JiaLiangC opened a new pull request, #3650: URL: https://github.com/apache/ambari/pull/3650
## What changes were proposed in this pull request? ambari server supports closing ssl and communication with agent using http However, the function of using http to communicate with ambari server is not implemented in ambari agent. The PR logic here is 1. The agent detects the communication type, specifically http, ssl oneway, ssl twoway 2. The agent and ambari server establish a corresponding type of websocker persistent connection according to the detection results. Among them, ssl twoway requires ambari agent to provide relevant certificate information, while http and ssl oneway do not need to verify the client, and do not need ssl option 3. The ambari agent will use some http or https short connections to download resources and other operations, so it is necessary to construct a URL with the correct type of protocol. 4. The netutil of ambari agent does not support http, add support 5. In order to cooperate with the detection of whether to enable ssl, the server side needs to add the agent.ssl attribute in the /connecion_info interface. 6. In the security filter, the server needs to determine whether to enable http to determine the filtering rules ## How was this patch tested? unit tests and manual tests Please review [Ambari Contributing Guide](https://cwiki.apache.org/confluence/display/AMBARI/How+to+Contribute) before opening a pull request. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@ambari.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@ambari.apache.org For additional commands, e-mail: dev-h...@ambari.apache.org
