Developing an App Under TLS

Warning: Pivotal Cloud Cache v1.8 is no longer supported because it has reached the End of General Support (EOGS) phase as defined by the Support Lifecycle Policy. To stay up to date with the latest software and security updates, upgrade to a supported version.

Apps that connect to a TLS-enabled PCC service instance must set properties to configure the communication with the Pivotal GemFire components within the PCC service instance.

Ensure that the cluster-level prerequisite step of Preparing for TLS has been completed.

For a Spring Data GemFire app with a Spring Data GemFire library dependency of 2.2.0.BUILD-SNAPSHOT or a more recent version, attach the @EnableSsl annotation to your configuration class to enable the TLS encryption for all GemFire components. Also set these GemFire properties:

ssl-use-default-context=true
ssl-endpoint-identification-enabled=false

For other apps, the GemFire properties should be

ssl-enabled-components=all
ssl-use-default-context=true
ssl-endpoint-identification-enabled=false

An app may set these properties with the ClientCacheFactory.set() method, prior to creating a ClientCache instance.

The build and cf push of the app does not require any changes to work with a TLS-enabled PCC service instance.