New Security in Apache Geode
Hear about the new security framework released in Apache Geode 1.0 M3. This framework provides a simplified implementation based on Apache Shiro. Slides: http://www.slideshare.net/PivotalOpenSourceHub/new-security-framework-in-apache-geode 01:34 How do people interact with Geode in ways that need to be secured? 02:52 What security capabilities does Geode need to provide? 03:36 How did security work in Geode before? 06:49 Overview of new Geode security framework 08:14 Code for SecurityManager interface 10:21 About Users, Roles, Resource Permissions, and Operations 20:09 How to implement application-specific roles 23:05 How to implement data-member access control with post processing 25:30 Demo of framework using multiple GFSH users 36:19 Q: Can someone update security settings while the cluster is running? 40:46 How Geode uses Apache Shiro to implement security 42:55 Future directions or enhancing security with Apache Shiro 44:17 Q: How can the app developer know which user is executing a function? 46:50 How does the new security framework fit with Spring Security and Spring Data Geode? 50:42 For the next version of Geode, the old security paradigm is supported for backward compatibility 51:21 What releases of Geode have the new security functionality?