@Target(value=TYPE) @Retention(value=RUNTIME) @Inherited @Documented @Import(value=AuthConfiguration.class) @UsesGemFireProperties public @interface EnableAuth
EnableAuth
annotation marks a Spring @Configuration
annotated Class
to configure and enable Pivotal GemFire/Apache Geode's Authentication and Authorization framework and services.Annotation
,
AccessControl
,
AuthInitialize
,
Authenticator
,
Import
,
AuthConfiguration
,
Authentication,
AuthorizationModifier and Type | Optional Element and Description |
---|---|
String |
clientAccessor
Used for authorization.
|
String |
clientAccessorPostProcessor
Used for authorization.
|
String |
clientAuthenticationInitializer
Used for authentication.
|
String |
clientAuthenticator
Used for authentication.
|
String |
clientDiffieHellmanAlgorithm
Used for authentication.
|
String |
peerAuthenticationInitializer
Used with authentication.
|
String |
peerAuthenticator
Used with authentication.
|
long |
peerVerifyMemberTimeout
Used with authentication.
|
String |
securityLogFile
Used with authentication.
|
String |
securityLogLevel
Used with authentication.
|
String |
securityPropertiesFile
Used for authentication.
|
public abstract String clientAccessor
AccessControl
object, which determines
authorization of client-server cache operations. This specifies the callback that should be invoked
in the pre-operation phase, which is when the request for the operation is received from the client.
Defaults to unset.
Use the spring.data.gemfire.security.client.accessor property in application.properties.public abstract String clientAccessorPostProcessor
public abstract String clientAuthenticationInitializer
AuthInitialize
object,
which obtains credentials for clients. The obtained credentials should be acceptable
to the Authenticator
specified through the security-client-authenticator property
on the clients.
Defaults to unset.
Use the spring.data.gemfire.security.client.authentication-initializer property
in application.properties.public abstract String clientAuthenticator
Authenticator
object,
which is used by a server to verify the credentials of the connecting client.
Defaults to unset.
Use the spring.data.gemfire.security.client.authenticator property
in application.properties.public abstract String clientDiffieHellmanAlgorithm
public abstract String peerAuthenticationInitializer
AuthInitialize
object, which obtains
credentials for peers in a distributed system. The obtained credentials should be acceptable to the
Authenticator
specified through the security-peer-authenticator property on the peers.
Defaults to unset.
Use the spring.data.gemfire.security.peer.authentication-initializer property
in application.properties.public abstract String peerAuthenticator
Authenticator
object, which is used
by a peer to verify the credentials of the connecting peer.
Defaults to unset.
Use the spring.data.gemfire.security.peer.authenticator property in application.properties.public abstract long peerVerifyMemberTimeout
public abstract String securityLogFile
public abstract String securityLogLevel
public abstract String securityPropertiesFile
AuthInitialize
or Authenticator
callbacks store in an external Properties
file.
Any security-related (properties that begin with security-*) configuration properties
that are normally configured in gemfire.properties can be moved to a separate
gfsecurity.properties file. Placing these configuration settings in a separate file
allows you to restrict access to security configuration data. This way, you can still allow read
or write access for your gemfire.properties file.
Defaults to unset.
Use the spring.data.gemfire.security.properties-file property in application.properties.Copyright © 2011–2019 Pivotal Software, Inc.. All rights reserved.