ceph/doc/radosgw/frontends.rst
Casey Bodley 247e074338 rgw: add ssl support to beast frontend
adds frontend options ssl_certificate, ssl_private_key, ssl_port, ssl_endpoint

Fixes: http://tracker.ceph.com/issues/22832

Signed-off-by: Casey Bodley <cbodley@redhat.com>
2018-04-05 15:30:22 -04:00

130 lines
2.9 KiB
ReStructuredText

==============
HTTP Frontends
==============
.. contents::
The Ceph Object Gateway supports two embedded HTTP frontend libraries
that can be configured with ``rgw_frontends``.
Beast
=====
.. versionadded:: Mimic
The ``beast`` frontend uses the Boost.Beast library for HTTP parsing
and the Boost.Asio library for asynchronous network i/o.
Options
-------
``port`` and ``ssl_port``
:Description: Sets the listening port number. Can be specified multiple
times as in ``port=80 port=8000``.
:Type: Integer
:Default: ``80``
``endpoint`` and ``ssl_endpoint``
:Description: Sets the listening address in the form ``address[:port]``,
where the address is an IPv4 address string in dotted decimal
form, or an IPv6 address in hexadecimal notation. The
optional port defaults to 80. Can be specified multiple times
as in ``endpoint=::1 endpoint=192.168.0.100:8000``.
:Type: Integer
:Default: None
``ssl_certificate``
:Description: Path to the SSL certificate file used for SSL-enabled endpoints.
:Type: String
:Default: None
``ssl_private_key``
:Description: Optional path to the private key file used for SSL-enabled
endpoints. If one is not given, the ``ssl_certificate`` file
is used as the private key.
:Type: String
:Default: None
Civetweb
========
.. versionadded:: Firefly
The ``civetweb`` frontend uses the Civetweb HTTP library, which is a
fork of Mongoose.
Options
-------
``port``
:Description: Sets the listening port number. For SSL-enabled ports, add an
``s`` suffix like ``443s``. To bind a specific IPv4 or IPv6
address, use the form ``address:port``. Multiple endpoints
can either be separated by ``+`` as in ``127.0.0.1:8000+443s``,
or by providing multiple options as in ``port=8000 port=443s``.
:Type: String
:Default: ``7480``
``num_threads``
:Description: Sets the number of threads spawned by Civetweb to handle
incoming HTTP connections. This effectively limits the number
of concurrent connections that the frontend can service.
:Type: Integer
:Default: ``rgw_thread_pool_size``
``request_timeout_ms``
:Description: The amount of time in milliseconds that Civetweb will wait
for more incoming data before giving up.
:Type: Integer
:Default: ``30000``
``ssl_certificate``
:Description: Path to the SSL certificate file used for SSL-enabled ports.
:Type: String
:Default: None
A complete list of supported options can be found in the `Civetweb User Manual`_.
Generic Options
===============
Some frontend options are generic and supported by all frontends:
``prefix``
:Description: A prefix string that is inserted into the URI of all
requests. For example, a swift-only frontend could supply
a uri prefix of ``/swift``.
:Type: String
:Default: None
.. _Civetweb User Manual: https://civetweb.github.io/civetweb/UserManual.html