1 –group '*'
Na me whakaahei nga ACL mo te uru panui-anake o waho, kia whakaaetia nga kaiwhakamahi o waho ki te panui i nga kaupapa paa.public.*.
FAKATOKANGA: Mo etahi atu mana whakahaere, tirohia te tuhinga Kafka whaimana.
######### Nga urunga ACL mo nga kaiwhakamahi o waho
/usr/lib/kafka/bin/kafka-acls.sh \
–authorizer kafka.security.authorizer.AclAuthorizer \–authorizer-properties zookeeper.connect=localhost:2181 \
–apiri –allow-matua Kaiwhakamahi:* –mahi panui –mahi whakaahuatia \–rōpū 'NCC'
/usr/lib/kafka/bin/kafka-acls.sh \
–authorizer kafka.security.authorizer.AclAuthorizer \
–authorizer-properties zookeeper.connect=localhost:2181 \
–add –allow-matua Kaiwhakamahi:* –mahi panui –mahi whakaahuatanga \
–kaupapa paa.public. –momo rauemi-tauira-whakamua
Kia oti tenei, me timata ano koe i nga ratonga:
Ka timata ano nga ratonga sudo ncc
Hei manatoko ka taea e te kiritaki te whakatu hononga haumaru, whakahaeretia te whakahau e whai ake nei i runga i te rorohiko kiritaki o waho (kaore i te tūmau Center Mana). Kei raro ko PUBLIC_HOSTNAME te ingoa kaihautū o te Pokapū Mana:
openssl s_client -debug -hono ${PUBLIC_HOSTNAME}:9093 -tls1_2 | grep "Kei te tautokohia te Whakawhitiwhiti Whakahou Haumaru"
I roto i te putanga whakahau me kite koe i te tiwhikete tūmau me nga mea e whai ake nei:
Kei te tautokohia te whiriwhiringa hou
Kia mohio ai kua whakawhiwhia nga ratonga o roto ki te kaimau Kafka, tirohia te raarangi e whai ake neifiles:

Te Whakamana Hononga Kiritaki Waho

kafkacat
FAKATOKANGA: Me whakahaere enei tohutohu i runga i te rorohiko kiritaki (kaore i runga i te tūmau Center Center).
FAKATOKANGA: Hei whakaatu i nga korero inenga, me whakarite kia kotahi te kaupane e whakahaere ana i te Pokapū Mana.
Hei manatoko me te whakamana i te hononga hei kiritaki o waho, ka taea te whakamahi i te taputapu kafkacat i whakauruhia ki te waahanga "Whakamana kei te Mahi te API Rererangi ki te Pokapū Mana" kei te wharangi 4.
Mahia nga mahi e whai ake nei:
FAKATOKANGA: Kei raro, ko CLIENT_USER te kaiwhakamahi i tohua i mua i te file /etc/kafka/server.properties in
Pokapū Mana: ara, kaiwhakamahi_kiritaki me te kupuhipa kua whakatakotoria ki reira.
Ko te tiwhikete pakiaka CA e whakamahia ana ki te haina i te tiwhikete SSL taha tūmau me noho ki te kiritaki.

  • Waihanga a file client.properties me nga ihirangi e whai ake nei:
    security.protocol=SASL_SSL
    ssl.ca.location={PATH_TO_CA_CERT}
    sasl.mechanisms=PAHI
    sasl.username={CLIENT_USER}
    sasl.password={CLIENT_PASSWORD} kei hea
    • Ko {PATH_TO_CA_CERT} te waahi o te tiwhikete pakiaka CA e whakamahia ana e te kaihokohoko Kafka
    • Ko {CLIENT_USER} me {CLIENT_PASSWORD} nga tohu kaiwhakamahi mo te kiritaki.
    • Whakahaerehia te whakahau e whai ake nei kia kite i te karere i pau i te kafkacat:
    kaweake KAFKA_FQDN=
    kaweake METRICS_TOPIC=paa.public.accounts. .mehua
    kafkacat -b ${KAFKA_FQDN}:9093 -F client.properties -t ${METRICS_TOPIC} -C -e
    kei hea ko {METRICS_TOPIC} te ingoa o te kaupapa Kafka me te "paa.public."

FAKATOKANGA: Ko nga putanga tawhito o te kafkacat kaore e whakarato i te whiringa -F mo te panui i nga tautuhinga kiritaki mai i a file. Mena kei te whakamahi koe i tetahi momo putanga, me whakarato e koe nga tautuhinga mai i te raina whakahau e whakaatuhia ana i raro nei.
kafkacat -b ${KAFKA_FQDN}:9093 \
-X security.protocol=SASL_SSL \
-X ssl.ca.location={PATH_TO_CA_CERT} \
-X sasl.mechanisms=PAHI \
-X sasl.username={CLIENT_USER} \
-X sasl.password={CLIENT_PASSWORD} \
-t ${METRICS_TOPIC} -C -e
Hei patuiro i te hononga, ka taea e koe te whakamahi i te whiringa -d:
Patuiro i nga whakawhitiwhitinga kaihoko
kafkacat -d kaihoko -b ${KAFKA_FQDN}:9093 -F kiritaki.properties -t ${METRICS_TOPIC} -C -e
# Whakakorehia nga korero a te kaihokohoko
kafkacat -d kaihokohoko -b ${KAFKA_FQDN}:9093 -F kiritaki.nga taonga -t ${METRICS_TOPIC} -C -e
Me titiro ki nga tuhinga mo te whare pukapuka kiritaki Kafka e whakamahia ana, na te mea ka rereke nga taonga mai i era kei roto i te client.properties.

Hōputu Karere

Ko nga karere e whakamahia ana mo nga inenga me nga kaupapa metadata kua raupapahia ki te whakatakotoranga Kawa buffers (protobuf) (tirohia developers.google.com/protocol-buffers). Ko nga aronuinga mo enei karere ka piri ki te whakatakotoranga e whai ake nei:
Kaupapa Whakataunga Inenga
syntax = "proto3"; kawemai "google/protobuf/timestamp.proto”; mōkihi paa.streamingapi; kōwhiringa go_package = “.;paa_streamingapi”; karere Metrics { google.protobuf.Timestamp wāamp = 1; mahere whenua uara = 2; int32 measurement_id = 3; } /** * Ko te uara ineine he tauoti, he maanu ranei. */
karere MetricValue {tetahi momo { int64 int_val = 1; float float_val = 2; }}
Kaupapa Metadata Protobuf
syntax = “proto3”; mōkihi paa.streamingapi; kōwhiringa go_package = “.;paa_streamingapi”; karere Metadata { int32 measurement_id = 1; aho ine_ingoa = 2; mahere whenua tags = 13; }

Kiritaki Examples

FAKATOKANGA: Ko enei whakahau kia rere ki runga i te kiritaki o waho, hei tauiraampme to pona, he rite ranei, kaua ki te Pokapū Mana.
FAKATOKANGA: Kia whakaatu nga korero inenga, me whakarite kia kotahi te kaupane e whakahaere ana i te Pokapū Mana.
Kei roto i te tarball Center Mana te paa-streaming-api-client-examples.tar.gz (kiritaki-examples), kei roto he exampKo te tuhinga Python e whakaatu ana me pehea te whakamahi i te Streaming API.
Tāuta me te Whirihora Kiritaki Examples
Ka kitea e koe te kiritaki-exampkei te kōpaki Paragon Active Assurance Control Center:
kaweake CC_VERSION=3.3.1
cd ./paa-control-center_${CC_VERSION} ls paa-streaming-api-client-exampiti*
Hei tāuta kiritaki-exampi runga i to rorohiko kiritaki o waho, haere penei:
# Waihangahia he raarangi mo te tango i nga ihirangi o te kiritaki examples tarball mkdir paa-streaming-api-client-examples
# Tangohia nga ihirangi o te kiritaki examples tarball tar xzf paa-streaming-api-client-examples.tar.gz -C paa-streaming-api-client-examples
# Haere ki te cd whaiaronga hou i hangaia paa-streaming-api-client-exampte kiritaki-exampme oma a Docker. Ka kitea nga tikiake me nga tohutohu whakauru mo Docker i https://docs.docker.com/engine/install.
Te whakamahi i te Kiritaki Examples
Ko te kiritaki-exampKa taea e nga taputapu te whakahaere i roto i te aratau taketake, matatau ranei hei hanga examphe rereke te uaua. I roto i nga take e rua, ka taea hoki te whakahaere i te exampme te whirihoranga file kei roto etahi atu taonga hei whakarite ake i te taha o te kiritaki.
Aratau Taketake I roto i te aratau taketake, ko nga inenga me o raatau metadata ka rere motuhake. I tenei mutunga, ka whakarongo te kiritaki ki ia kaupapa Kafka e waatea ana mo te uru atu ki waho me te tuhi noa i nga karere kua riro ki te papatohu.
Hei timata te mahi o te ex taketakeampoma, rere: ./build.sh run-basic –kafka-brokers localhost:9092 –account ACCOUNT_SHORTNAME
ko ACCOUNT_SHORTNAME te ingoa poto o te kaute e hiahia ana koe ki te tiki i nga inenga.
Hei whakamutu i te mahi o te exampme, pehi Ctrl + C. (He iti noa te whakaroa i mua i te whakamutua o te mahi na te mea e tatari ana te kiritaki mo tetahi huihuinga wa.)
Aratau Arā Atu Anō
FAKATOKANGA: Ka whakaatuhia nga inenga mo nga kaitirotiro HTTP e whakahaere ana i te Pokapū Mana.
Ko te mahi i roto i te aratau matatau e whakaatu ana i te hononga i waenga i nga ine me nga karere metadata. Ka taea tenei na te noho mai o ia karere inenga o tetahi mara id awa e tohu ana ki te karere metadata e pa ana.
Ki te mahia te ex matatauamples, rere: ./build.sh run-advanced –kafka-brokers localhost:9092 –account ACCOUNT_SHORTNAME ko ACCOUNT_SHORTNAME te ingoa poto o te kaute e hiahia ana koe ki te tiki i nga inenga.
Hei whakamutu i te mahi o te exampme, pehi Ctrl + C. (He iti noa te whakaroa i mua i te whakamutua o te mahi na te mea e tatari ana te kiritaki mo tetahi huihuinga wa.)
Tautuhinga taapiri
Ka taea te whakahaere i te exampme etahi atu whirihoranga o te kiritaki ma te whakamahi i te –config-file kōwhiringa ka whai a file ingoa kei roto i nga taonga kei te puka puka = ​​uara.
./build.sh run-advanced \ –kafka-brokers localhost:9092 \ –account ACCOUNT_SHORTNAME \ –config-file client_config.properties
FAKATOKANGA: Katoa files tohutoro i roto i te whakahau i runga ake me noho ki roto i te whaiaronga onāianei me te tuku ma te whakamahi i nga ara whanaunga anake. E pa ana tenei ki te -config-file tautohe me nga urunga katoa i roto i te whirihoranga file e whakaahua ana file nga waahi.
Whakamana Motuhēhēnga Kiritaki Waho
Hei whakamana i te motuhēhēnga o te kiritaki mai i waho o te Pokapū Mana ma te whakamahi i te kiritaki-examples, mahia nga mahi e whai ake nei:

  • Mai i te kōpaki Paragon Active Assurance Control Center, huri ki te paa-streaming-api-clientexampte kōpaki:
    cd paa-streaming-api-client-examples
  • Tāruatia te tiwhikete pakiaka CA-ca-cert ki te whaiaronga o naianei.
  • Waihangatia he kiritaki.properties file me nga ihirangi e whai ake nei:
    security.protocol=SASL_SSL
    ssl.ca.location=ca-cert
    sasl.mechanism=PAHI
    sasl.username={CLIENT_USER}
    sasl.password={CLIENT_PASSWORD}
    kei hea ko {CLIENT_USER} me {CLIENT_PASSWORD} nga tohu kaiwhakamahi mo te kiritaki.
  • Whakahaere taketake exampiti:
    kaweake KAFKA_FQDN= ./build.sh run-basic –kafka-brokers ${KAFKA_FQDN}:9093 \ –account ACCOUNT_SHORTNAME
    –whirihora-file client.properties ko ACCOUNT_SHORTNAME te ingoa poto o te kaute e hiahia ana koe ki te tiki i nga inenga.
  • Whakahaere ex matatauampiti:
    kaweake KAFKA_FQDN= ./build.sh run-advanced –kafka-brokers ${KAFKA_FQDN}:9093 \ –account ACCOUNT_SHORTNAME–config-file kiritaki.ahuatanga

Apitihanga

I roto i tenei taapiri ka whakaahuahia me pehea te hanga:

  • he toa matua file mo te rokiroki i te tiwhikete SSL kaihokohoko Kafka
  • he toa whakawhirinaki file mo te penapena i te Tiwhikete Mana Tiwhikete (CA) tiwhikete pakiaka i whakamahia hei haina i te tiwhikete kaihokohoko Kafka.

Te hanga Tiwhikete Kaihokohoko Kafka
Te Waihanga Tiwhikete Ma te Mana Tiwhikete Tuturu (E taunaki ana)
E taunaki ana kia whiwhi koe i tetahi tiwhikete SSL tuuturu mai i tetahi CA whakawhirinaki.
Kia whakatauhia e koe he CA, kapea to ratou tiwhikete pakiaka CA ca-cert file ki to ara ake e whakaatuhia ana i raro nei:
kaweake CA_PATH=~/my-ca mkdir ${CA_PATH} cp ca-cert ${CA_PATH}
Waihangahia to Mana Tiwhikete
FAKATOKANGA: Ko te tikanga me haina to tiwhikete e tetahi Mana Tiwhikete tuturu; tirohia te waahanga o mua. Ko te mea e whai ake nei he ex noaample.
I konei ka waihangahia e maatau ake Tiwhikete Mana (CA) tiwhikete pakiaka file whaimana mo nga ra 999 (kaore i te taunakitia kia mahia):
# Waihangahia he raarangi mo te penapena i te CA kaweake CA_PATH=~/my-ca mkdir ${CA_PATH}
# Hangaia te tiwhikete CA openssl req -new -x509 -keyout ${CA_PATH}/ca-key -out ${CA_PATH}/ca-cert -ra 999
Waihangatia te Toa Kaitiaki Kiritaki
Inaianei ka taea e koe te hanga i tetahi toa whakawhirinaki file kei roto te tiwhikete-ca i hangaia i runga ake nei. Tenei file ka hiahiatia e te kiritaki Kafka ka uru atu ki te Streaming API:
keytool -keystore kafka.client.truststore.jks \ -alias CARoot \ -importcert -file ${CA_PATH}/ca-cert
Inaianei kei roto te tiwhikete CA i te toa, ka whakawhirinaki te kaihoko ki tetahi tiwhikete kua hainatia ki a ia.
Me kape koe i te file kafka.client.truststore.jks ki tetahi waahi e mohiotia ana i runga i to rorohiko kiritaki ka tohu ki roto i nga tautuhinga.
Te hanga i te Keystore mo te Kafka Broker
Hei whakaputa i te tiwhikete SSL kaihokohoko Kafka me te toa matua kafka.server.keystore.jks, haere penei:
Te whakaputa i te Tiwhikete SSL
Kei raro nei, ko te 999 te maha o nga ra whaimana o te toa matua, a ko FQDN te ingoa rohe tino whai mana o te kiritaki (ingoa manaaki mo te iwi whanui o te node).
FAKATOKANGA: He mea nui kia taurite te FQDN ki te ingoa kaihautu tika ka whakamahia e te kaihoko Kafka hei hono atu ki te Pokapū Mana. sudo mkdir -p /var/ssl/private
sudo chown -R $USER: / var / ssl / cd tūmataiti / var / ssl / kaweake motuhake FQDN =
keytool -keystore kafka.server.keystore.jks \ -pūmau ingoa ingoa \ -mana 999 \ -genkey -keyalg RSA -ext SAN=dns:${FQDN}
Waihangahia he tono hainatanga tiwhikete ka penapena ki roto i te file whakaingoatia cert-server-tono:
keytool -keystore kafka.server.keystore.jks \ -pūmau ingoa ingoa \ -certreq \ -file tono tiwhikete-tūmau
Me tuku e koe te file cert-server-tono ki to Mana Tiwhikete (CA) mena kei te whakamahi koe i te mea pono. Ka whakahokia e ratou te tiwhikete kua hainatia. Ka kiia e matou he tiwhikete-tūmau-i hainatia i raro nei. Te Waitohu i te Tiwhikete SSL Ma te whakamahi i te Tiwhikete CA i hangaia e koe
FAKATOKANGA: Ano, ko te whakamahi i a koe ake CA kaore i te tūtohutia i roto i te punaha whakaputa. Waitohuhia te tiwhikete ma te whakamahi i te CA ma te file cert-server-tono, e whakaputa ana i te tiwhikete kua hainatia te tohu-tūmau-haina. Tirohia i raro; ca-kupuhipa ko te kupuhipa kua whakaritea i te wa e hanga ana te tiwhikete CA.
cd /var/ssl/private openssl x509 -req \ -CA ${CA_PATH}/ca-cert \ -CAkey ${CA_PATH}/ca-key \ -in cert-server-tono \ -out cert-server-signed \ -ra 999 -CA hanga raupapa \ -passin pass:{ca-kupuhipa}
Te kawemai i te Tiwhikete Waitohu ki roto i te Pataka Matua
Kawemai i te tiwhikete pakiaka ca-cert ki te toa matua:
keytool -keystore kafka.server.keystore.jks \ -alias ca-cert \ -import \ -file ${CA_PATH}/ca-cert
Kawemai i te tiwhikete kua hainatia e kiia ana he tiwhikete-tūmau-tohu:
keytool -keystore kafka.server.keystore.jks \ -tūmau ingoakē \ -kawmai \ -file haina-tūmau-tohu
Ko te file Me kape te kafka.server.keystore.jks ki tetahi waahi e mohiotia ana i runga i te tūmau Center Mana, ka tukuna ki roto /etc/kafka/server.properties.
Ma te whakamahi i te Streaming API

Whānui

Ko te API rerema te tiki i nga raraunga whakamatautau me te aro turuki. Kaore e taea te wehe i tetahi o enei waahanga.
Karekau te API rerema e tiki raraunga mai i nga whakamatautau-a-tuhituhi (ko era e tohuhia ana e te tapawha, kaua ki te waahanga ira i roto i te Mana Whakahaere GUI), penei i nga whakamatautau whakahohe ratonga Ethernet me nga whakamatautau marama.
Nga Ingoa Kaupapa Kafka
Ko nga ingoa kaupapa Kafka mo te API roma e whai ake nei, ko %s te ingoa poto o te Mana
Pūkete pokapū (kua tohuhia i te wa e hanga ana i te kaute):
const (ExporterName = “kafka”metadataTopicTpl = “paa.public.accounts.%s.metadata” metricsTopicTpl = “paa.public.accounts.%s.metrics”)
Exampte whakamahi i te API Rererangi
Ko te exampKo nga mea e whai ake nei ka kitea i roto i te paa-streaming-api-client-examples.tar.gz kei roto i te tarball Center Mana.
Tuatahi, he taketake taketakeampe whakaatu ana me pehea te rere motuhake o nga ine me o raatau metadata ka taia noa nga karere kua tae ki te papatohu. Ka taea e koe te whakahaere penei: sudo ./build.sh run-basic –kafka-brokers localhost:9092 –account ACCOUNT_SHORTNAME
He hoki te ex matatau akeampte wahi e hono ana nga inenga me nga karere metadata. Whakamahia tenei tono hei whakahaere:
sudo ./build.sh run-advanced –kafka-brokers localhost:9092 –account ACCOUNT_SHORTNAME Me whakamahi koe sudo ki te whakahaere i nga whakahau Docker penei i nga mea o runga ake nei. Ko te hiahia, ka taea e koe te whai i nga taahiraa i muri i te whakaurunga o te Linux kia taea ai te whakahaere i nga whakahau Docker me te kore sudo.
Mo nga taipitopito, haere ki docs.docker.com/engine/install/linux-postinstall.
Ko Juniper Networks, te tohu Juniper Networks, Juniper, me Junos he tohu tohu rehita na Juniper Networks, Inc. i te United States me etahi atu whenua. Ko etahi atu tohu hokohoko katoa, tohu ratonga, tohu rehita, tohu ratonga kua rehitatia ranei na o ratou ake rangatira. Karekau he kawenga a Juniper Networks mo nga hapa o tenei tuhinga. Kei a Juniper Networks te mana ki te whakarereke, ki te whakarereke, ki te whakawhiti, ki te whakarereke ranei i tenei panui me te kore panui. Mana pupuri © 2022 Juniper Networks, Inc. Pūmau te mana.

Moko Juniper

Tuhinga / Rauemi

Juniper Streaming API [pdf] Aratohu Kaiwhakamahi
API roma, API

Tohutoro

Whakairinga Paanga

Waiho he korero

Ka kore e whakaputaina to wahitau imeera. Kua tohua nga mara e hiahiatia ana *