Package com.gemstone.gemfire.security

Provides an API for plugging in authentication and authorization for members of a distributed system and clients.

See: Description

Interface Summary

Interface	Description
AccessControl	Specifies the interface to authorize operations at the cache or region level for clients or servers.
Authenticator	Specifies the mechanism to verify credentials for a client or peer.
AuthInitialize	Specifies the mechanism to obtain credentials for a client or peer.

Exception Summary

Exception	Description
AuthenticationFailedException	Thrown if authentication of this client/peer fails.
AuthenticationRequiredException	Thrown if the distributed system is in secure mode and this client/peer has not set the security credentials.
GemFireSecurityException	The base class for all com.gemstone.gemfire.security related exceptions.
NotAuthorizedException	Thrown when a client/peer is unauthorized to perform a requested operation.

Package com.gemstone.gemfire.security Description

Provides an API for plugging in authentication and authorization for members of a distributed system and clients.

GemFire security framework

The security framework tackles two requirements: authentication of nodes and authorization for operations. The authentication piece deals with authentication of nodes in a peer-to-peer network as well as of the clients that connect to the servers.

It is not our plan to provide a sophisticated security infrastructure built into GemFire. Most enterprise customers have their own authentication and entitlement management infrastructure and our plan is make sure the framework allows application administrators to delegate the responsibility to external providers.