如何解决微服务Cloud Config客户端无法解密Spring Cloud Config服务器的加密属性
我正在使用Centralized Spring Cloud Config服务器项目,并已配置 bootstrap.yml 文件,且该文件具有spring dev和Composite Profile处于活动状态。我已经使用对称加密策略并定义了
加密: 钥匙:我选择的一些钥匙 根据Spring云配置对称加密,在confisg中央服务器和配置客户端的bootsrap.yml文件中。 我将常见的微服务配置设置放置在中央配置服务器位置,并希望通过传递如下所述的端点定义来发现Eureka端点
eureka:
instance:
prefer-ip-address: true
client:
service-url:
defaultZone: http://admin:'{cipher}a7b13e30356a50ed81275d9428a31543d7f59eb9e374f3063a94464e9f4a5863'@localhost:8761/eureka/
使用JCE加密,加密的值只不过是到达eureka端点的密码。 在配置客户端bootstrap.yml中,尝试到达终点URI时 如下所述
spring:
application:
name: gateway
profiles:
active: dev
include: composite
# The commented value for `active` can be replaced with valid Spring profiles to load.
# Otherwise,it will be filled in by maven when building the JAR file
# Either way,it can be overridden by `--spring.profiles.active` value passed in the commandline or `-Dspring.profiles.active` set in `JAVA_OPTS`
#active: dev
cloud:
config:
fail-fast: false # if not in "prod" profile,do not force to use Spring Cloud Config
uri: http://admin:'{cipher}a7b13e30356a50ed81275d9428a31543d7f59eb9e374f3063a94464e9f4a5863'@localhost:8761/config/decrypt
#http://admin:password@registry:8761/config/decrypt
# name of the config server's property source (file.yml) that we want to use
name: gateway
profile: dev # profile(s) of the property source
#label: master # toggle to switch to a different version of the configuration as stored in git
# it can be set to any label,branch or commit of the configuration source Git repository
#jasypt:
# encryptor:
# password: jasyptkey
encrypt:
key: bXktc2VjcmV0LWtleS13aGljaC1zaG91bGQtYmUtY2hhbmdlZC1pbi1wcm9kdWN0aW9uLWFuZC1iZS1iYXNlNjQtZW5jb2RlZAo=
配置客户端微服务应用无法启动并显示以下错误
2020-08-14 16:49:21.958 WARN 28060 --- [ restartedMain] c.c.c.ConfigServicePropertySourceLocator : Could not locate PropertySource: 401 Unauthorized: [{
"timestamp" : "2020-08-14T11:19:21.880+0000","status" : 401,"error" : "Unauthorized","message" : "Unauthorized","path" : "/config/decrypt/gateway/dev"
}]
是什么问题,或者我还缺少什么?
版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 dio@foxmail.com 举报,一经查实,本站将立刻删除。