Developing an App Under TLS
Apps that connect to a TLS-enabled VMware Tanzu GemFire for VMs service instance must set properties to configure the communication with the VMware Tanzu GemFire components within the Tanzu GemFire service instance.
Ensure that the cluster-level prerequisite step of Preparing for TLS has been completed.
For a Spring Data GemFire app
with a Spring Data GemFire library dependency of
2.2.0.BUILD-SNAPSHOT or a more recent version,
attach the @EnableSsl
annotation to your configuration class
to enable the TLS encryption for all VMware Tanzu GemFire components.
Also set these VMware Tanzu GemFire properties:
ssl-use-default-context=true
ssl-endpoint-identification-enabled=false
For other apps, the VMware Tanzu GemFire properties should be
ssl-enabled-components=all
ssl-use-default-context=true
ssl-endpoint-identification-enabled=false
An app may set these properties with the ClientCacheFactory.set()
method,
prior to creating a ClientCache
instance.
The build and cf push
of the app does not require any changes
to work with a TLS-enabled Tanzu GemFire service instance.