Home Explore Help
Register Sign In
dongzaixing
/
apisix-docker
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
apisix-docker
/
example
/
dashboard_conf
/
conf.yaml

conf.yaml 4.4 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112 
  1. #
    2. 

  2. # Licensed to the Apache Software Foundation (ASF) under one or more
    3. 

  3. # contributor license agreements.  See the NOTICE file distributed with
    4. 

  4. # this work for additional information regarding copyright ownership.
    5. 

  5. # The ASF licenses this file to You under the Apache License, Version 2.0
    6. 

  6. # (the "License"); you may not use this file except in compliance with
    7. 

  7. # the License.  You may obtain a copy of the License at
    8. 

  8. #
    9. 

  9. #     http://www.apache.org/licenses/LICENSE-2.0
    10. 

  10. #
    11. 

  11. # Unless required by applicable law or agreed to in writing, software
    12. 

  12. # distributed under the License is distributed on an "AS IS" BASIS,
    13. 

  13. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    14. 

  14. # See the License for the specific language governing permissions and
    15. 

  15. # limitations under the License.
    16. 

  16. #
    17. 

  17. 

  18. conf:
    19. 

  19.   listen:
    20. 

  20.     host: 0.0.0.0     # `manager api` listening ip or host name
    21. 

  21.     port: 9000          # `manager api` listening port
    22. 

  22.   allow_list:           # If we don't set any IP list, then any IP access is allowed by default.
    23. 

  23.     - 0.0.0.0/0
    24. 

  24.   etcd:
    25. 

  25.     endpoints:          # supports defining multiple etcd host addresses for an etcd cluster
    26. 

  26.       - "http://etcd:2379"
    27. 

  27.                           # yamllint disable rule:comments-indentation
    28. 

  28.                           # etcd basic auth info
    29. 

  29.     # username: "root"    # ignore etcd username if not enable etcd auth
    30. 

  30.     # password: "123456"  # ignore etcd password if not enable etcd auth
    31. 

  31.     mtls:
    32. 

  32.       key_file: ""          # Path of your self-signed client side key
    33. 

  33.       cert_file: ""         # Path of your self-signed client side cert
    34. 

  34.       ca_file: ""           # Path of your self-signed ca cert, the CA is used to sign callers' certificates
    35. 

  35.     # prefix: /apisix     # apisix config's prefix in etcd, /apisix by default
    36. 

  36.   log:
    37. 

  37.     error_log:
    38. 

  38.       level: warn       # supports levels, lower to higher: debug, info, warn, error, panic, fatal
    39. 

  39.       file_path:
    40. 

  40.         logs/error.log  # supports relative path, absolute path, standard output
    41. 

  41.                         # such as: logs/error.log, /tmp/logs/error.log, /dev/stdout, /dev/stderr
    42. 

  42.     access_log:
    43. 

  43.       file_path:
    44. 

  44.         logs/access.log  # supports relative path, absolute path, standard output
    45. 

  45.                          # such as: logs/access.log, /tmp/logs/access.log, /dev/stdout, /dev/stderr
    46. 

  46.                          # log example: 2020-12-09T16:38:09.039+0800	INFO	filter/logging.go:46	/apisix/admin/routes/r1	{"status": 401, "host": "127.0.0.1:9000", "query": "asdfsafd=adf&a=a", "requestId": "3d50ecb8-758c-46d1-af5b-cd9d1c820156", "latency": 0, "remoteIP": "127.0.0.1", "method": "PUT", "errs": []}
    47. 

  47.   security:
    48. 

  48.       # access_control_allow_origin: "http://httpbin.org"
    49. 

  49.       # access_control_allow_credentials: true          # support using custom cors configration
    50. 

  50.       # access_control_allow_headers: "Authorization"
    51. 

  51.       # access_control-allow_methods: "*"
    52. 

  52.       # x_frame_options: "deny"
    53. 

  53.       content_security_policy: "default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline'; style-src 'self' 'unsafe-inline'; frame-src *"  # You can set frame-src to provide content for your grafana panel.
    54. 

  54. 

  55. authentication:
    56. 

  56.   secret:
    57. 

  57.     secret              # secret for jwt token generation.
    58. 

  58.                         # NOTE: Highly recommended to modify this value to protect `manager api`.
    59. 

  59.                         # if it's default value, when `manager api` start, it will generate a random string to replace it.
    60. 

  60.   expire_time: 3600     # jwt token expire time, in second
    61. 

  61.   users:                # yamllint enable rule:comments-indentation
    62. 

  62.     - username: admin   # username and password for login `manager api`
    63. 

  63.       password: admin
    64. 

  64.     - username: user
    65. 

  65.       password: user
    66. 

  66. 

  67. plugins:                          # plugin list (sorted in alphabetical order)
    68. 

  68.   - api-breaker
    69. 

  69.   - authz-keycloak
    70. 

  70.   - basic-auth
    71. 

  71.   - batch-requests
    72. 

  72.   - consumer-restriction
    73. 

  73.   - cors
    74. 

  74.   # - dubbo-proxy
    75. 

  75.   - echo
    76. 

  76.   # - error-log-logger
    77. 

  77.   # - example-plugin
    78. 

  78.   - fault-injection
    79. 

  79.   - grpc-transcode
    80. 

  80.   - hmac-auth
    81. 

  81.   - http-logger
    82. 

  82.   - ip-restriction
    83. 

  83.   - jwt-auth
    84. 

  84.   - kafka-logger
    85. 

  85.   - key-auth
    86. 

  86.   - limit-conn
    87. 

  87.   - limit-count
    88. 

  88.   - limit-req
    89. 

  89.   # - log-rotate
    90. 

  90.   # - node-status
    91. 

  91.   - openid-connect
    92. 

  92.   - prometheus
    93. 

  93.   - proxy-cache
    94. 

  94.   - proxy-mirror
    95. 

  95.   - proxy-rewrite
    96. 

  96.   - redirect
    97. 

  97.   - referer-restriction
    98. 

  98.   - request-id
    99. 

  99.   - request-validation
    100. 

  100.   - response-rewrite
    101. 

  101.   - serverless-post-function
    102. 

  102.   - serverless-pre-function
    103. 

  103.   # - skywalking
    104. 

  104.   - sls-logger
    105. 

  105.   - syslog
    106. 

  106.   - tcp-logger
    107. 

  107.   - udp-logger
    108. 

  108.   - uri-blocker
    109. 

  109.   - wolf-rbac
    110. 

  110.   - zipkin
    111. 

  111.   - server-info
    112. 

  112.   - traffic-split
    113.