Developing an App Under TLS

Apps that connect to a TLS-enabled VMware Tanzu GemFire for VMs service instance must set properties to configure the communication with the VMware Tanzu GemFire components within the Tanzu GemFire service instance.

Ensure that the cluster-level prerequisite step of Preparing for TLS has been completed.

For a Spring Data GemFire app with a Spring Data GemFire library dependency of 2.2.0.BUILD-SNAPSHOT or a more recent version, attach the @EnableSsl annotation to your configuration class to enable the TLS encryption for all VMware Tanzu GemFire components. Also set these VMware Tanzu GemFire properties:

ssl-use-default-context=true
ssl-endpoint-identification-enabled=false

For other apps, the VMware Tanzu GemFire properties should be

ssl-enabled-components=all
ssl-use-default-context=true
ssl-endpoint-identification-enabled=false

An app may set these properties with the ClientCacheFactory.set() method, prior to creating a ClientCache instance.

The build and cf push of the app does not require any changes to work with a TLS-enabled Tanzu GemFire service instance.