Elasticsearch访问策略-允许从客户端读取和从Node.js服务器读取/写入 [英] Elasticsearch access policy - allow read from clients and read/write from Node.js server
问题描述
我有一个AWS Elasticsearch服务器,用于在iOS应用程序中增强搜索功能.我正在使用Alamofire从iOS应用发出搜索请求,并且有一个Node.js服务器来管理Elasticsearch索引和后端数据库之间的关系,并在后端获取新数据时随时更新索引.>
如何将iOS客户端的访问权限限制为只读,但对Node.js服务器也具有读/写访问权限?
我不认为我会让iOS客户端直接触摸ES.
我会将那些GET请求(假设它们是GET请求)发送到您的节点服务器,然后让节点将它们发送到ES.
我绝不会将ES暴露给外界,尤其是不受信任的消息来源.
I've got an AWS Elasticsearch server that I'm using to power search in my iOS app. I'm using Alamofire to make search requests from the iOS app, and I've got a Node.js server to manage the relationship between the Elasticsearch index and my backend database and keep the index updated whenever my backend gets new data.
How can I restrict the access of the iOS clients to read-only, but also have read/write access for my Node.js server?
I don't think I would let an iOS client touch ES directly.
I would send those GET requests (assuming they are GET requests) to your node server and then let node send them along to ES.
I would never expose ES to the outside world, especially to untrusted sources.
这篇关于Elasticsearch访问策略-允许从客户端读取和从Node.js服务器读取/写入的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!