This section contains information on how to secure connections for Talend Dictionary Service and how to configure the application logs.
To secure connections between Talend Dictionary Service, the MongoDB server and Apache Kafka, proceed as follows:
Open the <Tomcat>/conf/data-quality.properties file.
To secure connections with MongoDB, edit the following lines:
dq.mongo.ssl=true dq.mongo.ssl.trust-store=<path_to_truststore> dq.mongo.ssl.trust-store-password=<truststore_password>
To secure connections with Kafka using communication encryption only, edit the following lines:
spring.cloud.stream.kafka.binder.configuration.security.protocol=SSL spring.cloud.stream.kafka.binder.configuration.ssl.truststore.location=<path_to_truststore> spring.cloud.stream.kafka.binder.configuration.ssl.truststore.password=<truststore_password>
To secure connections with Kafka using authentication, edit the following lines:
spring.cloud.stream.kafka.binder.configuration.ssl.keystore.location=<path_to_keystore> spring.cloud.stream.kafka.binder.configuration.ssl.keystore.password=<keystore_password> spring.cloud.stream.kafka.binder.configuration.ssl.key.password=<key_password>
Note that the communication encryption parameters must also be defined to use authentication.
Talend Dictionary Service only supports the Java Key Store
(.jks
) format to store keys and certificates.
To enable HTTPS support on Tomcat, see https://tomcat.apache.org/tomcat-8.0-doc/ssl-howto.html.
To enable SSL support on MongoDB, see https://docs.mongodb.com/v3.0/tutorial/configure-ssl/.
To enable SSL support on Kafka, see http://kafka.apache.org/documentation.html#security_ssl.
Talend Dictionary Service logs allows you to analyze and debug the activity of Talend Dictionary Service.
Talend Dictionary Service logs are located in <Dictionary_Service_Path>/apache-tomcat/logs/.
To configure the information level of your log files, proceed as follows:
Open the <Dictionary_Service_Path>/apache-tomcat/conf/data-quality.properties file.
Edit the value of the
logging.level.org.talend
field. For more information on log4j log levels, see http://logging.apache.org/log4j/1.2/apidocs/org/apache/log4j/Level.html.