| <table class="table table-bordered"> |
| <thead> |
| <tr> |
| <th class="text-left" style="width: 20%">Key</th> |
| <th class="text-left" style="width: 15%">Default</th> |
| <th class="text-left" style="width: 65%">Description</th> |
| </tr> |
| </thead> |
| <tbody> |
| <tr> |
| <td><h5>security.ssl.algorithms</h5></td> |
| <td style="word-wrap: break-word;">"TLS_RSA_WITH_AES_128_CBC_SHA"</td> |
| <td>The comma separated list of standard SSL algorithms to be supported. Read more <a href="http://docs.oracle.com/javase/8/docs/technotes/guides/security/StandardNames.html#ciphersuites">here</a>.</td> |
| </tr> |
| <tr> |
| <td><h5>security.ssl.enabled</h5></td> |
| <td style="word-wrap: break-word;">false</td> |
| <td>Turns on SSL for internal network communication. This can be optionally overridden by flags defined in different transport modules.</td> |
| </tr> |
| <tr> |
| <td><h5>security.ssl.key-password</h5></td> |
| <td style="word-wrap: break-word;">(none)</td> |
| <td>The secret to decrypt the server key in the keystore.</td> |
| </tr> |
| <tr> |
| <td><h5>security.ssl.keystore</h5></td> |
| <td style="word-wrap: break-word;">(none)</td> |
| <td>The Java keystore file to be used by the flink endpoint for its SSL Key and Certificate.</td> |
| </tr> |
| <tr> |
| <td><h5>security.ssl.keystore-password</h5></td> |
| <td style="word-wrap: break-word;">(none)</td> |
| <td>The secret to decrypt the keystore file.</td> |
| </tr> |
| <tr> |
| <td><h5>security.ssl.protocol</h5></td> |
| <td style="word-wrap: break-word;">"TLSv1.2"</td> |
| <td>The SSL protocol version to be supported for the ssl transport. Note that it doesn’t support comma separated list.</td> |
| </tr> |
| <tr> |
| <td><h5>security.ssl.truststore</h5></td> |
| <td style="word-wrap: break-word;">(none)</td> |
| <td>The truststore file containing the public CA certificates to be used by flink endpoints to verify the peer’s certificate.</td> |
| </tr> |
| <tr> |
| <td><h5>security.ssl.truststore-password</h5></td> |
| <td style="word-wrap: break-word;">(none)</td> |
| <td>The secret to decrypt the truststore.</td> |
| </tr> |
| <tr> |
| <td><h5>security.ssl.verify-hostname</h5></td> |
| <td style="word-wrap: break-word;">true</td> |
| <td>Flag to enable peer’s hostname verification during ssl handshake.</td> |
| </tr> |
| </tbody> |
| </table> |