Securing Components

Each major component in GigaSpaces (data grid, Grid Service Agent, Grid Service Manager, Grid Service Container, Processing Unit This is the unit of packaging and deployment in the GigaSpaces Data Grid, and is essentially the main GigaSpaces service. The Processing Unit (PU) itself is typically deployed onto the Service Grid. When a Processing Unit is deployed, a Processing Unit instance is the actual runtime entity., and Web Management Console) has its own security configuration that can be adapted individually to suit the needs of your application environment. Security can also be enabled for other components and processes in the GigaSpaces environment. This section explains how security relates to each component, and how to configure the properties to properly secure your application.

You can apply security settings at the following levels:

• Data - You can secure the Space Where GigaSpaces data is stored. It is the logical cache that holds data objects in memory and might also hold them in layered in tiering. Data is hosted from multiple SoRs, consolidated as a unified data model., Processing Unit, local cache/view, Space filters, task execution/executors, event-driven remoting, and the JDBC Java DataBase Connectivity. This is an application programming interface (API) for the Java programming language, which defines how a client may access a database. driver.
• Service Grid - You can enable security for the Grid Service Agent (GSA Grid Service Agent. This is a process manager that can spawn and manage Service Grid processes (Operating System level processes) such as The Grid Service Manager, The Grid Service Container, and The Lookup Service. Typically, the GSA is started with the hosting machine's startup. Using the agent, you can bootstrap the entire cluster very easily, and start and stop additional GSCs, GSMs and lookup services at will.), Grid Service Manager (GSM Grid Service Manager. This is is a service grid component that manages a set of Grid Service Containers (GSCs). A GSM has an API for deploying/undeploying Processing Units. When a GSM is instructed to deploy a Processing Unit, it finds an appropriate, available GSC and tells that GSC to run an instance of that Processing Unit. It then continuously monitors that Processing Unit instance to verify that it is alive, and that the SLA is not breached.), and Grid Service Container (GSC Grid Service Container. This provides an isolated runtime for one (or more) processing unit (PU) instance and exposes its state to the GSM.).
• Transport layer - GigaSpaces contains a generic network filter that also provides SSL support via an SSL communication filter.

To administer and manage these components, set security configurations for:

• Web Management Console - using a secured Web-UI server.
• REST Manager API - using a secured RESTful API REpresentational State Transfer. Application Programming Interface An API, or application programming interface, is a set of rules that define how applications or devices can connect to and communicate with each other. A REST API is an API that conforms to the design principles of the REST, or representational state transfer architectural style..