您可以从 Ruby 向 Amazon Elasticsearch 发出签名的安全请求。我使用 Heroku 上的一个应用程序执行了以下操作。
确保您有 elasticsearch gem >= v1.0.15,因为对此的支持仅在 2015 年 12 月 4 日实现。
你还需要这个宝石:
gem 'faraday_middleware-aws-signers-v4'
示例来自elasticsearch-ruby/elasticsearch-transport https://github.com/elastic/elasticsearch-ruby/tree/master/elasticsearch-transport文档:
您可以在配置块中使用任何标准的 Faraday 中间件和插件,例如签署 AWS Elasticsearch 服务的请求:
使用以下代码:
require 'faraday_middleware/aws_signers_v4'
client = Elasticsearch::Client.new(url: ENV['AWS_ENDPOINT_URL']) do |f|
f.request :aws_signers_v4,
credentials: Aws::Credentials.new(ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']),
service_name: 'es',
region: 'us-east-1'
f.adapter Faraday.default_adapter
end
这也适用于 Rails 的 searchkick gem。使用上面的示例在初始化程序中设置 Searchkick.client:
# config/initializers/elasticsearch.rb
require 'faraday_middleware/aws_signers_v4'
Searchkick.client = Elasticsearch::Client.new(url: ENV['AWS_ENDPOINT_URL']) do |f|
f.request :aws_signers_v4,
credentials: Aws::Credentials.new(ENV['AWS_ACCESS_KEY_ID'], ENV['AWS_SECRET_ACCESS_KEY']),
service_name: 'es',
region: 'us-east-1'
f.adapter Faraday.default_adapter
end