Kafka-Kafka 1.0.0 client 生產者 配置選項 (完整版)
由於大家日常生產開發中,對 kafka 生產者,消費者 可以支援的配置 可能有所困惑,
這裡我們寫一片文章幫助大家答疑解惑。
本文基於 Kafka 的 1.0.0 版本
其實 ,主要的配置選項,可以在以下的包中找到。
<dependency> <groupId>org.apache.kafka</groupId> <artifactId>kafka-clients</artifactId> <version>1.0.0</version> </dependency>
生產者配置:
org.apache.kafka.clients.producer.ProducerConfig
消費者配置:
org.apache.kafka.clients.consumer.ConsumerConfig
生產/ 消費 者配置按照以下方式,進行組織。
line1 : property name
line2: priority
line3 : type
line4 : default value
line5 : valid value (for some type )
line6: english description
line7 : translation
名稱:
優先順序:
型別:
預設值:
合法值:
描述:
解釋:
注意: 受限於篇幅,本篇主要對生產者配置進行講解 !!!
生產者配置:
高優先順序:
名稱:
bootstrap.servers
優先順序:
high
型別:
list
預設值:
合法值:
描述:
A list of host/port pairs to use for establishing the initial connection to the Kafka cluster. The client will make use of all servers irrespective of which servers are specified here for bootstrapping—this list only impacts the initial hosts used to discover the full set of servers. This list should be in the form host1:port1,host2:port2,.... Since these servers are just used for the initial connection to discover the full cluster membership (which may change dynamically), this list need not contain the full set of servers (you may want more than one, though, in case a server is down).
解釋:
給出一個初始化的 kafka 叢集地址,不必是叢集中的全部節點,(根據發現機制,發現整個叢集),
為了防止 填寫節點 剛好掛掉, 最好填寫多於一個節點
例子:
127.0.0.1:9092
-----------------------------------------------
名稱:
key.serializer
優先順序:
high
型別:
class
預設值:
合法值:
描述:
Serializer class for key that implements the org.apache.kafka.common.serialization.Serializer interface.
解釋:
key序列化實現類,需實現 org.apache.kafka.common.serialization.Serializer 介面。
例子:
org.apache.kafka.common.serialization.StringSerializer
-----------------------------------------------
名稱:
value.serializer
優先順序:
high
型別:
string
預設值:
合法值:
描述:
Serializer class for value that implements the org.apache.kafka.common.serialization.Serializer interface.
解釋:
kakfa 中記錄中 value 的序列化實現類 ,該類需要實現 org.apache.kafka.common.serialization.Serializer 介面。
例子:
org.apache.kafka.common.serialization.StringSerializer
-----------------------------------------------
名稱:
acks
優先順序:
high
型別:
string
預設值:
1
合法值:
[all, -1, 0, 1]
描述:
The number of acknowledgments the producer requires the leader to have received before considering a request complete. This controls the durability of records that are sent. The following settings are allowed:
acks=0
If set to zero then the producer will not wait for any acknowledgment from the server at all. The record will be immediately added to the socket buffer and considered sent. No guarantee can be made that the server has received the record in this case, and the retries configuration will not take effect (as the client won't generally know of any failures). The offset given back for each record will always be set to -1.
acks=1
This will mean the leader will write the record to its local log but will respond without awaiting full acknowledgement from all followers. In this case should the leader fail immediately after acknowledging the record but before the followers have replicated it then the record will be lost. acks=all
This means the leader will wait for the full set of in-sync replicas to acknowledge the record. This guarantees that the record will not be lost as long as at least one in-sync replica remains alive. This is the strongest available guarantee. This is equivalent to the acks=-1 setting.
解釋:
在一次請求完成前,生產者需要,broker確認收到訊息的數量。
這控制了訊息傳送的時間間隔, 有以下選項 可供選擇。
ack=0
如果設定為0,生產者不需要服務端的確認。記錄會被立即加到 socket 緩衝中,然後被髮送。
在這種情況下,沒有觀察者,可以確保記錄被收到了。並且,重試配置並不會生效, 因為客戶端,並不知道那些記錄傳送失敗了。回撥函式對每個返回的記錄的偏移量總是設定為 -1。
acks=1
這意味只需要broker 主節點將記錄寫到其本地日誌中即可,但不需要其他所有的跟隨者(followers)的確認。
在這種情況下,如果leader 接收到資訊後立刻 down了,而跟隨著沒有複製記錄,那麼該條記錄就會丟失。
acks=all
這意味著所有線上的副本集都需要確認辭條記錄。
這確保瞭如果至少有一個副本集存活的情況下,記錄都不會丟失。這是最高級別的檢測方案,這需要設定 acks 為 -1.
-----------------------------------------------
名稱:
buffer.memory
優先順序:
high
型別:
long
預設值:
33554432
合法值:
描述:
The total bytes of memory the producer can use to buffer records waiting to be sent to the server. If records are sent faster than they can be delivered to the server the producer will block for max.block.ms after which it will throw an exception. This setting should correspond roughly to the total memory the producer will use, but is not a hard bound since not all memory the producer uses is used for buffering. Some additional memory will be used for compression (if compression is enabled) as well as for maintaining in-flight requests.
解釋:
生產者在等待發送給服務端資料時,生產者總的快取池的大小,單位: byte, 如果記錄發發送的比上傳給伺服器還要快,這會導致 max.block.ms ,在這之後會觸發一個異常。
這個設定只是粗略的估計生產者使用的總記憶體,但是這不是一個生產者緩衝使用記憶體大小的硬指標。一些額外的記憶體會被用於記錄的壓縮(如果壓縮可用) 用於維護 in-flight 請求。
-----------------------------------------------
名稱:
compression.type
優先順序:
high
型別:
string
預設值:
none
合法值:
描述:
The compression type for all data generated by the producer. The default is none (i.e. no compression). Valid values are none, gzip, snappy, or lz4. Compression is of full batches of data, so the efficacy of batching will also impact the compression ratio (more batching means better compression).
解釋:
生產者產生資料,進行資料壓縮所採用的壓縮型別。預設值 none (意味著 無壓縮),合法值有以下幾種選項 : none, gzip, snappy, or lz4 。壓縮是壓縮所有批次的資料, 所以批次的大小 也會影響壓縮的頻率 (更多的批次 意味著 更好的壓縮)
-----------------------------------------------
名稱:
retries
優先順序:
high
型別:
int
預設值:
0
合法值:
[0,...,2147483647]
描述:
Setting a value greater than zero will cause the client to resend any record whose send fails with a potentially transient error. Note that this retry is no different than if the client resent the record upon receiving the error. Allowing retries without setting max.in.flight.requests.per.connection to 1 will potentially change the ordering of records because if two batches are sent to a single partition, and the first fails and is retried but the second succeeds, then the records in the second batch may appear first.
解釋:
設定一個大於0的值,會使得 由於短暫的錯誤,傳送失敗的記錄重新發送。
注意 :
此重試 與 重新發送記錄仍舊失敗沒有區別。允許重試,並不去設定 max.in.flight.requests.per.connection 為1 會潛在地影響記錄的先後順序,因為如果兩個批次傳送到一個分割槽 partition, 第一次失敗了,第二次成功了,那麼第二個批次的記錄可能會先出現。
-----------------------------------------------
安全相關屬性
名稱:
ssl.key.password
優先順序:
high
型別:
password
預設值:
null
合法值:
描述:
The password of the private key in the key store file. This is optional for client.
解釋:
-----------------------------------------------
名稱:
ssl.keystore.location
優先順序:
high
型別:
string
預設值:
null
合法值:
描述:
The location of the key store file. This is optional for client and can be used for two-way authentication for client.
解釋:
-----------------------------------------------
名稱:
ssl.keystore.password
優先順序:
high
型別:
password
預設值:
null
合法值:
描述:
The store password for the key store file. This is optional for client and only needed if ssl.keystore.location is configured.
解釋:
-----------------------------------------------
名稱: ssl.truststore.location
優先順序:
high
型別:
string
預設值:
null
合法值:
描述:
The location of the trust store file.
解釋:
-----------------------------------------------
名稱:
ssl.truststore.password
優先順序:
high
型別:
password
預設值:
null
合法值:
描述:
The password for the trust store file. If a password is not set access to the truststore is still available, but integrity checking is disabled.
解釋:
-----------------------------------------------
中優先順序
名稱:
batch.size
優先順序:
medium
型別:
int
預設值:
16384
合法值:
[0,...]
描述:
The producer will attempt to batch records together into fewer requests whenever multiple records are being sent to the same partition. This helps performance on both the client and the server. This configuration controls the default batch size in bytes.
No attempt will be made to batch records larger than this size.
Requests sent to brokers will contain multiple batches, one for each partition with data available to be sent.
A small batch size will make batching less common and may reduce throughput (a batch size of zero will disable batching entirely). A very large batch size may use memory a bit more wastefully as we will always allocate a buffer of the specified batch size in anticipation of additional records.
解釋:
無論多條記錄是否被髮送到同一個分割槽(partition), 一個生產者會嘗試將記錄分批次歸檔到幾個記錄中.
這會提升服務端跟客戶端的表現。這個配置控制了預設的批次大小,以 byte為單位。
一個批次的大小不會大於此大小。
傳送給 brokers 的請求會包含多個批次,一個批次 跟 分割槽 (partition) 是一一對應的。
一個小的批次大小會使得批次 更特別 ,可能會減少kafka的吞吐量(降該值設定為0,會取消批次的設定)。一個非常大的批次,會浪費一些記憶體,因為我們經常分配指定批次大小的記憶體,為了接受額外的資料。
-----------------------------------------------
名稱:
client.id
優先順序: medium
型別:
string
預設值:
""
合法值:
描述:
An id string to pass to the server when making requests. The purpose of this is to be able to track the source of requests beyond just ip/port by allowing a logical application name to be included in server-side request logging.
解釋:
當建立請求是傳送的一個id字串,這個字串的目的是為了追蹤除了 ip/port 之外的邏輯應用名,該id 會被記錄在服務內部的請求日誌中。
-----------------------------------------------
名稱:
connections.max.idle.ms
優先順序:
medium
型別:
long
預設值:
540000
合法值:
描述:
Close idle connections after the number of milliseconds specified by this config.
解釋:
指定的時間之後關閉閒置的連結。
---------------------------------------------------------
名稱:
linger.ms
優先順序:
medium
型別:
long
預設值:
0
合法值:
[0,...]
描述: The producer groups together any records that arrive in between request transmissions into a single batched request. Normally this occurs only under load when records arrive faster than they can be sent out. However in some circumstances the client may want to reduce the number of requests even under moderate load. This setting accomplishes this by adding a small amount of artificial delay—that is, rather than immediately sending out a record the producer will wait for up to the given delay to allow other records to be sent so that the sends can be batched together. This can be thought of as analogous to Nagle's algorithm in TCP. This setting gives the upper bound on the delay for batching: once we get batch.size worth of records for a partition it will be sent immediately regardless of this setting, however if we have fewer than this many bytes accumulated for this partition we will 'linger' for the specified time waiting for more records to show up. This setting defaults to 0 (i.e. no delay). Setting linger.ms=5, for example, would have the effect of reducing the number of requests sent but would add up to 5ms of latency to records sent in the absense of load.
解釋:
生產者組 將 請求傳輸過來的記錄匯聚到一個批次請求中。
通常情況下,只有當記錄到達的速度比傳送的速度快時才會發生。然而,在某些情況下,客戶端可能希望減少請求的數量,即使是在中等負載下。這個設定通過新增少量的人工延遲來實現這一點——也就是說,它不會立即傳送一個記錄,生產者將等待給定的延遲,以允許傳送其他記錄,這樣傳送就可以被組合在一起。這可以被認為類似於Nagle在TCP中的演算法。這個設定給出了批處理延遲的上限:一旦我們得到一個批處理足夠多的資料。不管這個設定是什麼,它將立即被髮送到一個分割槽的大小,但是如果我們的這個分割槽積累的位元組數少於這麼多,我們將在指定的時間內“逗留”,等待更多的記錄出現。
這個設定預設為0(即沒有延遲)。設定linger.ms=5, 將會減少傳送請求的數量,但會增加5 ms的延遲,當沒有足夠多的資料傳送的情況下。
---------------------------------------------------------
名稱:
max.block.ms
優先順序:
medium
型別:
long
預設值:
60000
合法值:
[0,...]
描述:
The configuration controls how long KafkaProducer.send() and KafkaProducer.partitionsFor() will block.These methods can be blocked either because the buffer is full or metadata unavailable.Blocking in the user-supplied serializers or partitioner will not be counted against this timeout.
解釋:
該配置控制了 KafkaProducer.send() 和 KafkaProducer.partitionsFor() 阻塞的時間。這些方法可能由於 緩衝滿了 或者 元資料
不可用而阻塞。使用者提供的序列化類跟分割槽器不會被納入到此計時器。
---------------------------------------------------------
名稱:
max.request.size
優先順序:
medium
型別:
int
預設值:
1048576
合法值:
[0,...]
描述: The maximum size of a request in bytes. This setting will limit the number of record batches the producer will send in a single request to avoid sending huge requests. This is also effectively a cap on the maximum record batch size. Note that the server has its own cap on record batch size which may be different from this.
解釋:
一次請求傳送的資料的最大位元組數。這個設定會限制 一個單獨的請求中 批次中記錄的數量 ,去避免一個大的請求。
這也實際上是對最大記錄批大小的限制。請注意,伺服器在記錄批大小上有自己的上限,這可能與此不同。
---------------------------------------------------------
名稱:
partitioner.class
優先順序:
medium
型別:
class
預設值:
org.apache.kafka.clients.producer.internals.DefaultPartitioner
合法值:
描述:
Partitioner class that implements the org.apache.kafka.clients.producer.Partitioner interface.
解釋:
分割槽分類器,需要實現 org.apache.kafka.clients.producer.Partitioner 介面
---------------------------------------------------------
名稱:
receive.buffer.bytes
優先順序:
medium
型別:
int
預設值:
32768
合法值:
[-1,...]
描述:
The size of the TCP receive buffer (SO_RCVBUF) to use when reading data. If the value is -1, the OS default will be used.
解釋:
讀取資料時, TCP 接受資料緩衝的大小 SO_RCVBUF。 如果該值為 -1 ,那麼會使用系統預設值。
---------------------------------------------------------
名稱:
request.timeout.ms
優先順序:
medium
型別:
int
預設值:
30000
合法值:
[0,...]
描述:
The configuration controls the maximum amount of time the client will wait for the response of a request. If the response is not received before the timeout elapses the client will resend the request if necessary or fail the request if retries are exhausted. This should be larger than replica.lag.time.max.ms (a broker configuration) to reduce the possibility of message duplication due to unnecessary producer retries.
解釋:
這個配置控制了客戶端等待請求返回的一個最大等待時長。如果在超時之前沒有收到響應,則客戶端將在必要時重新發送請求,或者如果重試失敗,則會失敗。
該值應該比 replica.lag.time.max.ms大 (broker 上的配置, 以減少由於不必要的生產者重試而導致的訊息重複的可能性。
--------------------------------------------------------------------
名稱:
send.buffer.bytes
優先順序:
medium
型別:
int
預設值:
131072
合法值:
[-1,...]
描述:
The size of the TCP send buffer (SO_SNDBUF) to use when sending data. If the value is -1, the OS default will be used.
解釋:
TCP傳送緩衝池的大小 SO_SNDBUF。如果該值設定為 -1 ,會使用系統預設值。
--------------------------------------------------------------------
安全相關屬性
名稱:
sasl.jaas.config
優先順序:
medium
型別:
password
預設值:
null
合法值:
描述:
JAAS login context parameters for SASL connections in the format used by JAAS configuration files. JAAS configuration file format is described here. The format for the value is: ' ( = )*;'
解釋:
--------------------------------------------------------------------
名稱:
sasl.kerberos.service.name
優先順序:
medium
型別:
string
預設值:
null
合法值:
描述:
The Kerberos principal name that Kafka runs as. This can be defined either in Kafka's JAAS config or in Kafka's config.
解釋:
--------------------------------------------------------------------
名稱:
sasl.mechanism
優先順序:
medium
型別:
string
預設值:
GSSAPI
合法值:
描述:
SASL mechanism used for client connections. This may be any mechanism for which a security provider is available. GSSAPI is the default mechanism.
解釋:
--------------------------------------------------------------------
名稱:
security.protocol
優先順序:
medium
型別:
string
預設值:
PLAINTEXT
合法值:
PLAINTEXT, SSL, SASL_PLAINTEXT, SASL_SSL
描述:
Protocol used to communicate with brokers. Valid values are: PLAINTEXT, SSL, SASL_PLAINTEXT, SASL_SSL.
解釋:
--------------------------------------------------------------------
名稱:
ssl.enabled.protocols
優先順序:
medium
型別:
list
預設值:
合法值:
TLSv1.2,TLSv1.1,TLSv1
描述:
The list of protocols enabled for SSL connections.
解釋:
--------------------------------------------------------------------
名稱:
ssl.keystore.type
優先順序:
medium
型別:
string
預設值:
JKS
合法值:
描述:
The file format of the key store file. This is optional for client
解釋:
--------------------------------------------------------------------
名稱:
ssl.protocol
優先順序:
medium
型別:
string
預設值:
TLS
合法值:
描述:
The SSL protocol used to generate the SSLContext. Default setting is TLS, which is fine for most cases. Allowed values in recent JVMs are TLS, TLSv1.1 and TLSv1.2. SSL, SSLv2 and SSLv3 may be supported in older JVMs, but their usage is discouraged due to known security vulnerabilities.
解釋:
--------------------------------------------------------------------
名稱:
ssl.provider
優先順序:
medium
型別:
string
預設值:
null
合法值:
描述: The name of the security provider used for SSL connections. Default value is the default security provider of the JVM.
解釋:
--------------------------------------------------------------------
名稱:
ssl.truststore.type
優先順序:
medium
型別:
string
預設值:
JKS
合法值:
描述:
The file format of the trust store file.
解釋:
--------------------------------------------------------------------
低優先順序
--------------------------------------------------------------------
名稱:
enable.idempotence
優先順序:
low
型別:
boolean
預設值:
false
合法值:
true / false
描述:
When set to 'true', the producer will ensure that exactly one copy of each message is written in the stream. If 'false', producer retries due to broker failures, etc., may write duplicates of the retried message in the stream. Note that enabling idempotence requires max.in.flight.requests.per.connection to be less than or equal to 5, retries to be greater than 0 and acks must be 'all'. If these values are not explicitly set by the user, suitable values will be chosen. If incompatible values are set, a ConfigException will be thrown.
解釋:
當設定為 true 時,生產者確保每條資訊在stream 中只會出現一次。
如果設定為false, 生產者會根據broker 的失敗資訊進行重試,這意味著,在流中一條訊息可能會被複寫多次,
注意:
使用冪等功能需要以下設定
max.in.flight.requests.per.connection 必須小於等於 5
retries 必須需要大於 0
acks 必須設定為 all
如果使用者沒有設定這些值,會選用合適的值。
如果設定了不合理的值,會丟擲一個 ConfigException 異常。
--------------------------------------------------------------------
名稱:
interceptor.classes
優先順序:
low
型別:
list
預設值:
null
合法值:
描述:
A list of classes to use as interceptors. Implementing the org.apache.kafka.clients.producer.ProducerInterceptor interface allows you to intercept (and possibly mutate) the records received by the producer before they are published to the Kafka cluster. By default, there are no interceptors.
解釋:
一系列用於作為解析器的類。
需要實現 org.apache.kafka.clients.producer.ProducerInterceptor 介面,允許你再把這些記錄傳送給kafka 叢集前,解析(可能是 變異)的記錄。
預設,沒有解析器。
--------------------------------------------------------------------
名稱:
max.in.flight.requests.per.connection
優先順序:
low
型別:
int
預設值:
5
合法值:
[1,...]
描述:
The maximum number of unacknowledged requests the client will send on a single connection before blocking. Note that if this setting is set to be greater than 1 and there are failed sends, there is a risk of message re-ordering due to retries (i.e., if retries are enabled).
解釋:
一個單獨的連線在阻塞前,傳送的最大不確認請求的數量。
注意,如果這個值比 1 大,並且這些失敗的記錄重新發送了,會有記錄重排序的風險 (如果 可以重試的話)
--------------------------------------------------------------------
名稱:
metadata.max.age.ms
優先順序:
low
型別:
long
預設值:
300000
合法值:
[0,...]
描述: The period of time in milliseconds after which we force a refresh of metadata even if we haven't seen any partition leadership changes to proactively discover any new brokers or partitions.
解釋:
即使 分割槽 (partition)的領導權沒有發生變化 歸因於 發現新的 broker 與 partition , 強制重新整理 元資料(metadata)的 時間
--------------------------------------------------------------------
名稱:
transactional.id
優先順序:
low
型別:
string
預設值:
null
合法值:
non-empty string
描述:
The TransactionalId to use for transactional delivery. This enables reliability semantics which span multiple producer sessions since it allows the client to guarantee that transactions using the same TransactionalId have been completed prior to starting any new transactions. If no TransactionalId is provided, then the producer is limited to idempotent delivery. Note that enable.idempotence must be enabled if a TransactionalId is configured. The default is empty, which means transactions cannot be used.
解釋:
TransactionalId 用於 事務級別的資料傳送。
這使得可靠性語義能夠跨越多個生產者會話,因為它允許客戶端保證在開始任何新的交易之前已經完成了使用相同TransactionalId的交易。
如果沒有設定 transactionid, 那麼 生產者 會被限制為 冪等傳輸。
注意:
當設定了 transactional.id 時,enable.idempotence 必須設定為 true.
預設值 為空,意味著不啟用事務。
--------------------------------------------------------------------
名稱:
transaction.timeout.ms
優先順序:
low
型別:
int
預設值:
60000
合法值:
描述: The maximum amount of time in ms that the transaction coordinator will wait for a transaction status update from the producer before proactively aborting the ongoing transaction.If this value is larger than the max.transaction.timeout.ms setting in the broker, the request will fail with a `InvalidTransactionTimeout` error.
解釋:
事務協調器 等待生產者更新一個事務的狀態 ,主動終止進行著的事務 的最長等待時間。
如果該值比 broker 上 max.transaction.timeout.ms 的值要大,請求會丟擲一個 InvalidTransactionTimeout 異常。
--------------------------------------------------------------------
名稱:
reconnect.backoff.max.ms
優先順序:
low
型別:
long
預設值:
1000
合法值:
[0,....]
描述:
The maximum amount of time in milliseconds to wait when reconnecting to a broker that has repeatedly failed to connect. If provided, the backoff per host will increase exponentially for each consecutive connection failure, up to this maximum. After calculating the backoff increase, 20% random jitter is added to avoid connection storms.
解釋:
--------------------------------------------------------------------
名稱:
reconnect.backoff.ms
優先順序:
low
型別:
long
預設值:
50
合法值:
[0,...]
描述:
The base amount of time to wait before attempting to reconnect to a given host. This avoids repeatedly connecting to a host in a tight loop. This backoff applies to all connection attempts by the client to a broker.
解釋:
--------------------------------------------------------------------
名稱:
retry.backoff.ms
優先順序:
low
型別:
long
預設值:
100
合法值:
[0,...]
描述:
The amount of time to wait before attempting to retry a failed request to a given topic partition. This avoids repeatedly sending requests in a tight loop under some failure scenarios.
解釋:
--------------------------------------------------------------------
名稱:
metrics.num.samples
優先順序:
low
型別:
int
預設值:
2
合法值:
[1,...]
描述:
The number of samples maintained to compute metrics.
解釋:
--------------------------------------------------------------------
名稱:
metrics.recording.level
優先順序:
low
型別:
string
預設值:
INFO
合法值:
[INFO, DEBUG]
描述:
The highest recording level for metrics.
解釋:
--------------------------------------------------------------------
名稱:
metrics.sample.window.ms
優先順序:
low
型別:
long
預設值:
30000
合法值:
[0,...]
描述:
The window of time a metrics sample is computed over.
解釋:
-----------------------------------------------------------
安全相關屬性
名稱:
sasl.kerberos.kinit.cmd
優先順序:
low
型別:
string
預設值:
/usr/bin/kinit
合法值:
描述:
Kerberos kinit command path.
解釋:
--------------------------------------------------------------------
名稱:
sasl.kerberos.min.time.before.relogin
優先順序:
low
型別:
long
預設值:
60000
合法值:
描述:
Login thread sleep time between refresh attempts.
解釋:
--------------------------------------------------------------------
名稱:
sasl.kerberos.ticket.renew.jitter
優先順序:
low
型別:
double
預設值:
0.05
合法值:
描述:
Percentage of random jitter added to the renewal time.
解釋:
--------------------------------------------------------------------
名稱:
sasl.kerberos.ticket.renew.window.factor
優先順序:
low
型別:
double
預設值:
0.8
合法值:
描述:
Login thread will sleep until the specified window factor of time from last refresh to ticket's expiry has been reached, at which time it will try to renew the ticket.
解釋:
--------------------------------------------------------------------
名稱:
ssl.cipher.suites
優先順序:
low
型別:
list
預設值:
null
合法值:
描述:
A list of cipher suites. This is a named combination of authentication, encryption, MAC and key exchange algorithm used to negotiate the security settings for a network connection using TLS or SSL network protocol. By default all the available cipher suites are supported.
解釋:
--------------------------------------------------------------------
名稱:
ssl.endpoint.identification.algorithm
優先順序:
low
型別:
string
預設值:
null
合法值:
描述:
The endpoint identification algorithm to validate server hostname using server certificate.
解釋:
--------------------------------------------------------------------
名稱:
ssl.keymanager.algorithm
優先順序:
low
型別:
string
預設值:
SunX509
合法值:
描述: The algorithm used by key manager factory for SSL connections. Default value is the key manager factory algorithm configured for the Java Virtual Machine.
解釋:
--------------------------------------------------------------------
名稱:
ssl.secure.random.implementation
優先順序:
low
型別:
string
預設值:
null
合法值:
描述: The SecureRandom PRNG implementation to use for SSL cryptography operations.
解釋:
--------------------------------------------------------------------
名稱:
ssl.trustmanager.algorithm
優先順序:
low
型別:
string
預設值:
PKIX
合法值:
描述: The algorithm used by trust manager factory for SSL connections. Default value is the trust manager factory algorithm configured for the Java Virtual Machine.
解釋: