Elasticsearch访问策略-允许从客户端读取和从Node.js服务器读取/写入 [英] Elasticsearch access policy - allow read from clients and read/write from Node.js server

问题描述

我有一个AWS Elasticsearch服务器，用于在iOS应用程序中增强搜索功能.我正在使用Alamofire从iOS应用发出搜索请求，并且有一个Node.js服务器来管理Elasticsearch索引和后端数据库之间的关系，并在后端获取新数据时随时更新索引.

如何将iOS客户端的访问权限限制为只读，但对Node.js服务器也具有读/写访问权限?

解决方案

我不认为我会让iOS客户端直接触摸ES.

我会将那些GET请求(假设它们是GET请求)发送到您的节点服务器，然后让节点将它们发送到ES.

我绝不会将ES暴露给外界，尤其是不受信任的消息来源.

I've got an AWS Elasticsearch server that I'm using to power search in my iOS app. I'm using Alamofire to make search requests from the iOS app, and I've got a Node.js server to manage the relationship between the Elasticsearch index and my backend database and keep the index updated whenever my backend gets new data.

How can I restrict the access of the iOS clients to read-only, but also have read/write access for my Node.js server?

解决方案

I don't think I would let an iOS client touch ES directly.

I would send those GET requests (assuming they are GET requests) to your node server and then let node send them along to ES.

I would never expose ES to the outside world, especially to untrusted sources.

这篇关于Elasticsearch访问策略-允许从客户端读取和从Node.js服务器读取/写入的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！