ukhomeoffice / docker-symmetricds Goto Github PK

View Code? Open in Web Editor NEW

10.0 7.0 16.0 135 KB

Docker image for one-way replication with SymmetricDS

License: MIT License

Shell 90.96% Makefile 2.64% Dockerfile 6.40%

docker-symmetricds's Introduction

Docker image for one-way replication with SymmetricDS

This will be a Docker image for running simple, one-way replication using SymmetricDS.

Please note, this image is not yet ready for production.

Getting started

Make sure you have Docker and [Docker Compose] installed on your system and run:

$ git clone [email protected]:UKHomeOffice/docker-symmetricds.git
$ cd docker-symmetricds
$ make
$ docker-compose up

Configuration

Configuration is available using environment variables in order to configure the symmetric container.

GROUP_ID: <Node Group that this Node is a member of. [SymmetricDSGroups]>
DB_HOST: <Database host name>
DB_SSL: Defines whether or not to use SSL/TLS. Set to FALSE to disable. Defaults to TRUE.
DB_CA: A base64 encoded CA certificate to verify the database's certificate against. If no certificate is provided then the certificate will not be verified.
DB_TYPE: <Used to tell symmetric what JDBC driver to use. Can be mysql, postgres or oracle. Defaults to postgres.>
DB_NAME: <Database name>
DB_USER: <Database user>
DB_PASS: <Database password
USERNAME: <Username for basic auth>
PASSWORD: <Password for basic auth>
SYNC_URL: <URL where this Node can be contacted for synchronization. At startup and during each heartbeat, the Node updates its entry in the database with this URL>
REGISTRATION_URL: <URL where this Node can connect for registration to receive its configuration. The registration server is part of SymmetricDS and is enabled as part of the deployment>
HTTPS: <A flag to allow TLS termination. Defaults to TRUE. When set to FALSE will listen on the HTTP port, accepting insecure traffic.>
HTTPS_CRT: <HTTPS certificate to use if terminating TLS.
HTTPS_KEY: <Key for provided certificate.>
HTTPS_CA_BUNDLE: <Certificate authority for HTTPS used to verify other nodes. In a two node setup this could be the other nodes public certificate.>
REPLICATE_TO: <Name of symmetric GROUP_ID to replicate to.>
REPLICATE_TABLES: <Name of tables (space separated) and optional columns to replicate (columns are specified with a pipe and the comma separation). See [docker-compose] for more info.>
LOG_LEVEL: <Set the log4j level. Can be: OFF, FATAL, ERROR, WARN, INFO, DEBUG, TRACE, ALL. Defaults to WARN>
DATA_LOG_LEVEL: <Set the log4j level on things that may output data. Can be: OFF, FATAL, ERROR, WARN, INFO, DEBUG, TRACE, ALL. Defaults to FATAL>

Clustering

Targets can be clustered in the example docker-compose files by simply using scale for example:

docker-compose up --scale symds_target=2

This will create a cluster of two targets.

Example Usage

You can check out a pretty standard example of a replication using a source and target (postgres to postgres) using the following docker-compose.

To see basic auth in action please check out docker-compose-basic-auth.

Example k8s

A basic example of a k8s deployment for target-mode.

Authors

Daniel A.C. Martin - Initial work - daniel-ac-martin
Ben Marvell - TLS, Basic Auth, Multiple table and field replication - easternbloc

See also the list of contributors who participated in this project.

License

This project is licensed under the MIT License - see the LICENSE.md file for details.

docker-symmetricds's People

Contributors

Stargazers

Watchers

Forkers

jkarthid synapplix shamil jubel-han palpid wenbingao cyhook soknath dgleba dmitrylogunov ucub uk-gov-mirror archita1202 jjlimawapp dwat27 singyichen

docker-symmetricds's Issues

java.security.UnrecoverableKeyException: Password verification failed

I got the postgres version running, but I am getting an error with the mysql one.

I did this..

cd /srv/test
git clone https://github.com/UKHomeOffice/docker-symmetricds.git symmetricdsm
cd symmetricdsm
mv docker-compose.yml docker-compose-pg.yml
make
docker-compose -f docker-compose-mysql.yml  build

echo '
  adminer:
    # 10.4.1.228:14117/  use source or 10.4.1.228:3306 for server while logging in.
    image: adminer:4.7
    restart: always
    ports:
      - 14117:8080
	  '>>docker-compose-mysql.yml
	  

docker-compose -f docker-compose-mysql.yml  up -d adminer 

docker-compose -f docker-compose-mysql.yml  up    source

# get new terminal
docker-compose -f docker-compose-mysql.yml  up    symds_source

I got this error..

albe@vamp398:/srv/test/symmetricdsm$ docker-compose -f docker-compose-mysql.yml  up    symds_source
Creating symmetricdsm_symds_source_1 ... done
Attaching to symmetricdsm_symds_source_1
symds_source_1  | Warning: There appears to be a bug in MySQL support.
symds_source_1  | Waiting for database at source:3306...
symds_source_1  | J
vEnds_source_1  | 8.0.20
   {�����XN8_](caching_sha2_passwordInitialising config in mysql...
symds_source_1  | Adding config for test in mysql...
PuTTYsymds_source_1  | SLF4J: The following set of substitute loggers may have been accessed
symds_source_1  | SLF4J: during the initialization phase. Logging calls during this
symds_source_1  | SLF4J: phase were not honored. However, subsequent logging calls to these
symds_source_1  | SLF4J: loggers will work as normally expected.
symds_source_1  | SLF4J: See also http://www.slf4j.org/codes.html#substituteLogger
symds_source_1  | SLF4J: org.jumpmind.symmetric.AbstractSymmetricEngine
symds_source_1  | 2020-06-28 22:19:50,001 INFO: [] - AbstractCommandLauncher - Option: name=engine, value={source}
symds_source_1  | Sun Jun 28 22:19:50 UTC 2020 WARN: Establishing SSL connection without server's identity verification is not recommended. According to MySQL 5.5.45+, 5.6.26+ and 5.7.6+ requirements SSL connection must be established by default if explicit option isn't set. For compliance with existing applications not using SSL the verifyServerCertificate property is set to 'false'. You need either to explicitly disable SSL by setting useSSL=false, or set useSSL=true and provide truststore for server certificate verification.
symds_source_1  | -------------------------------------------------------------------------------
symds_source_1  | An exception occurred.  Please see the following for details:
symds_source_1  | -------------------------------------------------------------------------------
symds_source_1  | java.security.UnrecoverableKeyException: Password verification failed
symds_source_1  |       at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:790)
symds_source_1  |  [wrapped] java.io.IOException: Keystore was tampered with, or password was incorrect
symds_source_1  |       at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:792)
symds_source_1  |       at sun.security.provider.JavaKeyStore$JKS.engineLoad(JavaKeyStore.java:57)
symds_source_1  |       at sun.security.provider.KeyStoreDelegator.engineLoad(KeyStoreDelegator.java:224)
symds_source_1  |       at sun.security.provider.JavaKeyStore$DualFormatJKS.engineLoad(JavaKeyStore.java:71)
symds_source_1  |       at java.security.KeyStore.load(KeyStore.java:1445)
symds_source_1  |       at com.mysql.jdbc.ExportControlled.getSSLSocketFactoryDefaultOrConfigured(ExportControlled.java:428)
symds_source_1  |  [wrapped] com.mysql.jdbc.exceptions.jdbc4.MySQLNonTransientConnectionException: Cannot open JKS [Keystore was tampered with, or password was incorrect]
symds_source_1  |       at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
symds_source_1  |       at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
symds_source_1  |       at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
symds_source_1  |       at java.lang.reflect.Constructor.newInstance(Constructor.java:423)
symds_source_1  |       at com.mysql.jdbc.Util.handleNewInstance(Util.java:425)
symds_source_1  |       at com.mysql.jdbc.Util.getInstance(Util.java:408)
symds_source_1  |       at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:919)
symds_source_1  |       at com.mysql.jdbc.SQLError.createSQLException(SQLError.java:898)
symds_source_1  |       at com.mysql.jdbc.ExportControlled.getSSLSocketFactoryDefaultOrConfigured(ExportControlled.java:455)
symds_source_1  |       at com.mysql.jdbc.ExportControlled.transformSocketToSSLSocket(ExportControlled.java:103)
symds_source_1  |       at com.mysql.jdbc.MysqlIO.negotiateSSLConnection(MysqlIO.java:4901)
symds_source_1  |       at com.mysql.jdbc.MysqlIO.proceedHandshakeWithPluggableAuthentication(MysqlIO.java:1659)
symds_source_1  |       at com.mysql.jdbc.MysqlIO.doHandshake(MysqlIO.java:1226)
symds_source_1  |       at com.mysql.jdbc.ConnectionImpl.coreConnect(ConnectionImpl.java:2188)
symds_source_1  |       at com.mysql.jdbc.ConnectionImpl.connectOneTryOnly(ConnectionImpl.java:2219)
symds_source_1  |       at com.mysql.jdbc.ConnectionImpl.createNewIO(ConnectionImpl.java:2014)
symds_source_1  |       at com.mysql.jdbc.ConnectionImpl.<init>(ConnectionImpl.java:776)
symds_source_1  |       at com.mysql.jdbc.JDBC4Connection.<init>(JDBC4Connection.java:47)
symds_source_1  |       at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
symds_source_1  |       at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
symds_source_1  |       at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
symds_source_1  |       at java.lang.reflect.Constructor.newInstance(Constructor.java:423)
symds_source_1  |       at com.mysql.jdbc.Util.handleNewInstance(Util.java:425)
symds_source_1  |       at com.mysql.jdbc.ConnectionImpl.getInstance(ConnectionImpl.java:386)
symds_source_1  |       at com.mysql.jdbc.NonRegisteringDriver.connect(NonRegisteringDriver.java:330)
symds_source_1  |       at org.apache.commons.dbcp.DriverConnectionFactory.createConnection(DriverConnectionFactory.java:38)
symds_source_1  |       at org.apache.commons.dbcp.PoolableConnectionFactory.makeObject(PoolableConnectionFactory.java:582)
symds_source_1  |       at org.apache.commons.dbcp.BasicDataSource.validateConnectionFactory(BasicDataSource.java:1556)
symds_source_1  |       at org.jumpmind.db.util.ResettableBasicDataSource.createPoolableConnectionFactory(ResettableBasicDataSource.java:74)
symds_source_1  |  [wrapped] org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open JKS [Keystore was tampered with, or password was incorrect])
symds_source_1  |       at org.jumpmind.db.util.ResettableBasicDataSource.createPoolableConnectionFactory(ResettableBasicDataSource.java:80)
symds_source_1  |       at org.apache.commons.dbcp.BasicDataSource.createDataSource(BasicDataSource.java:1388)
symds_source_1  |       at org.apache.commons.dbcp.BasicDataSource.getConnection(BasicDataSource.java:1044)
symds_source_1  |       at org.jumpmind.symmetric.AbstractCommandLauncher.testConnection(AbstractCommandLauncher.java:399)
symds_source_1  |  [wrapped] java.lang.RuntimeException: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open JKS [Keystore was tampered with, or password was incorrect])
symds_source_1  |       at org.jumpmind.symmetric.AbstractCommandLauncher.testConnection(AbstractCommandLauncher.java:403)
symds_source_1  |       at org.jumpmind.symmetric.AbstractCommandLauncher.getSymmetricEngine(AbstractCommandLauncher.java:387)
symds_source_1  |       at org.jumpmind.symmetric.AbstractCommandLauncher.getSymmetricEngine(AbstractCommandLauncher.java:381)
symds_source_1  |       at org.jumpmind.symmetric.SymmetricAdmin.createSymTables(SymmetricAdmin.java:564)
symds_source_1  |       at org.jumpmind.symmetric.SymmetricAdmin.executeWithOptions(SymmetricAdmin.java:321)
symds_source_1  |       at org.jumpmind.symmetric.AbstractCommandLauncher.execute(AbstractCommandLauncher.java:194)
symds_source_1  |       at org.jumpmind.symmetric.SymmetricAdmin.main(SymmetricAdmin.java:145)
symds_source_1  | -------------------------------------------------------------------------------
symds_source_1  | SLF4J: The following set of substitute loggers may have been accessed
symds_source_1  | SLF4J: during the initialization phase. Logging calls during this
symds_source_1  | SLF4J: phase were not honored. However, subsequent logging calls to these
symds_source_1  | SLF4J: loggers will work as normally expected.
symds_source_1  | SLF4J: See also http://www.slf4j.org/codes.html#substituteLogger
symds_source_1  | SLF4J: org.jumpmind.symmetric.AbstractSymmetricEngine
symds_source_1  | 2020-06-28 22:19:51,096 INFO: [] - AbstractCommandLauncher - Option: name=engine, value={source}
symds_source_1  | Sun Jun 28 22:19:51 UTC 2020 WARN: Establishing SSL connection without server's identity verification is not recommended. According to MySQL 5.5.45+, 5.6.26+ and 5.7.6+ requirements SSL connection must be established by default if explicit option isn't set. For compliance with existing applications not using SSL the verifyServerCertificate property is set to 'false'. You need either to explicitly disable SSL by setting useSSL=false, or set useSSL=true and provide truststore for server certificate verification.
symds_source_1  | -------------------------------------------------------------------------------
symds_source_1  | An exception occurred.  Please see the following for details:
...
...

Am I doing something wrong?
Any idea how I can address this?

Replication

I understand that the setup allows one way replication but is it also possible to have a two way replication?

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.