| |
Coherence Cluster: Security: General
Column Display Configuration Options Related Tasks Related Topics
Use this page to enable the Coherence security framework. If you do not enable security, then any non-WebLogic Server JVM can access the Coherence cluster without going through WebLogic Server authorization.
- Use the Identity fields to enter a private key alias and password to a keystore that contains the Coherence private key. Alternatively, you can leave the fields blank to use the server's SSL identity. The same Coherence identity must be found on every server keystore.
- Use the Identity Assertion fields to enter a Coherence identity asserter implementation to restrict Coherence*Extend client access to a Coherence proxy service. The implementation validates an identity token that is created by an identity transformer on a Coherence*Extend client.
Use the Services and Caches tabs to define WebLogic Server roles and policies for authorizing access to Coherence services and caches, respectively.
Configuration Options
Name Description Security Framework Enabled Check if security framework is enabled
MBean Attribute:
CoherenceClusterParamsBean.SecurityFrameworkEnabledChanges take effect after you redeploy the module or restart the server.
Private Key Alias The string alias used to store and retrieve the Coherence Identity private key in the keystore. This private key is associated with the Coherence Identity digital certificate. If this alias is null, the Server SSL identity alias will be used.
MBean Attribute:
CoherenceKeystoreParamsBean.CoherenceIdentityAliasChanges take effect after you redeploy the module or restart the server.
Private Key Pass Phrase The passphrase used to retrieve the private key for the Coherence Identity specified in the server configured keystore. This passphrase is assigned to the private key when the private key is generated.
Note that when you get the value of this attribute, WebLogic Server does the following:
Retrieves the value of the
CoherencePrivateKeyPassPhraseattribute.Decrypts the value and returns the unencrypted passphrase.
MBean Attribute:
CoherenceKeystoreParamsBean.CoherencePrivateKeyPassPhraseChanges take effect after you redeploy the module or restart the server.
Identity Asserter Class The class that implements com.tangosol.net.security.IdentityAsserter. If className is empty, no IdentityAsserter will be configured.
MBean Attribute:
CoherenceIdentityAsserterBean.ClassNameChanges take effect after you redeploy the module or restart the server.
Identity Asserter Constructor Arguments Enter types and values of the arguments that will be passed to the identity asserter's constructor, e.g.
java.lang.Integer=120orjava.lang.String=my string.Each argument must be of the form
type=value. Blank lines are ignored, and white space around the types and values is trimmed. Multi-line values are not supported. The arguments are passed to the constructor in the order they are specified on the page.The currently supported types are:
- java.lang.String (or string)
- java.lang.Boolean (or boolean)
- java.lang.Integer (or int)
- java.lang.Long (or long)
- java.lang.Double (or double)
- java.math.BigDecimal (or decimal)
- java.io.File (or file)
- java.sql.Date (or date)
- java.sql.Time (or time)
- java.sql.Timestamp (or datetime)
Each value must be appropriate for its corresponding type. Read the Javadoc for the type's Java class to find out the correct format.
Column Display
You can show fewer or additional data points on this page by expanding Customize this table and modifying the Column Display list. Each data point displays in its own table column.
The following table lists all of the data points that you can display in columns on this page.
Name Description Name A unique name that identifies this initialization parameter.
MBean Attribute:
CoherenceInitParamBean.NameChanges take effect after you redeploy the module or restart the server.
Type MBean Attribute:
CoherenceInitParamBean.TypeChanges take effect after you redeploy the module or restart the server.
Value MBean Attribute:
CoherenceInitParamBean.ValueChanges take effect after you redeploy the module or restart the server.
|