Write security features list of items [#129624161]
Project: http://git-wip-us.apache.org/repos/asf/incubator-geode/repo Commit: http://git-wip-us.apache.org/repos/asf/incubator-geode/commit/b37c19f1 Tree: http://git-wip-us.apache.org/repos/asf/incubator-geode/tree/b37c19f1 Diff: http://git-wip-us.apache.org/repos/asf/incubator-geode/diff/b37c19f1 Branch: refs/heads/staging/docs-grant1 Commit: b37c19f1435d7f430f868ba5ec491d2168bd6b1c Parents: 914b796 Author: Karen Miller <[email protected]> Authored: Wed Sep 7 10:26:08 2016 -0700 Committer: Karen Miller <[email protected]> Committed: Wed Sep 7 10:26:08 2016 -0700 ---------------------------------------------------------------------- managing/security/security_intro.html.md.erb | 15 +++++++++------ 1 file changed, 9 insertions(+), 6 deletions(-) ---------------------------------------------------------------------- http://git-wip-us.apache.org/repos/asf/incubator-geode/blob/b37c19f1/managing/security/security_intro.html.md.erb ---------------------------------------------------------------------- diff --git a/managing/security/security_intro.html.md.erb b/managing/security/security_intro.html.md.erb index 6f37bcd..1ebf105 100644 --- a/managing/security/security_intro.html.md.erb +++ b/managing/security/security_intro.html.md.erb @@ -5,14 +5,17 @@ title: Security Features Encryption, SSL secure communication, authentication, and authorization features help to secure the distributed system. -Apache Geode features: +The features include: -- **Single interface for all components**. one way to rule them all -- **System-wide role-based access control**. authorization +- **A single security interface for all components**. The single +authentication and authorization mechanism simplifies the security +implementation. +It views and interacts with all components in a consistent manner. +- **System-wide role-based access control**. +Roles regiment authorized operations requested by the various components. - **SSL communication**. Allows configuration of connections to be SSL-based, rather than plain socket connections. You can enable SSL separately for peer-to-peer, client, JMX, gateway senders and receivers, and HTTP connections. -- **Post processing of region data**. Filtering of return values for get type ops, to permit things like masking off fields. Allows authorization callbacks to modify or filter data from the server. -- **Sample implementations**. Authentication and authorization sample implementations. - +- **Post processing of region data**. Return values for operations that +return region values may be altered, permitting the filtering of returned data.
