sachinnn99 commented on PR #10785: URL: https://github.com/apache/gravitino/pull/10785#issuecomment-4277906303
@novakov-alexey Thanks for the feedback. I checked this — the `s3-proxy-endpoint` value is passed through as a string to Iceberg's `http-client.proxy-endpoint`, which is consumed by the AWS SDK HTTP client. Gravitino never opens a connection to this URL itself. When the scheme is `https`, the AWS SDK handles TLS using the JVM's default truststore — the same way `s3-endpoint` works today (which also supports `https` without any special SSL handling in Gravitino). So no code changes are needed for HTTPS support; it works out of the box. The CA cert / truststore configuration you mentioned is an operational concern at deployment time (ensuring the JVM trusts the proxy's certificate), not something this property-mapping layer needs to address. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
