@Target(value=TYPE) @Retention(value=RUNTIME) @Inherited @Documented @Import(value=SslConfiguration.class) @UsesGemFireProperties public @interface EnableSsl
EnableSsl
annotation marks a Spring @Configuration
annotated Class
to configure and enable Pivotal GemFire/Apache Geode's TCP/IP Socket SSL.Annotation
,
SecurableCommunicationChannels
,
Import
,
SslConfiguration
Modifier and Type | Optional Element and Description |
---|---|
String[] |
ciphers
Configures the SSL ciphers used for secure Socket connections as an array of valid
cipher names . |
EnableSsl.ComponentAlias[] |
componentCertificateAliases
Configures the
names of all the individual Keystore certificates to use
when configuring SSL for each Pivotal GemFire/Apache Geode EnableSsl.Component separately. |
EnableSsl.Component[] |
components
Configures the Pivotal GemFire/Apache Geode components for which SSL will be enabled.
|
String |
defaultCertificateAlias
Configures the default
name of a single Keystore certificate to use
when configuring SSL for all Pivotal GemFire/Apache Geode components collectively. |
boolean |
enableEndpointIdentification
If true then causes clients (or Apache Geode servers in cause of P2P) to validate the server's
hostname using the server`s certificate.
|
String |
keystore
Pathname to the Keystore used for SSL communications.
|
String |
keystorePassword
Password to access the keys in the Keystore used for SSL communications.
|
String |
keystoreType
Identifies the type of Keystore used for SSL communications.
|
String[] |
protocols
Configures the SSL protocols used for secure Socket connections as an array of
valid
protocol names . |
boolean |
requireAuthentication
Boolean value indicating whether to require authentication for SSL communication between clients, servers,
gateways, etc.
|
String |
truststore
Pathname to the truststore used for SSL communications.
|
String |
truststorePassword
Password to access the keys in the truststore used for SSL communications.
|
String |
truststoreType
Identifies the type of truststore used for SSL communications.
|
boolean |
useDefaultContext
If true then this will enable the use of default SSL context
and sets ssl-endpoint-identification-enabled to true.
|
boolean |
webRequireAuthentication
If true then requires two-way authentication for web component.
|
public abstract String[] ciphers
cipher names
.
A setting of any uses any ciphers that are enabled by default in the configured JSSE provider.
Defaults to any.
Use the spring.data.gemfire.security.ssl.ciphers property
in application.properties.public abstract EnableSsl.Component[] components
EnableSsl.Component.ALL
.
Use the spring.data.gemfire.security.ssl.components property
in application.properties.
E.g. spring.data.gemfire.security.ssl.components=cluster,gateway,locator,server.public abstract EnableSsl.ComponentAlias[] componentCertificateAliases
names
of all the individual Keystore certificates to use
when configuring SSL for each Pivotal GemFire/Apache Geode EnableSsl.Component
separately.
Each EnableSsl.Component
defaults to the configured value of the defaultCertificateAlias()
if not individually configured with this attribute.
Use spring.data.gemfire.security.ssl.certificate.alias.<component>
in application.properties.
E.g. spring.data.gemfire.security.ssl.certificate.alias.gateway=WanCert.public abstract String defaultCertificateAlias
name
of a single Keystore certificate to use
when configuring SSL for all Pivotal GemFire/Apache Geode components
collectively.
If defaultAlias
is not specified, then the first certificate in the Keystore
acts as the default SSL certificate.
Use the spring.data.gemfire.security.ssl.certificate.alias.default property
in application.properties.public abstract boolean enableEndpointIdentification
public abstract String keystore
public abstract String keystorePassword
public abstract String keystoreType
public abstract String[] protocols
protocol names
.
A setting of any uses any protocol that is enabled by default in the configured JSSE provider.
Defaults to any.
Use the spring.data.gemfire.security.ssl.protocols property
in application.properties.public abstract boolean requireAuthentication
public abstract String truststore
public abstract String truststorePassword
public abstract String truststoreType
Copyright © 2011–2021 Pivotal Software, Inc.. All rights reserved.