Add support for specifying custom CA cert for Elasticsearch (#29122)

pull/2647/head
Claire 2024-02-07 13:09:43 +01:00 committed by GitHub
parent eeabf9af72
commit 2912829411
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 4 additions and 0 deletions

View File

@ -7,6 +7,9 @@ user = ENV.fetch('ES_USER', nil).presence
password = ENV.fetch('ES_PASS', nil).presence password = ENV.fetch('ES_PASS', nil).presence
fallback_prefix = ENV.fetch('REDIS_NAMESPACE', nil).presence fallback_prefix = ENV.fetch('REDIS_NAMESPACE', nil).presence
prefix = ENV.fetch('ES_PREFIX') { fallback_prefix } prefix = ENV.fetch('ES_PREFIX') { fallback_prefix }
ca_file = ENV.fetch('ES_CA_CERT', nil).presence
transport_options = { ssl: { ca_file: ca_file } } if ca_file.present?
Chewy.settings = { Chewy.settings = {
host: "#{host}:#{port}", host: "#{host}:#{port}",
@ -18,6 +21,7 @@ Chewy.settings = {
index: { index: {
number_of_replicas: ['single_node_cluster', nil].include?(ENV['ES_PRESET'].presence) ? 0 : 1, number_of_replicas: ['single_node_cluster', nil].include?(ENV['ES_PRESET'].presence) ? 0 : 1,
}, },
transport_options: transport_options,
} }
# We use our own async strategy even outside the request-response # We use our own async strategy even outside the request-response