Docs Menu
Docs Home
/
MongoDB Database Tools

๋ฐ์ดํ„ฐ๋ฒ ์ด์Šค ๋„๊ตฌ ์ธ์ฆ

์ด ํŽ˜์ด์ง€์˜ ๋‚ด์šฉ

100.11.0๋ถ€ํ„ฐ๋Š” Atlas Workload Identity Federation ๊ณผ ํ•จ๊ป˜ ๋ฐ์ดํ„ฐ๋ฒ ์ด์Šค ๋„๊ตฌ๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ Microsoft Azure ๋ฐ Google Cloud Platform ์—์„œ ์‹คํ–‰ MongoDB ์— ๋Œ€ํ•œ ์—ฐ๊ฒฐ์„ ์ธ์ฆํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค.

์˜ˆ์‹œ

์ด ์„น์…˜์—์„œ๋Š” Workload Identity Federation์„ ์‚ฌ์šฉํ•˜๋Š” ๋ฐ์ดํ„ฐ๋ฒ ์ด์Šค ๋„๊ตฌ์˜ ์˜ˆ๋ฅผ ๋ณด์—ฌ์ค๋‹ˆ๋‹ค.

์—ฐ๊ฒฐ ๋ฌธ์ž์—ด ์—์„œ ์„(๋ฅผ)(์œผ)๋กœ ์„ค์ •ํ•˜๋‹ค ํ•„์š”์— authMechanism MONGODB-OIDC ๋”ฐ๋ผ ์„(๋ฅผ)authMechanismProperties ์„ค์ •ํ•˜๋‹ค .

  • Microsoft Azure ์˜ ๊ฒฝ์šฐ authMechanismProperties ์„ ENVIRONMENT:azure,TOKEN_RESOURCE:<audience> ๋กœ ์„ค์ •ํ•˜๋‹ค ํ•ฉ๋‹ˆ๋‹ค. ์ฐธ๊ณ : Microsoft Azure Kubernetes Service)๋ฅผ ์‚ฌ์šฉํ•˜๋Š” ๊ฒฝ์šฐ TOKEN_RESOURCE ๋ฅผ ์ƒ๋žตํ•ฉ๋‹ˆ๋‹ค.

  • Google Cloud Platform ์˜ ๊ฒฝ์šฐ authMechanismProperties ์„ ENVIRONMENT:gcp,TOKEN_RESOURCE:<audience> ๋กœ ์„ค์ •ํ•˜๋‹ค ํ•ฉ๋‹ˆ๋‹ค.

<audience> ์„ ์•ก์„ธ์Šค ํ† ํฐ์ด ์˜๋„๋œ ์• ํ”Œ๋ฆฌ์ผ€์ด์…˜ ๋˜๋Š” ์„œ๋น„์Šค๋กœ ๋ฐ”๊ฟ‰๋‹ˆ๋‹ค. ์ž์„ธํ•œ ๋‚ด์šฉ์€ ID ์ œ๊ณต์ž ํ•„๋“œ๋ฅผ ์ฐธ์กฐํ•˜์„ธ์š”.

Microsoft Azure ์ธ์Šคํ„ด์Šค ๋ฉ”ํƒ€๋ฐ์ดํ„ฐ ์„œ๋น„์Šค๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ MongoDB ์— ์—ฐ๊ฒฐ

๋‹ค์Œ mongodump ์˜ˆ์‹œ Microsoft Azure ์ธ์Šคํ„ด์Šค ๋ฉ”ํƒ€๋ฐ์ดํ„ฐ ์„œ๋น„์Šค(IMDS)๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ MongoDB ์— ์—ฐ๊ฒฐํ•ฉ๋‹ˆ๋‹ค.

mongodump --uri "mongodb://mongodb.example.com:20017/?authMechanism=MONGODB-OIDC&authMechanismProperties=ENVIRONMENT:azure,TOKEN_RESOURCE:https://www.example.com" \
   --username admin

Microsoft Azure Kubernetes Service๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ MongoDB ์— ์—ฐ๊ฒฐ

Microsoft Azure Kubernetes Service๋ฅผ ์‚ฌ์šฉํ•˜์—ฌ MongoDB ์— ์—ฐ๊ฒฐํ•˜๋ ค๋ฉด ๋‹ค์Œ ํ™˜๊ฒฝ ๋ณ€์ˆ˜๋ฅผ ์ •์˜ํ•˜์„ธ์š”.

ํ™˜๊ฒฝ ๋ณ€์ˆ˜
์„ค๋ช…

AZURE_TENANT_ID

Azure tenant identifier.

AZURE_APP_CLIENT_ID

Azure ์• ํ”Œ๋ฆฌ์ผ€์ด์…˜ ํด๋ผ์ด์–ธํŠธ ์‹๋ณ„์ž์ž…๋‹ˆ๋‹ค.

AZURE_CLIENT_ID

์ธ์ฆํ•  managed ID์˜ Azure ํด๋ผ์ด์–ธํŠธ ์‹๋ณ„์ž์ž…๋‹ˆ๋‹ค.

AZURE_FEDERATED_TOKEN_FILE

Azure ์—ฐํ•ฉ ํ† ํฐ ํŒŒ์ผ ๊ฒฝ๋กœ์ž…๋‹ˆ๋‹ค.

Azure ๋ฐ ๋ณ€์ˆ˜์— ๋Œ€ํ•œ ์ž์„ธํ•œ ๋‚ด์šฉ์€ Microsoft Azure ์„ค๋ช…์„œ๋ฅผ ์ฐธ์กฐํ•˜์„ธ์š”.

๋‹ค์Œ mongodump ์˜ˆ์‹œ ์—์„œ๋Š” ํ™˜๊ฒฝ ๋ณ€์ˆ˜๋ฅผ ์ •์˜ํ•˜๊ณ  MongoDB ์— ์—ฐ๊ฒฐํ•ฉ๋‹ˆ๋‹ค.

AZURE_TENANT_ID=08206ab8-16a0-406d-85e4-2f15f5620fac \
AZURE_APP_CLIENT_ID=b6c835da-e536-425b-9405-64bc471e245b \
AZURE_CLIENT_ID=f176d4eb-7dcd-4f66-bccf-aaa316ee61fd \
AZURE_FEDERATED_TOKEN_FILE=/var/run/secrets/azure/tokens/azure-identity-token \
mongodump --uri "mongodb://mongodb.example.com:20017/?authMechanism=MONGODB-OIDC&authMechanismProperties=ENVIRONMENT:azure" \
   --username "admin"

์ด ์˜ˆ์‹œ ์—์„œ๋Š” TOKEN_RESOURCE ์ด ํ•„์š”ํ•˜์ง€ ์•Š์Šต๋‹ˆ๋‹ค.

Google Cloud Platform ์—์„œ MongoDB ์— ์—ฐ๊ฒฐ

๋‹ค์Œ mongodump ์˜ˆ์‹œ Google Cloud Platform ์—์„œ MongoDB ์— ์—ฐ๊ฒฐํ•ฉ๋‹ˆ๋‹ค.

mongodump --uri "mongodb://mongodb.example.com:20017/?authMechanism=MONGODB-OIDC&authMechanismProperties=ENVIRONMENT:gcp,TOKEN_RESOURCE:https://www.example.com" \
   --username "admin"

Google Cloud Platform ์—๋Š” ํ™˜๊ฒฝ ๋ณ€์ˆ˜๊ฐ€ ํ•„์š”ํ•˜์ง€ ์•Š์Šต๋‹ˆ๋‹ค.

๋Œ์•„๊ฐ€๊ธฐ

๋กœ๊ทธ

๋‹ค์Œ

100.10.0 ๋ณ€๊ฒฝ ๋กœ๊ทธ

์ด ํŽ˜์ด์ง€์˜ ๋‚ด์šฉ