Annotation Interface EnableAuth


The EnableAuth annotation marks a Spring @Configuration annotated Class to configure and enable Pivotal GemFire/Apache Geode's Authentication and Authorization framework and services.
Since:
1.9.0
Author:
John Blum
See Also:
  • Element Details

    • clientAccessor

      String clientAccessor
      Used for authorization. Static creation method returning an AccessControl object, which determines authorization of client-server cache operations. This specifies the callback that should be invoked in the pre-operation phase, which is when the request for the operation is received from the client. Defaults to unset. Use the spring.data.gemfire.security.client.accessor property in application.properties.
      Default:
      ""
    • clientAccessorPostProcessor

      String clientAccessorPostProcessor
      Used for authorization. The callback that should be invoked in the post-operation phase, which is when the operation has completed on the server but before the result is sent to the client. The post-operation callback is also invoked for the updates that are sent from server to client through the notification channel. Defaults to unset. Use the spring.data.gemfire.security.client.accessor-post-processor property in application.properties.
      Default:
      ""
    • clientAuthenticationInitializer

      String clientAuthenticationInitializer
      Used for authentication. Static creation method returning an AuthInitialize object, which obtains credentials for clients. The obtained credentials should be acceptable to the Authenticator specified through the security-client-authenticator property on the clients. Defaults to unset. Use the spring.data.gemfire.security.client.authentication-initializer property in application.properties.
      Default:
      ""
    • clientAuthenticator

      String clientAuthenticator
      Used for authentication. Static creation method returning an Authenticator object, which is used by a server to verify the credentials of the connecting client. Defaults to unset. Use the spring.data.gemfire.security.client.authenticator property in application.properties.
      Default:
      ""
    • clientDiffieHellmanAlgorithm

      String clientDiffieHellmanAlgorithm
      Used for authentication. For secure transmission of sensitive credentials like passwords, you can encrypt the credentials using the Diffie-Hellman key exchange algorithm. Do this by setting the security-client-dhalgo system property on the clients to the name of a valid symmetric key cipher supported by the JDK. Defaults to unset. Use the spring.data.gemfire.security.client.diffie-hellman-algorithm property in application.properties.
      Default:
      ""
    • peerAuthenticationInitializer

      String peerAuthenticationInitializer
      Used with authentication. Static creation method returning an AuthInitialize object, which obtains credentials for peers in a distributed system. The obtained credentials should be acceptable to the Authenticator specified through the security-peer-authenticator property on the peers. Defaults to unset. Use the spring.data.gemfire.security.peer.authentication-initializer property in application.properties.
      Default:
      ""
    • peerAuthenticator

      String peerAuthenticator
      Used with authentication. Static creation method returning an Authenticator object, which is used by a peer to verify the credentials of the connecting peer. Defaults to unset. Use the spring.data.gemfire.security.peer.authenticator property in application.properties.
      Default:
      ""
    • peerVerifyMemberTimeout

      long peerVerifyMemberTimeout
      Used with authentication. Timeout in milliseconds used by a peer to verify membership of an unknown authenticated peer requesting a secure connection. Defaults to 1000 milliseconds. Use the spring.data.gemfire.security.peer.verify-member-timeout property in application.properties.
      Default:
      1000L
    • securityLogFile

      String securityLogFile
      Used with authentication. The log file for security log messages. If not specified, the member’s regular log file is used. Defaults to unset. Use the spring.data.gemfire.security.log.file property in application.properties.
      Default:
      ""
    • securityLogLevel

      String securityLogLevel
      Used with authentication. Logging level detail for security log messages. Valid values from lowest to highest are fine, config, info, warning, error, severe, and none. Defaults to config. Use the spring.data.gemfire.security.log.level property in application.properties.
      Default:
      "config"
    • securityPropertiesFile

      String securityPropertiesFile
      Used for authentication. Any custom properties needed by your AuthInitialize or Authenticator callbacks store in an external Properties file. Any security-related (properties that begin with security-*) configuration properties that are normally configured in gemfire.properties can be moved to a separate gfsecurity.properties file. Placing these configuration settings in a separate file allows you to restrict access to security configuration data. This way, you can still allow read or write access for your gemfire.properties file. Defaults to unset. Use the spring.data.gemfire.security.properties-file property in application.properties.
      Default:
      ""