ContextQMD
Back to Trino

HTTP client properties

docs/src/main/sphinx/admin/properties-http-client.md

4804.5 KB
Original Source

HTTP client properties

HTTP client properties allow you to configure the connection from Trino to external services using HTTP.

The following properties can be used after adding the specific prefix to the property. For example, for , you can enable HTTP for interactions with the external OAuth 2.0 provider by adding the prefix oauth2-jwk to the http-client.connect-timeout property, and increasing the connection timeout to ten seconds by setting the value to 10:

oauth2-jwk.http-client.connect-timeout=10s

The following prefixes are supported:

  • oauth2-jwk for
  • jwk for
  • exchange to configure data transfer between Trino nodes in addition to

General properties

http-client.connect-timeout

  • Type:
  • Default value: 5s
  • Minimum value: 0ms

Timeout value for establishing the connection to the external service.

max-content-length

  • Type:
  • Default value: 16MB

Maximum content size for each HTTP request and response.

http-client.request-timeout

  • Type:
  • Default value: 5m
  • Minimum value: 0ms

Timeout value for the overall request.

TLS and security properties

http-client.https.excluded-cipher

  • Type:

A comma-separated list of regexes for the names of cipher algorithms to exclude.

http-client.https.included-cipher

  • Type:

A comma-separated list of regexes for the names of the cipher algorithms to use.

http-client.https.hostname-verification

  • Type:
  • Default value: true

Verify that the server hostname matches the server DNS name in the SubjectAlternativeName (SAN) field of the certificate.

http-client.key-store-password

  • Type:

Password for the keystore.

http-client.key-store-path

  • Type:

File path on the server to the keystore file.

http-client.secure-random-algorithm

  • Type:

Set the secure random algorithm for the connection. The default varies by operating system. Algorithms are specified according to standard algorithm name documentation.

Possible types include NativePRNG, NativePRNGBlocking, NativePRNGNonBlocking, PKCS11, and SHA1PRNG.

http-client.trust-store-password

  • Type:

Password for the truststore.

http-client.trust-store-path

  • Type:

File path on the server to the truststore file.

Proxy properties

http-client.http-proxy

  • Type:

Host and port for an HTTP proxy with the format example.net:8080.

http-client.http-proxy.user

  • Type:

Username for basic authentication with the HTTP proxy.

http-client.http-proxy.password

  • Type:

Password for basic authentication with the HTTP proxy.

http-client.http-proxy.secure

  • Type:
  • Default value: false

Enable HTTPS for the proxy.

http-client.socks-proxy

  • Type:

Host and port for a SOCKS proxy.

Request logging

http-client.log.compression.enabled

  • Type:
  • Default value: true

Enable log file compression. The client uses the .gz format for log files.

http-client.log.enabled

  • Type:
  • Default value: false

Enable logging of HTTP requests.

http-client.log.flush-interval

  • Type:
  • Default value: 10s

Frequency of flushing the log data to disk.

http-client.log.max-history

  • Type:
  • Default value: 15

Retention limit of log files in days. Files older than the max-history are deleted when the HTTP client creates files for new logging periods.

http-client.log.max-size

  • Type:
  • Default value: 1GB

Maximum total size of all log files on disk.

http-client.log.path

  • Type:
  • Default value: var/log/

Sets the path of the log files. All log files are named http-client.log, and have the prefix of the specific HTTP client added. For example, jwk-http-client.log.

http-client.log.queue-size

  • Type:
  • Default value: 10000
  • Minimum value: 1

Size of the HTTP client logging queue.