Trino. Helm Deploy
image:
repository: trinodb/trino
pullPolicy: Alwaysserver:
workers: 1
node:
environment: production
dataDir: /data/trino
pluginDir: /usr/lib/trino/plugin
log:
trino:
level: INFO
config:
path: /etc/trino
# authenticationType: PASSWORD
coordinatorExtraConfig: |
http-server.process-forwarded=true
http-server.authentication.type=PASSWORDΠΠ΄ΡΡΠΈΠ΅ Π΄Π°Π»ΡΡΠ΅ Π΄Π²Π° Π±Π»ΠΎΠΊΠ° ΡΠ°ΡΡΠΈΡΠ½ΠΎ Π΄ΡΡΠ³ Π΄ΡΡΠ³Π° ΠΈΡΠΊΠ»ΡΡΠ°ΡΡ. Π’ΠΎ Π΅ΡΡΡ Π΅ΡΠ»ΠΈ ΡΠΎΠ·Π΄Π°Π½Π° ΡΠ΅ΠΊΡΠΈΡ auth Π²ΠΎΡ Π² ΡΠ°ΠΊΠΎΠΌ Π²ΠΎΡ Π²ΠΈΠ΄Π΅, ΡΠΎ Π±ΡΠ΄Π΅Ρ ΡΠΎΠ·Π΄Π°Π½ /etc/trino/auth/password/password.db ΡΠΎΠ΄Π΅ΡΠΆΠ°ΡΠΈΠΉ ΠΏΠ°ΡΠΎΠ»ΠΈ ΠΈ Π²Π΅ΡΡ Π±Π»ΠΎΠΊ ΠΊΠΎΠΎΡΠ΄ΠΈΠ½Π°ΡΠΎΡΠ° ΠΊΠΎΡΠΎΡΡΠΉ ΡΡΠΎΡ ΡΠ°ΠΉΠ» ΡΠΎΠ·Π΄Π°Π΅Ρ Π»ΠΈΡΠ½ΠΈΠΉ.
Π‘Π°ΠΌ ΡΠ°ΠΉΠ» password-authenticator.properties Π±ΡΠ΄Π΅Ρ ΡΡΠΎΡΠΌΠΈΡΠΎΠ²Π°Π½ Π°Π²ΡΠΎΠΌΠ°ΡΠΈΡΠ΅ΡΠΊΠΈ Π΅ΡΠ»ΠΈ Π² ΠΏΡΠ΅Π΄ΡΠ΄ΡΡΠ΅ΠΌ Π±Π»ΠΎΠΊΠ΅ ΡΠ°ΡΠΊΠΎΠΌΠΌΠ΅Π½ΡΠΈΡΠΎΠ²Π°ΡΡ authenticationType: PASSWORD.
ΠΠ°ΡΠΎΠ»Ρ Π³Π΅Π½Π΅ΡΠΈΡΡΠ΅ΡΡΡ ΡΠ΅ΡΠ΅Π· ΡΡΠΈΠ»ΠΈΡΡ htpasswd.
auth:
passwordAuth: "maksim:$2y$10$U/zP4cpbTXiEiBTFggw15.2vlTc8N9Iug2r7iBkuhoR/QZ.iowqhS"
refreshPeriod: 5scoordinator:
secretMounts:
- name: password-secret
secretName: password-secret
path: /tmp/password.db
subPath: password.db
additionalConfigFiles:
password-authenticator.properties: |
password-authenticator.name=file
file.password-file=/tmp/password.dbΠΠ±ΡΠ·Π°ΡΠ΅Π»ΡΠ½ΠΎ!
additionalConfigProperties:
- internal-communication.shared-secret=TUVDHge141LW3bPLHdB0pacw0lfnMmNJqjNPLxBqzUF+DYYeKe1UG8MjpQTojdoXEaG988DLmuxpcatalogs:
tpcds: |
connector.name=tpcds
tpcds.splits-per-node=4
health: |
connector.name=postgresql
connection-url=jdbc:postgresql://127.0.0.1:5432/health
user-credential-name=user
password-credential-name=password
unsupported-type-handling=CONVERT_TO_VARCHARingress:
enabled: true
className: nginx
annotations:
cert-manager.io/cluster-issuer: lets-encrypt
hosts:
- host: trino.example.ru
paths:
- path: /
pathType: Prefix
tls:
- secretName: trino-tls
hosts:
- trino.example.ru