Neo4j – 如何使用Docker镜像从安全连接访问螺栓?
Docker新手 所以我设法将正式的Neo4j EE Docker镜像部署到Google Container Engine,当从本地运行我的Angular应用程序时,一切都很好(因为它不是来自安全的连接)。
但是,当我将应用程序部署到Firebase时,应用程序将通过安全连接对DB / Docker容器进行所有调用,结果如下错误:
Mixed Content: The page at 'https://luminate-testing-24112016.firebaseapp.com/dashboard' was loaded over HTTPS, but attempted to connect to the insecure WebSocket endpoint 'ws://35.196.251.244:7687/'. This request has been blocked; this endpoint must be available over WSS. 请注意,无论Docker镜像是否部署到GKE或AWS,都会发生这种情况。
这里是我的yaml文件:
apiVersion: v1 kind: Service metadata: name: neo4j spec: type: LoadBalancer loadBalancerSourceRanges: - 0.0.0.0/0 ports: - name: browser port: 7474 protocol: TCP - name: bolt port: 7687 protocol: TCP - name: https port: 7473 protocol: TCP selector: app: neo4j apiVersion: "apps/v1beta1" kind: StatefulSet metadata: name: neo4j spec: serviceName: neo4j replicas: 1 template: metadata: labels: app: neo4j spec: containers: - name: neo4j image: luminateqr/neo4j-with-apoc:latest imagePullPolicy: Always ports: - name: browser containerPort: 7474 - name: bolt containerPort: 7687 - name: https containerPort: 7473 volumeMounts: - name: neo4j-data mountPath: /data volumeClaimTemplates: - metadata: name: neo4j-data annotations: volume.beta.kubernetes.io/storage-class: slow spec: accessModes: [ "ReadWriteOnce" ] resources: requests: storage: 50Gi kind: StorageClass apiVersion: storage.k8s.io/v1beta1 metadata: name: slow provisioner: kubernetes.io/gce-pd parameters: type: pd-standard zone: us-east1-c
有几个问题和答案似乎相似,但我不知道哪些适用,哪些不适用。 我知道在TLS上设置一个websocket与它有关,但是如何做到这一点没有一致的和/或明确的答案(这看起来很奇怪,因为这可能是一个常见的情况)
你应该在你的neo4j.conf中设置这个参数
dbms.connector.bolt.tls_level=REQUIRED
在docker的情况下,你可以使用这里描述的选项: Neo4j Docker Image的configuration文件
- 将mysql数据导入kubernetes pod
- 无法从Google计算引擎实例运行gcloud docker push
- docker机器,创build并运行一个nginx容器不暴露端口80
- kubernetes部署。 如何更改滚动更新的容器环境variables?
- Kubernetes卷装载path
- 如何在Google Container Engine / Kubernetes上扩展我的群集?
- 为节点应用程序实现CI /部署pipe道
- HTTP(S)负载均衡Kubernetes / Docker
- build立一个Docker镜像(.NET Core)并将其上传到Google Container Engine?