Reputation
Badges 1
11 × Eureka!i can't see any option on elasticsearchConnectionString which allow me to bypass certificate check
I didn't know that I could use CLEARML_ELASTIC_SERVICE_USERNAME / CLEARML_ELASTIC_SERVICE_PASSWORD env variables 🙂 good to know
Yes, already tried, it's not implemented as we got this error :
Can't specify the options 'verify_certs' via a dictionary in 'hosts', only 'host', 'path_prefix', 'port', 'scheme', 'url_prefix', 'use_ssl' options are allowed
Yes, I've already try to pass credentials into host name, but it didn't work
@<1729671499981262848:profile|CooperativeKitten94> last question, is there any extraEnvs for MongoDB ? As credentials are plain text into logs
As the elasticsearch cluster might be reinstalled, I prefer to not add the CA into bundle certificates of clearml
- name: CLEARML__HOSTS__ELASTIC__WORKERS__ARGS
value: >-
{"verify_certs":false}
- name: CLEARML__HOSTS__ELASTIC__DATASETS__ARGS
value: >-
{"verify_certs":false}
- name: CLEARML__HOSTS__ELASTIC__EVENTS__ARGS
value: >-
{"verify_certs":false}
Okay I tried, it works with :
apiserver:
extraEnvs:
- name: CLEARML_ELASTIC_SERVICE_USERNAME
value: "elastic"
- name: CLEARML_ELASTIC_SERVICE_PASSWORD
value: "toto"
But we don't need to add the option into elasticsearchConnectionString :
externalServices:
elasticsearchConnectionString: "[...,"secure":true,...]"
As we get this error :
ValueError: Can't specify the options 'secure' via a dictionary in 'hosts', only 'host', 'path_prefix'...
To override args passed to elastic connection string
@<1729671499981262848:profile|CooperativeKitten94> as we use eck operator for our elasticsearch cluster, clearML try to connect to elasticsearch using https, but as it is self signed certificates, it it possible to bypass certificate check ?