Examples with PersistenceConfig com.hazelcast.config.PersistenceConfig used on opensource projects

Search in sources :

Example 1 with PersistenceConfig

use of com.hazelcast.config.PersistenceConfig in project hazelcast by hazelcast.

the class TestPersistenceEncryptionKeyStoreApplicationContext method testPersistence.

@Test
public void testPersistence() {
    File dir = new File("/mnt/persistence/");
    File hotBackupDir = new File("/mnt/persistence-backup/");
    PersistenceConfig persistenceConfig = config.getPersistenceConfig();
    assertFalse(persistenceConfig.isEnabled());
    assertEquals(dir.getAbsolutePath(), persistenceConfig.getBaseDir().getAbsolutePath());
    assertEquals(hotBackupDir.getAbsolutePath(), persistenceConfig.getBackupDir().getAbsolutePath());
    assertEquals(1111, persistenceConfig.getValidationTimeoutSeconds());
    assertEquals(2222, persistenceConfig.getDataLoadTimeoutSeconds());
    assertEquals(PARTIAL_RECOVERY_MOST_COMPLETE, persistenceConfig.getClusterDataRecoveryPolicy());
    assertFalse(persistenceConfig.isAutoRemoveStaleData());
    EncryptionAtRestConfig encryptionAtRestConfig = persistenceConfig.getEncryptionAtRestConfig();
    assertNotNull(encryptionAtRestConfig);
    assertTrue(encryptionAtRestConfig.isEnabled());
    assertEquals("AES/CBC/PKCS5Padding", encryptionAtRestConfig.getAlgorithm());
    assertEquals("sugar", encryptionAtRestConfig.getSalt());
    assertEquals(16, encryptionAtRestConfig.getKeySize());
    assertTrue(encryptionAtRestConfig.getSecureStoreConfig() instanceof JavaKeyStoreSecureStoreConfig);
    JavaKeyStoreSecureStoreConfig keyStoreConfig = (JavaKeyStoreSecureStoreConfig) encryptionAtRestConfig.getSecureStoreConfig();
    assertEquals(new File("/mnt/hot-restart/keystore.p12").getAbsolutePath(), keyStoreConfig.getPath().getAbsolutePath());
    assertEquals("PKCS12", keyStoreConfig.getType());
    assertEquals("password", keyStoreConfig.getPassword());
    assertEquals(60, keyStoreConfig.getPollingInterval());
}
Also used : EncryptionAtRestConfig(com.hazelcast.config.EncryptionAtRestConfig) JavaKeyStoreSecureStoreConfig(com.hazelcast.config.JavaKeyStoreSecureStoreConfig) PersistenceConfig(com.hazelcast.config.PersistenceConfig) File(java.io.File) QuickTest(com.hazelcast.test.annotation.QuickTest) Test(org.junit.Test)

Example 2 with PersistenceConfig

use of com.hazelcast.config.PersistenceConfig in project hazelcast by hazelcast.

the class NodeSecurityBanner method printSecurityFeaturesInfo.

@SuppressWarnings({ "checkstyle:CyclomaticComplexity", "checkstyle:MethodLength" })
private void printSecurityFeaturesInfo(Config config, Level logLevel) {
    StringBuilder sb = new StringBuilder("\n").append(getLockEmo()).append("Security recommendations and their status:");
    addSecurityFeatureCheck(sb, "Use a custom cluster name", !Config.DEFAULT_CLUSTER_NAME.equals(config.getClusterName()));
    addSecurityFeatureCheck(sb, "Disable member multicast discovery/join method", !multicastUsed);
    AdvancedNetworkConfig advancedNetworkConfig = config.getAdvancedNetworkConfig();
    addSecurityFeatureCheck(sb, "Use advanced networking, separate client and member sockets", advancedNetworkConfig.isEnabled());
    boolean bindAny = properties.getBoolean(SOCKET_SERVER_BIND_ANY);
    addSecurityFeatureCheck(sb, "Bind Server sockets to a single network interface (disable " + SOCKET_SERVER_BIND_ANY.getName() + ")", !bindAny);
    StringBuilder tlsSb = new StringBuilder();
    boolean tlsUsed = true;
    if (advancedNetworkConfig.isEnabled()) {
        for (Map.Entry<EndpointQualifier, EndpointConfig> e : advancedNetworkConfig.getEndpointConfigs().entrySet()) {
            tlsUsed = addAdvNetworkTlsInfo(tlsSb, e.getKey(), e.getValue().getSSLConfig()) && tlsUsed;
        }
    } else {
        SSLConfig sslConfig = config.getNetworkConfig().getSSLConfig();
        tlsUsed = addSecurityFeatureCheck(tlsSb, "Use TLS communication protection (Enterprise)", sslConfig != null && sslConfig.isEnabled());
    }
    boolean jetEnabled = config.getJetConfig().isEnabled();
    if (jetEnabled) {
        boolean trustedEnv = tlsUsed || !bindAny;
        addSecurityFeatureCheck(sb, "Use Jet in trusted environments only (single network interface and/or TLS enabled)", trustedEnv);
        if (config.getJetConfig().isResourceUploadEnabled()) {
            addSecurityFeatureInfo(sb, "Jet resource upload is enabled. Any uploaded code can be executed within " + "Hazelcast. Use this in trusted environments only.");
        }
    }
    if (config.getUserCodeDeploymentConfig().isEnabled()) {
        addSecurityFeatureInfo(sb, "User code deployment is enabled. Any uploaded code can be executed within " + "Hazelcast. Use this in trusted environments only.");
    }
    addSecurityFeatureCheck(sb, "Disable scripting in the Management Center", !config.getManagementCenterConfig().isScriptingEnabled());
    addSecurityFeatureCheck(sb, "Disable console in the Management Center", !config.getManagementCenterConfig().isConsoleEnabled());
    SecurityConfig securityConfig = config.getSecurityConfig();
    boolean securityEnabled = securityConfig != null && securityConfig.isEnabled();
    addSecurityFeatureCheck(sb, "Enable Security (Enterprise)", securityEnabled);
    if (securityEnabled) {
        checkAuthnConfigured(sb, securityConfig, "member-authentication", securityConfig.getMemberRealm());
        checkAuthnConfigured(sb, securityConfig, "client-authentication", securityConfig.getClientRealm());
    }
    // TLS here
    sb.append(tlsSb.toString());
    PersistenceConfig persistenceConfig = config.getPersistenceConfig();
    if (persistenceConfig != null && persistenceConfig.isEnabled()) {
        EncryptionAtRestConfig encryptionAtRestConfig = persistenceConfig.getEncryptionAtRestConfig();
        addSecurityFeatureCheck(sb, "Enable encryption-at-rest in the Persistence config (Enterprise)", encryptionAtRestConfig != null && encryptionAtRestConfig.isEnabled());
    }
    AuditlogConfig auditlogConfig = config.getAuditlogConfig();
    addSecurityFeatureCheck(sb, "Enable auditlog (Enterprise)", auditlogConfig != null && auditlogConfig.isEnabled());
    sb.append("\nCheck the hazelcast-security-hardened.xml/yaml example config file to find why and how to configure" + " these security related settings.\n");
    securityLogger.log(logLevel, sb.toString());
}
Also used : AdvancedNetworkConfig(com.hazelcast.config.AdvancedNetworkConfig) SSLConfig(com.hazelcast.config.SSLConfig) EncryptionAtRestConfig(com.hazelcast.config.EncryptionAtRestConfig) SecurityConfig(com.hazelcast.config.SecurityConfig) PersistenceConfig(com.hazelcast.config.PersistenceConfig) EndpointQualifier(com.hazelcast.instance.EndpointQualifier) AuditlogConfig(com.hazelcast.config.AuditlogConfig) Map(java.util.Map) EndpointConfig(com.hazelcast.config.EndpointConfig)

Example 3 with PersistenceConfig

use of com.hazelcast.config.PersistenceConfig in project hazelcast by hazelcast.

the class DefaultNodeExtension method checkPersistenceAllowed.

private void checkPersistenceAllowed() {
    PersistenceConfig persistenceConfig = node.getConfig().getPersistenceConfig();
    if (persistenceConfig != null && persistenceConfig.isEnabled()) {
        if (!BuildInfoProvider.getBuildInfo().isEnterprise()) {
            throw new IllegalStateException("Hot Restart requires Hazelcast Enterprise Edition");
        }
    }
    CPSubsystemConfig cpSubsystemConfig = node.getConfig().getCPSubsystemConfig();
    if (cpSubsystemConfig != null && cpSubsystemConfig.isPersistenceEnabled()) {
        if (!BuildInfoProvider.getBuildInfo().isEnterprise()) {
            throw new IllegalStateException("CP persistence requires Hazelcast Enterprise Edition");
        }
    }
}
Also used : PersistenceConfig(com.hazelcast.config.PersistenceConfig) CPSubsystemConfig(com.hazelcast.config.cp.CPSubsystemConfig)

Example 4 with PersistenceConfig

use of com.hazelcast.config.PersistenceConfig in project hazelcast by hazelcast.

the class PersistenceAndHotRestartPersistenceMergerTest method test.

private void test(String template) {
    String xml = String.format(template, persistenceEnabled, directory, parallelism, hotRestartPersistenceEnabled, directory + "a", max(parallelism - 1, parallelism + 1));
    Config cfg = Config.loadFromString(xml);
    HotRestartPersistenceConfig hotRestartPersistenceConfig = cfg.getHotRestartPersistenceConfig();
    PersistenceConfig persistenceConfig = cfg.getPersistenceConfig();
    assertEquals(persistenceEnabled || hotRestartPersistenceEnabled, persistenceConfig.isEnabled());
    assertEquals(new File(expectedDirectory).getAbsolutePath(), persistenceConfig.getBaseDir().getAbsolutePath());
    assertEquals(expectedParallelism, persistenceConfig.getParallelism());
    assertEquals(persistenceEnabled || hotRestartPersistenceEnabled, hotRestartPersistenceConfig.isEnabled());
    assertEquals(new File(expectedDirectory).getAbsolutePath(), hotRestartPersistenceConfig.getBaseDir().getAbsolutePath());
    assertEquals(expectedParallelism, hotRestartPersistenceConfig.getParallelism());
}
Also used : HotRestartPersistenceConfig(com.hazelcast.config.HotRestartPersistenceConfig) PersistenceConfig(com.hazelcast.config.PersistenceConfig) HotRestartPersistenceConfig(com.hazelcast.config.HotRestartPersistenceConfig) Config(com.hazelcast.config.Config) PersistenceConfig(com.hazelcast.config.PersistenceConfig) HotRestartPersistenceConfig(com.hazelcast.config.HotRestartPersistenceConfig) File(java.io.File)

Example 5 with PersistenceConfig

use of com.hazelcast.config.PersistenceConfig in project hazelcast by hazelcast.

the class MemberDomConfigProcessor method handlePersistence.

private void handlePersistence(Node prRoot) throws Exception {
    PersistenceConfig prConfig = config.getPersistenceConfig().setEnabled(getBooleanValue(getAttribute(prRoot, "enabled")));
    String parallelismName = "parallelism";
    String validationTimeoutName = "validation-timeout-seconds";
    String dataLoadTimeoutName = "data-load-timeout-seconds";
    String rebalanceDelaySecondsName = "rebalance-delay-seconds";
    for (Node n : childElements(prRoot)) {
        String name = cleanNodeName(n);
        if (matches("encryption-at-rest", name)) {
            handleEncryptionAtRest(n, prConfig);
        } else {
            if (matches("base-dir", name)) {
                prConfig.setBaseDir(new File(getTextContent(n)).getAbsoluteFile());
            } else if (matches("backup-dir", name)) {
                prConfig.setBackupDir(new File(getTextContent(n)).getAbsoluteFile());
            } else if (matches(parallelismName, name)) {
                prConfig.setParallelism(getIntegerValue(parallelismName, getTextContent(n)));
            } else if (matches(validationTimeoutName, name)) {
                prConfig.setValidationTimeoutSeconds(getIntegerValue(validationTimeoutName, getTextContent(n)));
            } else if (matches(dataLoadTimeoutName, name)) {
                prConfig.setDataLoadTimeoutSeconds(getIntegerValue(dataLoadTimeoutName, getTextContent(n)));
            } else if (matches("cluster-data-recovery-policy", name)) {
                prConfig.setClusterDataRecoveryPolicy(PersistenceClusterDataRecoveryPolicy.valueOf(upperCaseInternal(getTextContent(n))));
            } else if (matches("auto-remove-stale-data", name)) {
                prConfig.setAutoRemoveStaleData(getBooleanValue(getTextContent(n)));
            } else if (matches("rebalance-delay-seconds", name)) {
                prConfig.setRebalanceDelaySeconds(getIntegerValue(rebalanceDelaySecondsName, getTextContent(n)));
            }
        }
    }
    config.setPersistenceConfig(prConfig);
}
Also used : PersistenceConfig(com.hazelcast.config.PersistenceConfig) HotRestartPersistenceConfig(com.hazelcast.config.HotRestartPersistenceConfig) DataPersistenceConfig(com.hazelcast.config.DataPersistenceConfig) Node(org.w3c.dom.Node) File(java.io.File)

Aggregations

PersistenceConfig (com.hazelcast.config.PersistenceConfig)7 File (java.io.File)5 EncryptionAtRestConfig (com.hazelcast.config.EncryptionAtRestConfig)4 SSLConfig (com.hazelcast.config.SSLConfig)3 QuickTest (com.hazelcast.test.annotation.QuickTest)3 Test (org.junit.Test)3 HotRestartPersistenceConfig (com.hazelcast.config.HotRestartPersistenceConfig)2 VaultSecureStoreConfig (com.hazelcast.config.VaultSecureStoreConfig)2 AdvancedNetworkConfig (com.hazelcast.config.AdvancedNetworkConfig)1 AuditlogConfig (com.hazelcast.config.AuditlogConfig)1 Config (com.hazelcast.config.Config)1 DataPersistenceConfig (com.hazelcast.config.DataPersistenceConfig)1 EndpointConfig (com.hazelcast.config.EndpointConfig)1 JavaKeyStoreSecureStoreConfig (com.hazelcast.config.JavaKeyStoreSecureStoreConfig)1 SecurityConfig (com.hazelcast.config.SecurityConfig)1 CPSubsystemConfig (com.hazelcast.config.cp.CPSubsystemConfig)1 EndpointQualifier (com.hazelcast.instance.EndpointQualifier)1 Map (java.util.Map)1 Node (org.w3c.dom.Node)1
About Me
UseOf

Java Tutorials :

Simple Java RabbitMQ Example with Spring
Simple Springboot JPA Eclipeslink Example
Simple SpringBoot JPA Hibernate Example
Jackson JSON @JsonIgnore and @JsonIgnoreProperties Examples
Java Infinite recursion (StackOverflowError) Jackson solutions
Simple Java Jackson Serialize Objects to JSON and convert them back To Object
ElasticSearch 5 - Upload files using Java API in binary field Example
Java JAXB marshall unmarshall Examples from String and Stream
Java 8 forEach List and Map examples
ElasticSearch 5 Java API SearchRequestBuilder examples
Java ElasticSearch 5 examples with node index and mapping - running local
Convert String to int or Integer Java 8
Java 9 in action - JShell - Ubuntu
Java - removing invalid characters from a file name
Hello world!? or Hello Tutorial