Examples with CertificateProvider com.amazon.dataprepper.plugins.certificate.CertificateProvider used on opensource projects

Search in sources :

Example 1 with CertificateProvider

use of com.amazon.dataprepper.plugins.certificate.CertificateProvider in project data-prepper by opensearch-project.

the class OTelTraceSource method start.

@Override
public void start(Buffer<Record<ExportTraceServiceRequest>> buffer) {
    if (buffer == null) {
        throw new IllegalStateException("Buffer provided is null");
    }
    if (server == null) {
        final OTelTraceGrpcService oTelTraceGrpcService = new OTelTraceGrpcService(oTelTraceSourceConfig.getRequestTimeoutInMillis(), buffer, pluginMetrics);
        final List<ServerInterceptor> serverInterceptors = getAuthenticationInterceptor();
        final GrpcServiceBuilder grpcServiceBuilder = GrpcService.builder().addService(ServerInterceptors.intercept(oTelTraceGrpcService, serverInterceptors)).useClientTimeoutHeader(false).useBlockingTaskExecutor(true);
        if (oTelTraceSourceConfig.hasHealthCheck()) {
            LOG.info("Health check is enabled");
            grpcServiceBuilder.addService(new HealthGrpcService());
        }
        if (oTelTraceSourceConfig.hasProtoReflectionService()) {
            LOG.info("Proto reflection service is enabled");
            grpcServiceBuilder.addService(ProtoReflectionService.newInstance());
        }
        grpcServiceBuilder.enableUnframedRequests(oTelTraceSourceConfig.enableUnframedRequests());
        final ServerBuilder sb = Server.builder();
        sb.disableServerHeader();
        sb.service(grpcServiceBuilder.build());
        sb.requestTimeoutMillis(oTelTraceSourceConfig.getRequestTimeoutInMillis());
        // ACM Cert for SSL takes preference
        if (oTelTraceSourceConfig.isSsl() || oTelTraceSourceConfig.useAcmCertForSSL()) {
            LOG.info("SSL/TLS is enabled.");
            final CertificateProvider certificateProvider = certificateProviderFactory.getCertificateProvider();
            final Certificate certificate = certificateProvider.getCertificate();
            sb.https(oTelTraceSourceConfig.getPort()).tls(new ByteArrayInputStream(certificate.getCertificate().getBytes(StandardCharsets.UTF_8)), new ByteArrayInputStream(certificate.getPrivateKey().getBytes(StandardCharsets.UTF_8)));
        } else {
            LOG.warn("Creating otel_trace_source without SSL/TLS. This is not secure.");
            LOG.warn("In order to set up TLS for the otel_trace_source, go here: https://github.com/opensearch-project/data-prepper/tree/main/data-prepper-plugins/otel-trace-source#ssl");
            sb.http(oTelTraceSourceConfig.getPort());
        }
        sb.maxNumConnections(oTelTraceSourceConfig.getMaxConnectionCount());
        sb.blockingTaskExecutor(Executors.newScheduledThreadPool(oTelTraceSourceConfig.getThreadCount()), true);
        server = sb.build();
    }
    try {
        server.start().get();
    } catch (ExecutionException ex) {
        if (ex.getCause() != null && ex.getCause() instanceof RuntimeException) {
            throw (RuntimeException) ex.getCause();
        } else {
            throw new RuntimeException(ex);
        }
    } catch (InterruptedException ex) {
        Thread.currentThread().interrupt();
        throw new RuntimeException(ex);
    }
    LOG.info("Started otel_trace_source...");
}
Also used : GrpcServiceBuilder(com.linecorp.armeria.server.grpc.GrpcServiceBuilder) HealthGrpcService(com.amazon.dataprepper.plugins.health.HealthGrpcService) CertificateProvider(com.amazon.dataprepper.plugins.certificate.CertificateProvider) ByteArrayInputStream(java.io.ByteArrayInputStream) ServerInterceptor(io.grpc.ServerInterceptor) ExecutionException(java.util.concurrent.ExecutionException) ServerBuilder(com.linecorp.armeria.server.ServerBuilder) Certificate(com.amazon.dataprepper.plugins.certificate.model.Certificate)

Example 2 with CertificateProvider

use of com.amazon.dataprepper.plugins.certificate.CertificateProvider in project data-prepper by opensearch-project.

the class CertificateProviderFactoryTest method getCertificateProviderS3ProviderSuccess.

@Test
public void getCertificateProviderS3ProviderSuccess() {
    final Map<String, Object> settingsMap = new HashMap<>();
    settingsMap.put("ssl", true);
    settingsMap.put("awsRegion", "us-east-1");
    settingsMap.put("sslKeyCertChainFile", "s3://data/certificate/test_cert.crt");
    settingsMap.put("sslKeyFile", "s3://data/certificate/test_decrypted_key.key");
    final PluginSetting pluginSetting = new PluginSetting(null, settingsMap);
    pluginSetting.setPipelineName("pipeline");
    oTelTraceSourceConfig = OBJECT_MAPPER.convertValue(pluginSetting.getSettings(), OTelTraceSourceConfig.class);
    oTelTraceSourceConfig.validateAndInitializeCertAndKeyFileInS3();
    certificateProviderFactory = new CertificateProviderFactory(oTelTraceSourceConfig);
    final CertificateProvider certificateProvider = certificateProviderFactory.getCertificateProvider();
    assertThat(certificateProvider, IsInstanceOf.instanceOf(S3CertificateProvider.class));
}
Also used : OTelTraceSourceConfig(com.amazon.dataprepper.plugins.source.oteltrace.OTelTraceSourceConfig) HashMap(java.util.HashMap) CertificateProvider(com.amazon.dataprepper.plugins.certificate.CertificateProvider) ACMCertificateProvider(com.amazon.dataprepper.plugins.certificate.acm.ACMCertificateProvider) FileCertificateProvider(com.amazon.dataprepper.plugins.certificate.file.FileCertificateProvider) S3CertificateProvider(com.amazon.dataprepper.plugins.certificate.s3.S3CertificateProvider) S3CertificateProvider(com.amazon.dataprepper.plugins.certificate.s3.S3CertificateProvider) PluginSetting(com.amazon.dataprepper.model.configuration.PluginSetting) Test(org.junit.jupiter.api.Test)

Example 3 with CertificateProvider

use of com.amazon.dataprepper.plugins.certificate.CertificateProvider in project data-prepper by opensearch-project.

the class CertificateProviderFactoryTest method getCertificateProviderFileProviderSuccess.

@Test
public void getCertificateProviderFileProviderSuccess() {
    final Map<String, Object> settingsMap = new HashMap<>();
    settingsMap.put("ssl", true);
    settingsMap.put("sslKeyCertChainFile", "data/certificate/test_cert.crt");
    settingsMap.put("sslKeyFile", "data/certificate/test_decrypted_key.key");
    final PluginSetting pluginSetting = new PluginSetting(null, settingsMap);
    pluginSetting.setPipelineName("pipeline");
    oTelTraceSourceConfig = OBJECT_MAPPER.convertValue(pluginSetting.getSettings(), OTelTraceSourceConfig.class);
    certificateProviderFactory = new CertificateProviderFactory(oTelTraceSourceConfig);
    final CertificateProvider certificateProvider = certificateProviderFactory.getCertificateProvider();
    assertThat(certificateProvider, IsInstanceOf.instanceOf(FileCertificateProvider.class));
}
Also used : OTelTraceSourceConfig(com.amazon.dataprepper.plugins.source.oteltrace.OTelTraceSourceConfig) FileCertificateProvider(com.amazon.dataprepper.plugins.certificate.file.FileCertificateProvider) HashMap(java.util.HashMap) CertificateProvider(com.amazon.dataprepper.plugins.certificate.CertificateProvider) ACMCertificateProvider(com.amazon.dataprepper.plugins.certificate.acm.ACMCertificateProvider) FileCertificateProvider(com.amazon.dataprepper.plugins.certificate.file.FileCertificateProvider) S3CertificateProvider(com.amazon.dataprepper.plugins.certificate.s3.S3CertificateProvider) PluginSetting(com.amazon.dataprepper.model.configuration.PluginSetting) Test(org.junit.jupiter.api.Test)

Example 4 with CertificateProvider

use of com.amazon.dataprepper.plugins.certificate.CertificateProvider in project data-prepper by opensearch-project.

the class CertificateProviderFactoryTest method getCertificateProviderAcmProviderSuccess.

@Test
public void getCertificateProviderAcmProviderSuccess() {
    final Map<String, Object> settingsMap = new HashMap<>();
    settingsMap.put("useAcmCertForSSL", true);
    settingsMap.put("awsRegion", "us-east-1");
    settingsMap.put("acmCertificateArn", "arn:aws:acm:us-east-1:account:certificate/1234-567-856456");
    settingsMap.put("sslKeyCertChainFile", "data/certificate/test_cert.crt");
    settingsMap.put("sslKeyFile", "data/certificate/test_decrypted_key.key");
    final PluginSetting pluginSetting = new PluginSetting(null, settingsMap);
    pluginSetting.setPipelineName("pipeline");
    oTelTraceSourceConfig = OBJECT_MAPPER.convertValue(pluginSetting.getSettings(), OTelTraceSourceConfig.class);
    certificateProviderFactory = new CertificateProviderFactory(oTelTraceSourceConfig);
    final CertificateProvider certificateProvider = certificateProviderFactory.getCertificateProvider();
    assertThat(certificateProvider, IsInstanceOf.instanceOf(ACMCertificateProvider.class));
}
Also used : OTelTraceSourceConfig(com.amazon.dataprepper.plugins.source.oteltrace.OTelTraceSourceConfig) HashMap(java.util.HashMap) CertificateProvider(com.amazon.dataprepper.plugins.certificate.CertificateProvider) ACMCertificateProvider(com.amazon.dataprepper.plugins.certificate.acm.ACMCertificateProvider) FileCertificateProvider(com.amazon.dataprepper.plugins.certificate.file.FileCertificateProvider) S3CertificateProvider(com.amazon.dataprepper.plugins.certificate.s3.S3CertificateProvider) ACMCertificateProvider(com.amazon.dataprepper.plugins.certificate.acm.ACMCertificateProvider) PluginSetting(com.amazon.dataprepper.model.configuration.PluginSetting) Test(org.junit.jupiter.api.Test)

Example 5 with CertificateProvider

use of com.amazon.dataprepper.plugins.certificate.CertificateProvider in project data-prepper by opensearch-project.

the class OTelMetricsSource method start.

@Override
public void start(Buffer<Record<ExportMetricsServiceRequest>> buffer) {
    if (buffer == null) {
        throw new IllegalStateException("Buffer provided is null");
    }
    if (server == null) {
        final OTelMetricsGrpcService oTelMetricsGrpcService = new OTelMetricsGrpcService(oTelMetricsSourceConfig.getRequestTimeoutInMillis(), buffer, pluginMetrics);
        final List<ServerInterceptor> serverInterceptors = getAuthenticationInterceptor();
        final GrpcServiceBuilder grpcServiceBuilder = GrpcService.builder().addService(ServerInterceptors.intercept(oTelMetricsGrpcService, serverInterceptors)).useClientTimeoutHeader(false).useBlockingTaskExecutor(true);
        if (oTelMetricsSourceConfig.hasHealthCheck()) {
            LOG.info("Health check is enabled");
            grpcServiceBuilder.addService(new HealthGrpcService());
        }
        if (oTelMetricsSourceConfig.hasProtoReflectionService()) {
            LOG.info("Proto reflection service is enabled");
            grpcServiceBuilder.addService(ProtoReflectionService.newInstance());
        }
        grpcServiceBuilder.enableUnframedRequests(oTelMetricsSourceConfig.enableUnframedRequests());
        final ServerBuilder sb = Server.builder();
        sb.disableServerHeader();
        sb.service(grpcServiceBuilder.build());
        sb.requestTimeoutMillis(oTelMetricsSourceConfig.getRequestTimeoutInMillis());
        // ACM Cert for SSL takes preference
        if (oTelMetricsSourceConfig.isSsl() || oTelMetricsSourceConfig.useAcmCertForSSL()) {
            LOG.info("SSL/TLS is enabled.");
            final CertificateProvider certificateProvider = certificateProviderFactory.getCertificateProvider();
            final Certificate certificate = certificateProvider.getCertificate();
            sb.https(oTelMetricsSourceConfig.getPort()).tls(new ByteArrayInputStream(certificate.getCertificate().getBytes(StandardCharsets.UTF_8)), new ByteArrayInputStream(certificate.getPrivateKey().getBytes(StandardCharsets.UTF_8)));
        } else {
            LOG.warn("Creating otel_metrics_source without SSL/TLS. This is not secure.");
            LOG.warn("In order to set up TLS for the otel_metrics_source, go here: https://github.com/opensearch-project/data-prepper/tree/main/data-prepper-plugins/otel-metrics-source#ssl");
            sb.http(oTelMetricsSourceConfig.getPort());
        }
        sb.maxNumConnections(oTelMetricsSourceConfig.getMaxConnectionCount());
        sb.blockingTaskExecutor(Executors.newScheduledThreadPool(oTelMetricsSourceConfig.getThreadCount()), true);
        server = sb.build();
    }
    try {
        server.start().get();
    } catch (ExecutionException ex) {
        if (ex.getCause() != null && ex.getCause() instanceof RuntimeException) {
            throw (RuntimeException) ex.getCause();
        } else {
            throw new RuntimeException(ex);
        }
    } catch (InterruptedException ex) {
        Thread.currentThread().interrupt();
        throw new RuntimeException(ex);
    }
    LOG.info("Started otel_metrics_source...");
}
Also used : GrpcServiceBuilder(com.linecorp.armeria.server.grpc.GrpcServiceBuilder) HealthGrpcService(com.amazon.dataprepper.plugins.health.HealthGrpcService) CertificateProvider(com.amazon.dataprepper.plugins.certificate.CertificateProvider) ByteArrayInputStream(java.io.ByteArrayInputStream) ServerInterceptor(io.grpc.ServerInterceptor) ExecutionException(java.util.concurrent.ExecutionException) ServerBuilder(com.linecorp.armeria.server.ServerBuilder) Certificate(com.amazon.dataprepper.plugins.certificate.model.Certificate)

Aggregations

CertificateProvider (com.amazon.dataprepper.plugins.certificate.CertificateProvider)11 FileCertificateProvider (com.amazon.dataprepper.plugins.certificate.file.FileCertificateProvider)7 Test (org.junit.jupiter.api.Test)7 PluginSetting (com.amazon.dataprepper.model.configuration.PluginSetting)6 ACMCertificateProvider (com.amazon.dataprepper.plugins.certificate.acm.ACMCertificateProvider)6 S3CertificateProvider (com.amazon.dataprepper.plugins.certificate.s3.S3CertificateProvider)6 HashMap (java.util.HashMap)6 Certificate (com.amazon.dataprepper.plugins.certificate.model.Certificate)4 ServerBuilder (com.linecorp.armeria.server.ServerBuilder)4 ByteArrayInputStream (java.io.ByteArrayInputStream)4 ExecutionException (java.util.concurrent.ExecutionException)4 HealthGrpcService (com.amazon.dataprepper.plugins.health.HealthGrpcService)3 OTelMetricsSourceConfig (com.amazon.dataprepper.plugins.source.otelmetrics.OTelMetricsSourceConfig)3 OTelTraceSourceConfig (com.amazon.dataprepper.plugins.source.oteltrace.OTelTraceSourceConfig)3 GrpcServiceBuilder (com.linecorp.armeria.server.grpc.GrpcServiceBuilder)3 ServerInterceptor (io.grpc.ServerInterceptor)3 OTelProtoCodec (com.amazon.dataprepper.plugins.otel.codec.OTelProtoCodec)1 HTTPSourceConfig (com.amazon.dataprepper.plugins.source.loghttp.HTTPSourceConfig)1 ScheduledThreadPoolExecutor (java.util.concurrent.ScheduledThreadPoolExecutor)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial