本文介绍如何使用Java SDK为Bucket设置安全传输层协议。
注意事项
本文以华东1(杭州)外网Endpoint为例。如果您希望通过与OSS同地域的其他阿里云产品访问OSS,请使用内网Endpoint。关于OSS支持的Region与Endpoint的对应关系,请参见OSS地域和访问域名。
本文以从环境变量读取访问凭证为例。如何配置访问凭证,请参见Java配置访问凭证。
本文以OSS域名新建OSSClient为例。如果您希望通过自定义域名、STS等方式新建OSSClient,请参见常见场景配置示例。
示例代码
以下示例展示调用PutBucketHttpsConfig接口为Bucket设置TLS版本,并使用GetBucketHttpsConfig接口获取Bucket的TLS版本信息。
import com.aliyun.oss.*;
import com.aliyun.oss.common.auth.CredentialsProviderFactory;
import com.aliyun.oss.common.auth.EnvironmentVariableCredentialsProvider;
import com.aliyun.oss.common.comm.SignVersion;
import com.aliyun.oss.model.GetBucketHttpsConfigResult;
import com.aliyun.oss.model.PutBucketHttpsConfigRequest;
import java.util.ArrayList;
import java.util.List;
public class PutBucketHttpsConfig {
public static void main(String[] args) throws Exception {
// Endpoint以华东1(杭州)为例,其它Region请按实际情况填写。
String endpoint = "https://oss-cn-hangzhou.aliyuncs.com";
// 从环境变量中获取访问凭证。运行本代码示例之前,请确保已设置环境变量OSS_ACCESS_KEY_ID和OSS_ACCESS_KEY_SECRET。
EnvironmentVariableCredentialsProvider credentialsProvider = CredentialsProviderFactory.newEnvironmentVariableCredentialsProvider();
// 填写Bucket名称,例如examplebucket。
String bucketName = "examplebucket";
// 填写Bucket所在地域。以华东1(杭州)为例,Region填写为cn-hangzhou。
String region = "cn-hangzhou";
// 创建OSSClient实例。
// 当OSSClient实例不再使用时,调用shutdown方法以释放资源。
ClientBuilderConfiguration clientBuilderConfiguration = new ClientBuilderConfiguration();
clientBuilderConfiguration.setSignatureVersion(SignVersion.V4);
OSS ossClient = OSSClientBuilder.create()
.endpoint(endpoint)
.credentialsProvider(credentialsProvider)
.clientConfiguration(clientBuilderConfiguration)
.region(region)
.build();
try {
// 调用PutBucketHttpsConfig接口为Bucket设置TLS版本。
List<String> tlsVersion = new ArrayList<String>();
tlsVersion.add("TLSv1.2");
tlsVersion.add("TLSv1.3");
PutBucketHttpsConfigRequest request = new PutBucketHttpsConfigRequest(bucketName)
.withEnabled(true)
.withTlsVersion(tlsVersion);
ossClient.putBucketHttpsConfig(request);
// 调用GetBucketHttpsConfig接口获取Bucket的TLS版本信息。
GetBucketHttpsConfigResult result = ossClient.getBucketHttpsConfig(bucketName);
System.out.println("Enable:" + result.isEnable());
System.out.println("TLSVersion:" + result.getTlsVersion().get(0));
System.out.println("TLSVersion:" + result.getTlsVersion().get(1));
} catch (OSSException oe) {
System.out.println("Caught an OSSException, which means your request made it to OSS, "
+ "but was rejected with an error response for some reason.");
System.out.println("Error Message:" + oe.getErrorMessage());
System.out.println("Error Code:" + oe.getErrorCode());
System.out.println("Request ID:" + oe.getRequestId());
System.out.println("Host ID:" + oe.getHostId());
} catch (ClientException ce) {
System.out.println("Caught an ClientException, which means the client encountered "
+ "a serious internal problem while trying to communicate with OSS, "
+ "such as not being able to access the network.");
System.out.println("Error Message:" + ce.getMessage());
} finally {
if (ossClient != null) {
ossClient.shutdown();
}
}
}
}
相关文档
关于配置安全传输层协议的完整示例代码,请参见GitHub示例。
关于安全传输层协议的API接口说明,请参见安全传输层协议(TLS)。
该文章对您有帮助吗?