...
Code Block | ||
---|---|---|
| ||
struct Credential { username string, password string } func NewCredential() (bool,error) func ListCredential() []Credential func GetCredential(username string) *Credential func UpdateCredential(cred Credential) (bool,error) func DeleteCredential(username string) (bool,error) |
This project also aims to provide HTTPS transport security, and it takes several certificate related configuration options, either through command-line flags or environment variables: --cert-file=<path>: Certificate used for SSL/TLS connections to milvus. --key-file=<path>: Key for the certificate. Must be unencrypted. --client-cert-auth: When this is set milvus will check all incoming HTTPS requests for a client certificate signed by the trusted CA, requests that don’t supply a valid client certificate will fail. --trusted-ca-file=<path>: Trusted certificate authority. --auto-tls: Use automatically generated self-signed certificates for TLS connections with clients.
Test Plan
Case 1: create credentials for milvus
...
- Access without credentials should succeed
- Access with credentials should fail
Case 3: https enabled for milvus
Access with correct certificates should succeedAccess with incorrect certificates should failAccess without any certificates should fail
Case 4: https not enabled for milvus
Access without certificates should succeedAccess with certificates should fail
Future work
ssl/tls transportation
Authorization on RBAC control