Red Hat JBoss Data Grid 7.1

## For use with Red Hat JBoss Data Grid 7.1

Red Hat Customer Content Services

Abstract

This guide presents information about the administration and configuration of Red Hat JBoss Data Grid 7.1

# Part I. Introduction

## 1.1. Prerequisites

The only prerequisites to set up Red Hat JBoss Data Grid is a Java Virtual Machine and that the most recent supported version of the product is installed on your system.

## 1.2. Steps to Set up Red Hat JBoss Data Grid

The following steps outline the necessary (and optional, where stated) steps for a first time basic configuration of Red Hat JBoss Data Grid. It is recommended that the steps are followed in the order specified and not skipped unless they are identified as optional steps.

Set Up JBoss Data Grid

1. Set Up the Cache Manager

The foundation of a JBoss Data Grid configuration is a cache manager. Cache managers can retrieve cache instances and create cache instances quickly and easily using previously specified configuration templates. For details about setting up a cache manager, refer to the Cache Manager section in the JBoss Data Grid Getting Started Guide .

2. Set Up JVM Memory Management

An important step in configuring your JBoss Data Grid is to set up memory management for your Java Virtual Machine (JVM). JBoss Data Grid offers features such as eviction and expiration to help manage the JVM memory.

1. Set Up Eviction

Use eviction to specify the logic used to remove entries from the in-memory cache implementation based on how often they are used. JBoss Data Grid offers different eviction strategies for finer control over entry eviction in your data grid. Eviction strategies and instructions to configure them are available in Set Up Eviction.

2. Set Up Expiration

To set upper limits to an entry’s time in the cache, attach expiration information to each entry. Use expiration to set up the maximum period an entry is allowed to remain in the cache and how long the retrieved entry can remain idle before being removed from the cache. For details, see Set Up Expiration.

JBoss Data Grid uses logging via JBossLogging to help users monitor their caches.

1. Set Up Logging

It is not mandatory to set up logging for your JBoss Data Grid, but it is highly recommended. JBoss Data Grid uses JBossLogging, which allows the user to easily set up automated logging for operations in the data grid. Logs can subsequently be used to troubleshoot errors and identify the cause of an unexpected failure. For details, see Set Up Logging.

4. Set Up Cache Modes

Cache modes are used to specify whether a cache is local (simple, in-memory cache) or a clustered cache (replicates state changes over a small subset of nodes). Additionally, if a cache is clustered, either replication, distribution or invalidation mode must be applied to determine how the changes propagate across the subset of nodes. For details, see Set Up Cache Modes.

5. Set Up Locking for the Cache

When replication or distribution is in effect, copies of entries are accessible across multiple nodes. As a result, copies of the data can be accessed or modified concurrently by different threads. To maintain consistency for all copies across nodes, configure locking. For details, see Set Up Locking for the Cache and Set Up Isolation Levels.

6. Set Up and Configure a Cache Store

JBoss Data Grid offers the passivation feature (or cache writing strategies if passivation is turned off) to temporarily store entries removed from memory in a persistent, external cache store. To set up passivation or a cache writing strategy, you must first set up a cache store.

1. Set Up a Cache Store

The cache store serves as a connection to the persistent store. Cache stores are primarily used to fetch entries from the persistent store and to push changes back to the persistent store. For details, see Set Up and Configure a Cache Store.

2. Set Up Passivation

Passivation stores entries evicted from memory in a cache store. This feature allows entries to remain available despite not being present in memory and prevents potentially expensive write operations to the persistent cache. For details, see Set Up Passivation.

3. Set Up a Cache Writing Strategy

If passivation is disabled, every attempt to write to the cache results in writing to the cache store. This is the default Write-Through cache writing strategy. Set the cache writing strategy to determine whether these cache store writes occur synchronously or asynchronously. For details, see Set Up Cache Writing.

7. Monitor Caches and Cache Managers

JBoss Data Grid includes three primary tools to monitor the cache and cache managers once the data grid is up and running.

1. Set Up JMX

JMX is the standard statistics and management tool used for JBoss Data Grid. Depending on the use case, JMX can be configured at a cache level or a cache manager level or both. For details, see Set Up Java Management Extensions (JMX).

Red Hat JBoss Data Grid 7.1.0 introduces an Administration Console, allowing for web-based monitoring and management of caches and cache managers. For usage details refer to Red Hat JBoss Data Grid Administration Console Getting Started.

3. Set Up Red Hat JBoss Operations Network (JON)

Red Hat JBoss Operations Network (JON) is the second monitoring solution available for JBoss Data Grid. JBoss Operations Network (JON) offers a graphical interface to monitor runtime parameters and statistics for caches and cache managers. For details, see Set Up Jboss Operations Network(JON).

Note

The JON plugin has been deprecated in JBoss Data Grid 7.1 and is expected to be removed in a subsequent version.

8. Introduce Topology Information

Optionally, introduce topology information to your data grid to specify where specific types of information or objects in your data grid are located. Server hinting is one of the ways to introduce topology information in JBoss Data Grid.

1. Set Up Server Hinting

When set up, server hinting provides high availability by ensuring that the original and backup copies of data are not stored on the same physical server, rack or data center. This is optional in cases such as a replicated cache, where all data is backed up on all servers, racks and data centers. For details, see High Availability Using Server Hinting.

The subsequent chapters detail each of these steps towards setting up a standard JBoss Data Grid configuration.

# Part II. Set Up JVM Memory Management

## Chapter 2. Set Up Eviction

Eviction is the process of removing entries from memory to prevent running out of memory. Entries that are evicted from memory remain in configured cache stores and the rest of the cluster to prevent permanent data loss. If no cache store is configured, and eviction is enabled, data loss is possible.

Red Hat JBoss Data Grid executes eviction tasks by utilizing user threads which are already interacting with the data container. JBoss Data Grid uses a separate thread to prune expired cache entries from the cache.

Eviction occurs individually on a per node basis, rather than occurring as a cluster-wide operation. Each node uses an eviction thread to analyze the contents of its in-memory container to determine which entries require eviction. The free memory in the Java Virtual Machine (JVM) is not a consideration during the eviction analysis, even as a threshold to initialize entry eviction.

In JBoss Data Grid, eviction provides a mechanism to efficiently remove entries from the in-memory representation of a cache, and removed entries will be pushed to a cache store, if configured. This ensures that the memory can always accommodate new entries as they are fetched and that evicted entries are preserved in the cluster instead of lost.

Additionally, eviction strategies can be used as required for your configuration to set up which entries are evicted and when eviction occurs.

## 2.2. Eviction Strategies

### 2.2.1. Eviction Strategies

Each eviction strategy has specific benefits and use cases, as outlined below:

Table 2.1. Eviction Strategies

Strategy NameOperationsDetails

EvictionStrategy.NONE

No eviction occurs.

This is the default eviction strategy in Red Hat JBoss Data Grid.

EvictionStrategy.LRU

Least Recently Used eviction strategy. This strategy evicts entries that have not been used for the longest period. This ensures that entries that are reused periodically remain in memory.

EvictionStrategy.UNORDERED

Unordered eviction strategy. This strategy evicts entries without any ordered algorithm and may therefore evict entries that are required later. However, this strategy saves resources because no algorithm related calculations are required before eviction.

This strategy is recommended for testing purposes and not for a real work implementation.

EvictionStrategy.LIRS

Low Inter-Reference Recency Set eviction strategy.

LIRS is an eviction algorithm that suits a large variety of production use cases.

### 2.2.2. LRU Eviction Algorithm Limitations

In the Least Recently Used (LRU) eviction algorithm, the least recently used entry is evicted first. The entry that has not been accessed the longest gets evicted first from the cache. However, LRU eviction algorithm sometimes does not perform optimally in cases of weak access locality. The weak access locality is a technical term used for entries which are put in the cache and not accessed for a long time and entries to be accessed soonest are replaced. In such cases, problems such as the following can appear:

• Single use access entries are not replaced in time.
• Entries that are accessed first are unnecessarily replaced.

## 2.3. Using Eviction

### 2.3.1. Using Eviction

In Red Hat JBoss Data Grid, eviction is disabled by default. If an empty eviction / element is used to enable eviction without any strategy or maximum entries settings, the following default values are used:

• Strategy: If no eviction strategy is specified, EvictionStrategy.NONE is assumed as a default.
• size: If no value is specified, the size value is set to -1, which allows unlimited entries.

### 2.3.2. Initialize Eviction

To initialize eviction, set the eviction element’s size attributes value to a number greater than zero. Adjust the value set for size to discover the optimal value for your configuration. It is important to remember that if too large a value is set for size, Red Hat JBoss Data Grid runs out of memory.

The following procedure outlines the steps to initialize eviction in JBoss Data Grid:

Initialize Eviction

<eviction />
2. Set the Eviction Strategy

Set the strategy value to set the eviction strategy employed. Possible values are LRU, UNORDERED and LIRS (or NONE if no eviction is required). The following is an example of this step:

<eviction strategy="LRU" />
3. Set the Maximum Size to use for Eviction

Set the maximum number of entries allowed in memory by defining the size element. The default value is -1 for unlimited entries. The following demonstrates this step:

<eviction strategy="LRU" size="200" />

### 2.3.3. Eviction Configuration Examples

Eviction may be configured in Red Hat JBoss Data Grid programmatically or via the XML file. Eviction configuration is done on a per-cache basis.

A sample XML configuration for is as follows:

<eviction strategy="LRU" size="2000"/>

### 2.3.4. Utilizing Memory Based Eviction

Red Hat JBoss Data Grid 7 introduced memory based eviction, allowing eviction of entries based on memory usage of the entries instead of the number of entries. This can be particularly useful if the entries vary in size.

Key/Value Limitations

Only keys and values that are stored as primitives, primitive wrappers (such as java.lang.Integer), java.lang.String instances, or an Array of these values may be used with memory based eviction.

Due to this limitation if custom classes are used then either store-as-binary must be enabled on the cache, or the data from the custom class may be serialized, storing it in a byte array.

Compatibility mode prevents serialization into byte arrays, and as such these two features are mutually exclusive.

Eviction Strategy Limitations

Memory based eviction is only supported with the LRU eviction strategy.

Enabling Memory Based Eviction

This eviction method may be used by defining MEMORY as the eviction type, as seen in the following example:

<local-cache name="local">
<eviction size="10000000000" strategy="LRU" type="MEMORY"/>
</local-cache>

### 2.3.5. Eviction and Passivation

To ensure that a single copy of an entry remains, either in memory or in a cache store, use passivation in conjunction with eviction.

The primary reason to use passivation instead of a normal cache store is that updating entries require less resources when passivation is in use. This is because passivation does not require an update to the cache store.

## Chapter 3. Set Up Expiration

Red Hat JBoss Data Grid uses expiration to attach one or both of the following values to an entry:

• A lifespan value.
• A maximum idle time value.

Expiration can be specified on a per-entry or per-cache basis and the per-entry configuration overrides per-cache configurations. If expiration is configured at the cache level, then the expiration defaults apply to all entries which do not explicitly specify a lifespan or max-idle value.

If expiration is not configured at the cache level, cache entries are created immortal (i.e. they will never expire) by default. Any entries that have lifespan or max-idle defined are mortal, as they will eventually be removed from the cache once one of these conditions are met.

Expired entries, unlike evicted entries, are removed globally, which removes them from memory, cache stores and the cluster.

Expiration automates the removal of entries that have not been used for a specified period of time from the memory. Expiration and eviction are different because:

• expiration removes entries based on the period they have been in memory. Expiration only removes entries when the life span period concludes or when an entry has been idle longer than the specified idle time.
• eviction removes entries based on how recently (and often) they are used. Eviction only removes entries when too many entries are present in the memory. If a cache store has been configured, evicted entries are persisted in the cache store.
Important

It is not recommended to use max-idle in clustered mode. This is because max-idle is not updated on all nodes at the same time, and thus JBoss Data Grid can’t reliably expire entries across the cluster. For more information on the limitations of using max-idle in clustered mode see this knowledgebase solution.

## 3.2. Expiration Operations

Expiration in Red Hat JBoss Data Grid allows you to set a life span or maximum idle time value for each key/value pair stored in the cache.

The life span or maximum idle time can be set to apply cache-wide or defined for each key/value pair using the cache API. The life span (lifespan) or maximum idle time (max-idle) defined for an individual key/value pair overrides the cache-wide default for the entry in question.

## 3.3. Eviction and Expiration Comparison

Expiration is a top-level construct in Red Hat JBoss Data Grid, and is represented in the global configuration, as well as the cache API.

Eviction is limited to the cache instance it is used in, whilst expiration is cluster-wide. Expiration life spans (lifespan) and idle time (max-idle) values are replicated alongside each cache entry.

## 3.4. Cache Entry Expiration Behavior

Red Hat JBoss Data Grid does not guarantee that an entry is removed immediately upon timeout. Instead, a number of mechanisms are used in collaboration to ensure efficient removal. An expired entry is removed from the cache when either:

• An entry is passivated/overflowed to disk and is discovered to have expired.
• The expiration maintenance thread discovers that an entry it has found is expired.

If a user requests an entry that is expired but not yet removed, a null value is sent to the user. This mechanism ensures that the user never receives an expired entry. The entry is eventually removed by the expiration thread.

## 3.5. Configure Expiration

In Red Hat JBoss Data Grid, expiration is configured in a manner similar to eviction.

Configure Expiration

<expiration />
2. Set the Expiration Lifespan

Set the lifespan value to set the period of time (in milliseconds) an entry can remain in memory. The following is an example of this step:

<expiration lifespan="1000" />
3. Set the Maximum Idle Time

Set the time that entries are allowed to remain idle (unused) after which they are removed (in milliseconds). The default value is -1 for unlimited time.

<expiration lifespan="1000" max-idle="1000" />

## 3.6. Troubleshooting Expiration

If expiration does not appear to be working, it may be due to an entry being marked for expiration but not being removed.

Multiple-cache operations such as put() are passed a life span value as a parameter. This value defines the interval after which the entry must expire. In cases where eviction is not configured and the life span interval expires, it can appear as if Red Hat JBoss Data Grid has not removed the entry. For example, when viewing JMX statistics, such as the number of entries , you may see an out of date count, or the persistent store associated with JBoss Data Grid may still contain this entry. Behind the scenes, JBoss Data Grid has marked it as an expired entry, but has not removed it. Removal of such entries happens as follows:

• An entry is passivated/overflowed to disk and is discovered to have expired.
• The expiration maintenance thread discovers that an entry it has found is expired.

Any attempt to use get() or containsKey() for the expired entry causes JBoss Data Grid to return a null value. The expired entry is later removed by the expiration thread.

# Part III. Monitor Your Cache

## Chapter 4. Set Up Logging

Red Hat JBoss Data Grid provides highly configurable logging facilities for both its own internal use and for use by deployed applications. The logging subsystem is based on JBossLogManager and it supports several third party application logging frameworks in addition to JBossLogging.

The logging subsystem is configured using a system of log categories and log handlers. Log categories define what messages to capture, and log handlers define how to deal with those messages (write to disk, send to console, etc).

After a JBoss Data Grid cache is configured with operations such as eviction and expiration, logging tracks relevant activity (including errors or failures).

When set up correctly, logging provides a detailed account of what occurred in the environment and when. Logging also helps track activity that occurred just before a crash or problem in the environment. This information is useful when troubleshooting or when attempting to identify the source of a crash or error.

## 4.2. Supported Application Logging Frameworks

### 4.2.1. Supported Application Logging Frameworks

Red Hat JBoss LogManager supports the following logging frameworks:

JBoss Logging is the application logging framework that is included in JBoss Enterprise Application Platform 7. As a result of this inclusion, Red Hat JBoss Data Grid 7 also uses JBoss Logging.

JBoss Logging provides an easy way to add logging to an application. Add code to the application that uses the framework to send log messages in a defined format. When the application is deployed to an application server, these messages can be captured by the server and displayed and/or written to file according to the server’s configuration.

### 4.2.3. JBoss Logging Features

JBossLogging includes the following features:

• Provides an innovative, easy to use typed logger.
• Full support for internationalization and localization. Translators work with message bundles in properties files while developers can work with interfaces and annotations.
• Build-time tooling to generate typed loggers for production, and runtime generation of typed loggers for development.

## 4.3. Boot Logging

### 4.3.1. Boot Logging

The boot log is the record of events that occur while the server is starting up (or booting). Red Hat JBoss Data Grid also includes a server log, which includes log entries generated after the server concludes the boot process.

### 4.3.2. Configure Boot Logging

Edit the logging.properties file to configure the boot log. This file is a standard Java properties file and can be edited in a text editor. Each line in the file has the format of property=value.

In Red Hat JBoss Data Grid, the logging.properties file is available in the $JDG_HOME/standalone/configuration folder. ### 4.3.3. Default Log File Locations The following table provides a list of log files in Red Hat JBoss Data Grid and their locations: Table 4.1. Default Log File Locations Log FileLocationDescription boot.log$JDG_HOME/standalone/log/

The Server Boot Log. Contains log messages related to the start up of the server.

By default this file is prepended to the server.log . This file may be created independently of the server.log by defining the org.jboss.boot.log property in logging.properties .

server.log

$JDG_HOME/standalone/log/ The Server Log. Contains all log messages once the server has launched. ## 4.4. Logging Attributes ### 4.4.1. About Log Levels Log levels are an ordered set of enumerated values that indicate the nature and severity of a log message. The level of a given log message is specified by the developer using the appropriate methods of their chosen logging framework to send the message. Red Hat JBoss Data Grid supports all the log levels used by the supported application logging frameworks. The six most commonly used log levels are (ordered by lowest to highest severity): 1. TRACE 2. DEBUG 3. INFO 4. WARN 5. ERROR 6. FATAL Log levels are used by log categories and handlers to limit the messages they are responsible for. Each log level has an assigned numeric value which indicates its order relative to other log levels. Log categories and handlers are assigned a log level and they only process log messages of that numeric value or higher. For example a log handler with the level of WARN will only record messages of the levels WARN, ERROR and FATAL. ### 4.4.2. Supported Log Levels The following table lists log levels that are supported in Red Hat JBoss Data Grid. Each entry includes the log level, its value and description. The log level values indicate each log level’s relative value to other log levels. Additionally, log levels in different frameworks may be named differently, but have a log value consistent to the provided list. Table 4.2. Supported Log Levels Log LevelValueDescription FINEST 300 - FINER 400 - TRACE 400 Used for messages that provide detailed information about the running state of an application. TRACE level log messages are captured when the server runs with the TRACE level enabled. DEBUG 500 Used for messages that indicate the progress of individual requests or activities of an application. DEBUG level log messages are captured when the server runs with the DEBUG level enabled. FINE 500 - CONFIG 700 - INFO 800 Used for messages that indicate the overall progress of the application. Used for application start up, shut down and other major lifecycle events. WARN 900 Used to indicate a situation that is not in error but is not considered ideal. Indicates circumstances that can lead to errors in the future. WARNING 900 - ERROR 1000 Used to indicate an error that has occurred that could prevent the current activity or request from completing but will not prevent the application from running. SEVERE 1000 - FATAL 1100 Used to indicate events that could cause critical service failure and application shutdown and possibly cause JBoss Data Grid to shut down. ### 4.4.3. About Log Categories Log categories define a set of log messages to capture and one or more log handlers which will process the messages. The log messages to capture are defined by their Java package of origin and log level. Messages from classes in that package and of that log level or higher (with greater or equal numeric value) are captured by the log category and sent to the specified log handlers. As an example, the WARNING log level results in log values of 900, 1000 and 1100 are captured. Log categories can optionally use the log handlers of the root logger instead of their own handlers. ### 4.4.4. About the Root Logger The root logger captures all log messages sent to the server (of a specified level) that are not captured by a log category. These messages are then sent to one or more log handlers. By default the root logger is configured to use a console and a periodic log handler. The periodic log handler is configured to write to the file server.log . This file is sometimes referred to as the server log. ### 4.4.5. About Log Handlers Log handlers define how captured log messages are recorded by Red Hat JBoss Data Grid. The six types of log handlers configurable in JBoss Data Grid are: • Console • File • Periodic • Size • Async • Custom Log handlers direct specified log objects to a variety of outputs (including the console or specified log files). Some log handlers used in JBoss Data Grid are wrapper log handlers, used to direct other log handlers' behavior. Log handlers are used to direct log outputs to specific files for easier sorting or to write logs for specific intervals of time. They are primarily useful to specify the kind of logs required and where they are stored or displayed or the logging behavior in JBoss Data Grid. ### 4.4.6. Log Handler Types The following table lists the different types of log handlers available in Red Hat JBoss Data Grid: Table 4.3. Log Handler Types Log Handler TypeDescriptionUse Case Console Console log handlers write log messages to either the host operating system’s standard out (stdout) or standard error (stderr) stream. These messages are displayed when JBoss Data Grid is run from a command line prompt. The Console log handler is preferred when JBoss Data Grid is administered using the command line. In such a case, the messages from a Console log handler are not saved unless the operating system is configured to capture the standard out or standard error stream. File File log handlers are the simplest log handlers. Their primary use is to write log messages to a specified file. File log handlers are most useful if the requirement is to store all log entries according to the time in one place. Periodic Periodic file handlers write log messages to a named file until a specified period of time has elapsed. Once the time period has elapsed, the specified time stamp is appended to the file name. The handler then continues to write into the newly created log file with the original name. The Periodic file handler can be used to accumulate log messages on a weekly, daily, hourly or other basis depending on the requirements of the environment. Size Size log handlers write log messages to a named file until the file reaches a specified size. When the file reaches a specified size, it is renamed with a numeric prefix and the handler continues to write into a newly created log file with the original name. Each size log handler must specify the maximum number of files to be kept in this fashion. The Size handler is best suited to an environment where the log file size must be consistent. Async Async log handlers are wrapper log handlers that provide asynchronous behavior for one or more other log handlers. These are useful for log handlers that have high latency or other performance problems such as writing a log file to a network file system. The Async log handlers are best suited to an environment where high latency is a problem or when writing to a network file system. Custom Custom log handlers enable to you to configure new types of log handlers that have been implemented. A custom handler must be implemented as a Java class that extends java.util.logging.Handler and be contained in a module. Custom log handlers create customized log handler types and are recommended for advanced users. ### 4.4.7. Selecting Log Handlers The following are the most common uses for each of the log handler types available for Red Hat JBoss Data Grid: • The Console log handler is preferred when JBoss Data Grid is administered using the command line. In such a case, errors and log messages appear on the console window and are not saved unless separately configured to do so. • The File log handler is used to direct log entries into a specified file. This simplicity is useful if the requirement is to store all log entries according to the time in one place. • The Periodic log handler is similar to the File handler but creates files according to the specified period. As an example, this handler can be used to accumulate log messages on a weekly, daily, hourly or other basis depending on the requirements of the environment. • The Size log handler also writes log messages to a specified file, but only while the log file size is within a specified limit. Once the file size reaches the specified limit, log files are written to a new log file. This handler is best suited to an environment where the log file size must be consistent. • The Async log handler is a wrapper that forces other log handlers to operate asynchronously. This is best suited to an environment where high latency is a problem or when writing to a network file system. • The Custom log handler creates new, customized types of log handlers. This is an advanced log handler. ### 4.4.8. About Log Formatters A log formatter is the configuration property of a log handler. The log formatter defines the appearance of log messages that originate from the relevant log handler. The log formatter is a string that uses the same syntax as the java.util.Formatter class. See http://docs.oracle.com/javase/6/docs/api/java/util/Formatter.html for more information. ## 4.5. Logging Sample Configurations ### 4.5.1. Logging Sample Configuration Location All of the sample configurations presented in this section should be placed inside the server’s configuration file, typically either standalone.xml or clustered.xml for standalone instances, or domain.xml for managed domain instances. ### 4.5.2. Sample XML Configuration for the Root Logger The following procedure demonstrates a sample configuration for the root logger. Procedure: Configure the Root Logger 1. The level property sets the maximum level of log message that the root logger records. <subsystem xmlns="urn:jboss:domain:logging:3.0"> <root-logger> <level name="INFO"/> 2. handlers is a list of log handlers that are used by the root logger. <subsystem xmlns="urn:jboss:domain:logging:3.0"> <root-logger> <level name="INFO"/> <handlers> <handler name="CONSOLE"/> <handler name="FILE"/> </handlers> </root-logger> </subsystem> ### 4.5.3. Sample XML Configuration for a Log Category The following procedure demonstrates a sample configuration for a log category. Configure a Log Category <subsystem xmlns="urn:jboss:domain:logging:3.0"> <logger category="com.company.accounts.rec" use-parent-handlers="true"> <level name="WARN"/> <handlers> <handler name="accounts-rec"/> </handlers> </logger> </subsystem> 1. Use the category property to specify the log category from which log messages will be captured. The use-parent-handlers is set to "true" by default. When set to "true", this category will use the log handlers of the root logger in addition to any other assigned handlers. 2. Use the level property to set the maximum level of log message that the log category records. 3. The handlers element contains a list of log handlers. ### 4.5.4. Sample XML Configuration for a Console Log Handler The following procedure demonstrates a sample configuration for a console log handler. Configure the Console Log Handler <subsystem xmlns="urn:jboss:domain:logging:3.0"> <console-handler name="CONSOLE" autoflush="true"> <level name="INFO"/> <encoding value="UTF-8"/> <target name="System.out"/> <filter-spec value="not(match(&quot;JBAS.*&quot;))"/> <formatter> <pattern-formatter pattern="%K{level}%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%E%n"/> </formatter> </console-handler> </subsystem> 1. Add the Log Handler Identifier Information The name property sets the unique identifier for this log handler. When autoflush is set to "true" the log messages will be sent to the handler’s target immediately upon request. 2. Set the level Property The level property sets the maximum level of log messages recorded. 3. Set the encoding Output Use encoding to set the character encoding scheme to be used for the output. 4. Define the target Value The target property defines the system output stream where the output of the log handler goes. This can be System.err for the system error stream, or System.out for the standard out stream. 5. Define the filter-spec Property The filter-spec property is an expression value that defines a filter. The example provided defines a filter that does not match a pattern: not(match("JBAS.*")). 6. Specify the formatter Use formatter to list the log formatter used by the log handler. ### 4.5.5. Sample XML Configuration for a File Log Handler The following procedure demonstrates a sample configuration for a file log handler. Configure the File Log Handler <file-handler name="accounts-rec-trail" autoflush="true"> <level name="INFO"/> <encoding value="UTF-8"/> <file relative-to="jboss.server.log.dir" path="accounts-rec-trail.log"/> <formatter> <pattern-formatter pattern="%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%E%n"/> </formatter> <append value="true"/> </file-handler> 1. Add the File Log Handler Identifier Information The name property sets the unique identifier for this log handler. When autoflush is set to "true" the log messages will be sent to the handler’s target immediately upon request. 2. Set the level Property The level property sets the maximum level of log message that the root logger records. 3. Set the encoding Output Use encoding to set the character encoding scheme to be used for the output. 4. Set the file Object The file object represents the file where the output of this log handler is written to. It has two configuration properties: relative-to and path. The relative-to property is the directory where the log file is written to. JBoss Enterprise Application Platform 6 file path variables can be specified here. The jboss.server.log.dir variable points to the log/ directory of the server. The path property is the name of the file where the log messages will be written. It is a relative path name that is appended to the value of the relative-to property to determine the complete path. 5. Specify the formatter Use formatter to list the log formatter used by the log handler. 6. Set the append Property When the append property is set to "true", all messages written by this handler will be appended to an existing file. If set to "false" a new file will be created each time the application server launches. Changes to append require a server reboot to take effect. ### 4.5.6. Sample XML Configuration for a Periodic Log Handler The following procedure demonstrates a sample configuration for a periodic log handler. Configure the Periodic Log Handler <periodic-rotating-file-handler name="FILE" autoflush="true"> <level name="INFO"/> <encoding value="UTF-8"/> <formatter> <pattern-formatter pattern="%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%E%n"/> </formatter> <file relative-to="jboss.server.log.dir" path="server.log"/> <suffix value=".yyyy-MM-dd"/> <append value="true"/> </periodic-rotating-file-handler> 1. Add the Periodic Log Handler Identifier Information The name property sets the unique identifier for this log handler. When autoflush is set to "true" the log messages will be sent to the handler’s target immediately upon request. 2. Set the level Property The level property sets the maximum level of log message that the root logger records. 3. Set the encoding Output Use encoding to set the character encoding scheme to be used for the output. 4. Specify the formatter Use formatter to list the log formatter used by the log handler. 5. Set the file Object The file object represents the file where the output of this log handler is written to. It has two configuration properties: relative-to and path. The relative-to property is the directory where the log file is written to. JBoss Enterprise Application Platform 6 file path variables can be specified here. The jboss.server.log.dir variable points to the log/ directory of the server. The path property is the name of the file where the log messages will be written. It is a relative path name that is appended to the value of the relative-to property to determine the complete path. 6. Set the suffix Value The suffix is appended to the filename of the rotated logs and is used to determine the frequency of rotation. The format of the suffix is a dot (.) followed by a date string, which is parsable by the java.text.SimpleDateFormat class. The log is rotated on the basis of the smallest time unit defined by the suffix. For example, yyyy-MM-dd will result in daily log rotation. See http://docs.oracle.com/javase/6/docs/api/index.html?java/text/SimpleDateFormat.html 7. Set the append Property When the append property is set to "true", all messages written by this handler will be appended to an existing file. If set to "false" a new file will be created each time the application server launches. Changes to append require a server reboot to take effect. ### 4.5.7. Sample XML Configuration for a Size Log Handler The following procedure demonstrates a sample configuration for a size log handler. Configure the Size Log Handler <size-rotating-file-handler name="accounts_debug" autoflush="false"> <level name="DEBUG"/> <encoding value="UTF-8"/> <file relative-to="jboss.server.log.dir" path="accounts-debug.log"/> <rotate-size value="500k"/> <max-backup-index value="5"/> <formatter> <pattern-formatter pattern="%d{HH:mm:ss,SSS} %-5p [%c] (%t) %s%E%n"/> </formatter> <append value="true"/> </size-rotating-file-handler> 1. Add the Size Log Handler Identifier Information The name property sets the unique identifier for this log handler. When autoflush is set to "true" the log messages will be sent to the handler’s target immediately upon request. 2. Set the level Property The level property sets the maximum level of log message that the root logger records. 3. Set the encoding Object Use encoding to set the character encoding scheme to be used for the output. 4. Set the file Object The file object represents the file where the output of this log handler is written to. It has two configuration properties: relative-to and path. The relative-to property is the directory where the log file is written to. JBoss Enterprise Application Platform 6 file path variables can be specified here. The jboss.server.log.dir variable points to the log/ directory of the server. The path property is the name of the file where the log messages will be written. It is a relative path name that is appended to the value of the relative-to property to determine the complete path. 5. Specify the rotate-size Value The maximum size that the log file can reach before it is rotated. A single character appended to the number indicates the size units: b for bytes, k for kilobytes, m for megabytes, g for gigabytes. For example: 50m for 50 megabytes. 6. Set the max-backup-index Number The maximum number of rotated logs that are kept. When this number is reached, the oldest log is reused. 7. Specify the formatter Use formatter to list the log formatter used by the log handler. 8. Set the append Property When the append property is set to "true", all messages written by this handler will be appended to an existing file. If set to "false" a new file will be created each time the application server launches. Changes to append require a server reboot to take effect. ### 4.5.8. Sample XML Configuration for a Async Log Handler The following procedure demonstrates a sample configuration for an async log handler Configure the Async Log Handler <async-handler name="Async_NFS_handlers"> <level name="INFO"/> <queue-length value="512"/> <overflow-action value="block"/> <subhandlers> <handler name="FILE"/> <handler name="accounts-record"/> </subhandlers> </async-handler> 1. The name property sets the unique identifier for this log handler. 2. The level property sets the maximum level of log message that the root logger records. 3. The queue-length defines the maximum number of log messages that will be held by this handler while waiting for sub-handlers to respond. 4. The overflow-action defines how this handler responds when its queue length is exceeded. This can be set to BLOCK or DISCARD. BLOCK makes the logging application wait until there is available space in the queue. This is the same behavior as an non-async log handler. DISCARD allows the logging application to continue but the log message is deleted. 5. The subhandlers list is the list of log handlers to which this async handler passes its log messages. # Part IV. Set Up Cache Modes ## Chapter 5. Cache Modes ## 5.1. Cache Modes Red Hat JBoss Data Grid provides two modes: • Local mode is the only non-clustered cache mode offered in JBoss Data Grid. In local mode, JBoss Data Grid operates as a simple single-node in-memory data cache. Local mode is most effective when scalability and failover are not required and provides high performance in comparison with clustered modes. • Clustered mode replicates state changes to a subset of nodes. The subset size should be sufficient for fault tolerance purposes, but not large enough to hinder scalability. Before attempting to use clustered mode, it is important to first configure JGroups for a clustered configuration. For details about configuring JGroups, see Configure JGroups (Library Mode) ## 5.2. About Cache Containers Cache containers are used in Red Hat JBoss Data Grid’s Remote Client-Server mode as a starting point for a cache. The cache-container element acts as a parent of one or more (local or clustered) caches. To add clustered caches to the container, transport must be defined. The following procedure demonstrates a sample cache container configuration: How to Configure the Cache Container <subsystem xmlns="urn:infinispan:server:core:8.4" default-cache-container="local"> <cache-container name="local" default-cache="default" statistics="true" start="EAGER"> <local-cache name="default" statistics="false"> <!-- Additional configuration information here --> </local-cache> </cache-container> </subsystem> 1. Configure the Cache Container The cache-container element specifies information about the cache container using the following parameters: 1. The name parameter defines the name of the cache container. 2. The default-cache parameter defines the name of the default cache used with the cache container. 3. The statistics attribute is optional and is true by default. Statistics are useful in monitoring JBoss Data Grid via JMX or JBoss Operations Network, however they adversely affect performance. Disable this attribute by setting it to false if it is not required. 4. The start parameter indicates when the cache container starts, i.e. whether it will start lazily when requested or "eagerly" when the server starts up. Valid values for this parameter are EAGER and LAZY. 2. Configure Per-cache Statistics If statistics are enabled at the container level, per-cache statistics can be selectively disabled for caches that do not require monitoring by setting the statistics attribute to false. ## 5.3. Local Mode ### 5.3.1. Local Mode Using Red Hat JBoss Data Grid’s local mode instead of a map provides a number of benefits. Caches offer features that are unmatched by simple maps, such as: • Write-through and write-behind caching to persist data. • Entry eviction to prevent the Java Virtual Machine (JVM) running out of memory. • Support for entries that expire after a defined period. JBoss Data Grid is built around a high performance, read-based data container that uses techniques such as optimistic and pessimistic locking to manage lock acquisitions. JBoss Data Grid also uses compare-and-swap and other lock-free algorithms, resulting in high throughput multi-CPU or multi-core environments. Additionally, JBoss Data Grid’s Cache API extends the JDK's ConcurrentMap, resulting in a simple migration process from a map to JBoss Data Grid. ### 5.3.2. Configure Local Mode A local cache can be added to any cache container in both Library Mode and Remote Client-Server Mode. The following example demonstrates how to add the local-cache element. The local-cache Element <cache-container name="local" default-cache="default" statistics="true"> <local-cache name="default" statistics="true"> <!-- Additional configuration information here --> </local-cache> </cache-container> The local-cache element specifies information about the local cache used with the cache container using the following parameters: . The name parameter specifies the name of the local cache to use. . If statistics are enabled at the container level, per-cache statistics can be selectively disabled for caches that do not require monitoring by setting the statistics attribute to false. Local and clustered caches are able to coexist in the same cache container, however where the container is without a <transport/> it can only contain local caches. The container used in the example can only contain local caches as it does not have a <transport/>. The cache interface extends the ConcurrentMap and is compatible with multiple cache systems. ## 5.4. Clustered Modes ### 5.4.1. Clustered Modes Red Hat JBoss Data Grid offers the following clustered modes: • Replication Mode replicates any entry that is added across all cache instances in the cluster. • Invalidation Mode does not share any data, but signals remote caches to initiate the removal of invalid entries. • Distribution Mode stores each entry on a subset of nodes instead of on all nodes in the cluster. The clustered modes can be further configured to use synchronous or asynchronous transport for network communications. ### 5.4.2. Asynchronous and Synchronous Operations When a clustered mode (such as invalidation, replication or distribution) is used, data is propagated to other nodes in either a synchronous or asynchronous manner. If synchronous mode is used, the sender waits for responses from receivers before allowing the thread to continue, whereas asynchronous mode transmits data but does not wait for responses from other nodes in the cluster to continue operations. Asynchronous mode prioritizes speed over consistency, which is ideal for use cases such as HTTP session replications with sticky sessions enabled. Such a session (or data for other use cases) is always accessed on the same cluster node, unless this node fails. By default the cluster is configured for synchronous operations. ### 5.4.3. About Asynchronous Communications In Red Hat JBoss Data Grid, the local, distributed and replicated modes are represented by the local-cache, distributed-cache and replicated-cache elements respectively. Each of these elements contains a mode property, the value of which can be set to SYNC for synchronous or ASYNC for asynchronous communications. Asynchronous Communications Example Configuration <replicated-cache name="default" statistics="true"> <!-- Additional configuration information here --> </replicated-cache> Note This configuration is valid for both JBoss Data Grid’s usage modes (Library mode and Remote Client-Server mode). ### 5.4.4. Cache Mode Troubleshooting #### 5.4.4.1. Invalid Data in ReadExternal If invalid data is passed to readExternal, it can be because when using Cache.putAsync(), starting serialization can cause your object to be modified, causing the datastream passed to readExternal to be corrupted. This can be resolved if access to the object is synchronized. #### 5.4.4.2. Cluster Physical Address Retrieval How can the physical addresses of the cluster be retrieved? The physical address can be retrieved using an instance method call. For example: AdvancedCache.getRpcManager().getTransport().getPhysicalAddresses() . ## Chapter 6. Set Up Distribution Mode ## 6.1. About Distribution Mode When enabled, Red Hat JBoss Data Grid’s distribution mode stores each entry on a subset of the nodes in the grid instead of replicating each entry on every node. Typically, each entry is stored on more than one node for redundancy and fault tolerance. As a result of storing entries on selected nodes across the cluster, distribution mode provides improved scalability compared to other clustered modes. A cache using distribution mode can transparently locate keys across a cluster using the consistent hash algorithm. ## 6.2. Distribution Mode’s Consistent Hash Algorithm The hashing algorithm in Red Hat JBoss Data Grid is based on consistent hashing. The term consistent hashing is still used for this implementation, despite some divergence from a traditional consistent hash. Distribution mode uses a consistent hash algorithm to select a node from the cluster to store entries upon. The consistent hash algorithm is configured with the number of copies of each cache entry to be maintained within the cluster. Unlike generic consistent hashing, the implementation used in JBoss Data Grid splits the key space into fixed segments. The number of segments is configurable using numSegments and cannot be changed without restarting the cluster. The mapping of keys to segments is also fixed — a key maps to the same segment, regardless of how the topology of the cluster changes. The number of copies set for each data item requires balancing performance and fault tolerance. Creating too many copies of the entry can impair performance and too few copies can result in data loss in case of node failure. Each hash segment is mapped to a list of nodes called owners. The order is important because the first owner (also known as the primary owner) has a special role in many cache operations (for example, locking). The other owners are called backup owners. There is no rule about mapping segments to owners, although the hashing algorithms simultaneously balance the number of segments allocated to each node and minimize the number of segments that have to move after a node joins or leaves the cluster. ## 6.3. Locating Entries in Distribution Mode The consistent hash algorithm used in Red Hat JBoss Data Grid’s distribution mode can locate entries deterministically, without multicasting a request or maintaining expensive metadata. A PUT operation can result in as many remote calls as specified by the owners parameter, while a GET operation executed on any node in the cluster results in a single remote call. In the background, the GET operation results in the same number of remote calls as a PUT operation (specifically the value of the owners parameter), but these occur in parallel and the returned entry is passed to the caller as soon as one returns. ## 6.4. Return Values in Distribution Mode In Red Hat JBoss Data Grid’s distribution mode, a synchronous request is used to retrieve the previous return value if it cannot be found locally. A synchronous request is used for this task irrespective of whether distribution mode is using asynchronous or synchronous processes. ## 6.5. Configure Distribution Mode Distribution mode is a clustered mode in Red Hat JBoss Data Grid. Distribution mode can be added to any cache container, in both Library Mode and Remote Client-Server Mode, using the following procedure: The distributed-cache Element <cache-container name="clustered" default-cache="default" statistics="true"> <!-- Additional configuration information here --> <distributed-cache name="default" statistics="true"> <!-- Additional configuration information here --> </distributed-cache> </cache-container> The distributed-cache element configures settings for the distributed cache using the following parameters: 1. The name parameter provides a unique identifier for the cache. 2. If statistics are enabled at the container level, per-cache statistics can be selectively disabled for caches that do not require monitoring by setting the statistics attribute to false. Important JGroups must be appropriately configured for clustered mode before attempting to load this configuration. ## 6.6. Synchronous and Asynchronous Distribution To elicit meaningful return values from certain public API methods, it is essential to use synchronized communication when using distribution mode. Communication Mode example For example, with three nodes in a cluster, node A, B and C, and a key K that maps nodes A and B. Perform an operation on node C that requires a return value, for example Cache.remove(K). To execute successfully, the operation must first synchronously forward the call to both node A and B, and then wait for a result returned from either node A or B. If asynchronous communication was used, the usefulness of the returned values cannot be guaranteed, despite the operation behaving as expected. ## Chapter 7. Set Up Replication Mode ## 7.1. About Replication Mode Red Hat JBoss Data Grid’s replication mode is a simple clustered mode. Cache instances automatically discover neighboring instances on other Java Virtual Machines (JVM) on the same network and subsequently form a cluster with the discovered instances. Any entry added to a cache instance is replicated across all cache instances in the cluster and can be retrieved locally from any cluster cache instance. In JBoss Data Grid’s replication mode, return values are locally available before the replication occurs. ## 7.2. Optimized Replication Mode Usage Replication mode is used for state sharing across a cluster; however, if you have a replicated cache and a large number of nodes are in use then there will be many writes to the replicated cache to keep all of the nodes synchronized. The amount of work performed will depend on many factors and on the specific use case, and for this reason it is recommended to ensure that each workload is tested thoroughly to determine if replication mode will be beneficial with the number of planned nodes. For many situations replication mode is not recommended once there are ten servers; however, in some workloads, such as if load read is important, this mode may be beneficial. Red Hat JBoss Data Grid can be configured to use UDP multicast, which improves performance to a limited degree for larger clusters. ## 7.3. Configure Replication Mode Replication mode is a clustered cache mode in Red Hat JBoss Data Grid. Replication mode can be added to any cache container, in both Library Mode and Remote Client-Server Mode, using the following procedure. The replicated-cache Element <cache-container name="clustered" default-cache="default" statistics="true"> <!-- Additional configuration information here --> <replicated-cache name="default" statistics="true"> <!-- Additional configuration information here --> </replicated-cache> </cache-container> Important JGroups must be appropriately configured for clustered mode before attempting to load this configuration. The replicated-cache element configures settings for the distributed cache using the following parameters: 1. The name parameter provides a unique identifier for the cache. 2. If statistics are enabled at the container level, per-cache statistics can be selectively disabled for caches that do not require monitoring by setting the statistics attribute to false. For details about the cache-container and locking, see the appropriate chapter. ## 7.4. Synchronous and Asynchronous Replication ### 7.4.1. Synchronous and Asynchronous Replication Replication mode can be synchronous or asynchronous depending on the problem being addressed. • Synchronous replication blocks a thread or caller (for example on a put() operation) until the modifications are replicated across all nodes in the cluster. By waiting for acknowledgments, synchronous replication ensures that all replications are successfully applied before the operation is concluded. • Asynchronous replication operates significantly faster than synchronous replication because it does not need to wait for responses from nodes. Asynchronous replication performs the replication in the background and the call returns immediately. Errors that occur during asynchronous replication are written to a log. As a result, a transaction can be successfully completed despite the fact that replication of the transaction may not have succeeded on all the cache instances in the cluster. ### 7.4.2. Troubleshooting Asynchronous Replication Behavior In some instances, a cache configured for asynchronous replication or distribution may wait for responses, which is synchronous behavior. This occurs because caches behave synchronously when both state transfers and asynchronous modes are configured. This synchronous behavior is a prerequisite for state transfer to operate as expected. Use one of the following to remedy this problem: • Disable state transfer and use a ClusteredCacheLoader to lazily look up remote state as and when needed. • Enable state transfer and REPL_SYNC. Use the Asynchronous API (for example, the cache.putAsync(k, v)) to activate 'fire-and-forget' capabilities. • Enable state transfer and REPL_ASYNC. All RPCs end up becoming synchronous, but client threads will not be held up if a replication queue is enabled (which is recommended for asynchronous mode). ## 7.5. The Replication Queue ### 7.5.1. The Replication Queue In replication mode, Red Hat JBoss Data Grid uses a replication queue to replicate changes across nodes based on the following: • Previously set intervals. • The queue size exceeding the number of elements. • A combination of previously set intervals and the queue size exceeding the number of elements. The replication queue ensures that during replication, cache operations are transmitted in batches instead of individually. As a result, a lower number of replication messages are transmitted and fewer envelopes are used, resulting in improved JBoss Data Grid performance. A disadvantage of using the replication queue is that the queue is periodically flushed based on the time or the queue size. Such flushing operations delay the realization of replication, distribution, or invalidation operations across cluster nodes. When the replication queue is disabled, the data is directly transmitted and therefore the data arrives at the cluster nodes faster. A replication queue is used in conjunction with asynchronous mode. ### 7.5.2. Replication Queue Usage When using the replication queue, do one of the following: • Disable asynchronous marshalling. • Set the max-threads count value to 1 for the executor attribute of the transport element. The executor is only available in Library Mode, and is therefore defined in its configuration file as follows: <transport executor="infinispan-transport"/> To implement either of these solutions, the replication queue must be in use in asynchronous mode. Asynchronous mode can be set by defining mode="ASYNC", as seen in the following example: Replication Queue in Asynchronous Mode <replicated-cache name="asyncCache" mode="ASYNC" statistics="true" <!-- Additional configuration information here --> </replicated-cache> The replication queue allows requests to return to the client faster, therefore using the replication queue together with asynchronous marshalling does not present any significant advantages. ## 7.6. About Replication Guarantees In a clustered cache, the user can receive synchronous replication guarantees as well as the parallelism associated with asynchronous replication. Red Hat JBoss Data Grid provides an asynchronous API for this purpose. The asynchronous methods used in the API return Futures, which can be queried. The queries block the thread until a confirmation is received about the success of any network calls used. ## 7.7. Replication Traffic on Internal Networks Some cloud providers charge less for traffic over internal IP addresses than for traffic over public IP addresses, or do not charge at all for internal network traffic (for example, ). To take advantage of lower rates, you can configure Red Hat JBoss Data Grid to transfer replication traffic using the internal network. With such a configuration, it is difficult to know the internal IP address you are assigned. JBoss Data Grid uses JGroups interfaces to solve this problem. ## Chapter 8. Set Up Invalidation Mode ## 8.1. About Invalidation Mode Invalidation is a clustered mode that does not share any data, but instead removes potentially obsolete data from remote caches. Using this cache mode requires another, more permanent store for the data such as a database. Red Hat JBoss Data Grid, in such a situation, is used as an optimization for a system that performs many read operations and prevents database usage each time a state is needed. When invalidation mode is in use, data changes in a cache prompts other caches in the cluster to evict their outdated data from memory. ## 8.2. Configure Invalidation Mode Invalidation mode is a clustered mode in Red Hat JBoss Data Grid. Invalidation mode can be added to any cache container, in both Library Mode and Remote Client-Server Mode, using the following procedure: The invalidation-cache Element <cache-container name="local" default-cache="default" statistics="true"> <invalidation-cache name="default" statistics="true"> <!-- Additional configuration information here --> </invalidation-cache> </cache-container> The invalidation-cache element configures settings for the distributed cache using the following parameters: 1. The name parameter provides a unique identifier for the cache. 2. If statistics are enabled at the container level, per-cache statistics can be selectively disabled for caches that do not require monitoring by setting the statistics attribute to false. Important JGroups must be appropriately configured for clustered mode before attempting to load this configuration. For details about the cache-container see the appropriate chapter. ## 8.3. Synchronous/Asynchronous Invalidation In Red Hat JBoss Data Grid’s Library mode, invalidation operates either asynchronously or synchronously. • Synchronous invalidation blocks the thread until all caches in the cluster have received invalidation messages and evicted the obsolete data. • Asynchronous invalidation operates in a fire-and-forget mode that allows invalidation messages to be broadcast without blocking a thread to wait for responses. ## 8.4. The L1 Cache and Invalidation An invalidation message is generated each time a key is updated. This message is multicast to each node that contains data that corresponds to current L1 cache entries. The invalidation message ensures that each of these nodes marks the relevant entry as invalidated. ## Chapter 9. State Transfer ## 9.1. State Transfer State transfer is a basic data grid or clustered cache functionality. Without state transfer, data would be lost as nodes are added to or removed from the cluster. State transfer adjusts the cache’s internal state in response to a change in a cache membership. The change can be when a node joins or leaves, when two or more cluster partitions merge, or a combination of joins, leaves, and merges. State transfer occurs automatically in Red Hat JBoss Data Grid whenever a node joins or leaves the cluster. In Red Hat JBoss Data Grid’s replication mode, a new node joining the cache receives the entire cache state from the existing nodes. In distribution mode, the new node receives only a part of the state from the existing nodes, and the existing nodes remove some of their state in order to keep owners copies of each key in the cache (as determined through consistent hashing). In invalidation mode the initial state transfer is similar to replication mode, the only difference being that the nodes are not guaranteed to have the same state. When a node leaves, a replicated mode or invalidation mode cache does not perform any state transfer. A distributed cache needs to make additional copies of the keys that were stored on the leaving nodes, again to keep owners copies of each key. A State Transfer transfers both in-memory and persistent state by default, but both can be disabled in the configuration. When State Transfer is disabled a ClusterLoader must be configured, otherwise a node will become the owner or backup owner of a key without the data being loaded into its cache. In addition, if State Transfer is disabled in distributed mode then a key will occasionally have less than owners owners. ## 9.2. Non-Blocking State Transfer Non-Blocking State Transfer in Red Hat JBoss Data Grid minimizes the time in which a cluster or node is unable to respond due to a state transfer in progress. Non-blocking state transfer is a core architectural improvement with the following goals: • Minimize the interval(s) where the entire cluster cannot respond to requests because of a state transfer in progress. • Minimize the interval(s) where an existing member stops responding to requests because of a state transfer in progress. • Allow state transfer to occur with a drop in the performance of the cluster. However, the drop in the performance during the state transfer does not throw any exception, and allows processes to continue. • Allows a GET operation to successfully retrieve a key from another node without returning a null value during a progressive state transfer. For simplicity, the total order-based commit protocol uses a blocking version of the currently implemented state transfer mechanism. The main differences between the regular state transfer and the total order state transfer are: • The blocking protocol queues the transaction delivery during the state transfer. • State transfer control messages (such as CacheTopologyControlCommand) are sent according to the total order information. The total order-based commit protocol works with the assumption that all the transactions are delivered in the same order and they see the same data set. So, no transactions are validated during the state transfer because all the nodes must have the most recent key or values in memory. Using the state transfer and blocking protocol in this manner allows the state transfer and transaction delivery on all on the nodes to be synchronized. However, transactions that are already involved in a state transfer (sent before the state transfer began and delivered after it concludes) must be resent. When resent, these transactions are treated as new joiners and assigned a new total order value. ## 9.3. Suppress State Transfer via JMX State transfer can be suppressed using JMX in order to bring down and relaunch a cluster for maintenance. This operation permits a more efficient cluster shutdown and startup, and removes the risk of Out Of Memory errors when bringing down a grid. When a new node joins the cluster and rebalancing is suspended, the getCache() call will timeout after stateTransfer.timeout expires unless rebalancing is re-enabled or stateTransfer.awaitInitialTransferis set to false. Disabling state transfer and rebalancing can be used for partial cluster shutdown or restart, however there is the possibility that data may be lost in a partial cluster shutdown due to state transfer being disabled. ## 9.4. The rebalancingEnabled Attribute Suppressing rebalancing can only be triggered via the rebalancingEnabled JMX attribute, and requires no specific configuration. The rebalancingEnabled attribute can be modified for the entire cluster from the LocalTopologyManager JMX Mbean on any node. This attribute is true by default, and is configurable programmatically. Servers such as Hot Rod attempt to start all caches declared in the configuration during startup. If rebalancing is disabled, the cache will fail to start. Therefore, it is mandatory to use the following setting in a server environment: <state-transfer enabled="true" await-initial-transfer="false"/> # Part V. Enabling APIs ## Chapter 10. Enabling APIs Declaratively ## 10.1. Enabling APIs Declaratively The various APIs that JBoss Data Grid provides are fully documented in the JBoss Data Grid Developer Guide ; however, Administrators can enable these declaratively by adding elements to the configuration file. The following sections discuss methods on implementing the various APIs. ## 10.2. Batching API Batching allows atomicity and some characteristics of a transaction, but does not allow full-blown JTA or XA capabilities. Batching is typically lighter and cheaper than a full-blown transaction, and should be used whenever the only participant in the transaction is the JBoss Data Grid cluster. If the transaction involves multiple systems then JTA Transactions should be used. For example, consider a transaction which transfers money from one bank account to another. If both accounts are stored within the JBoss Data Grid cluster then batching could be used; however, if only one account is inside the cluster, with the second being in an external database, then distributed transactions are required. Note Transaction batching is only available in JBoss Data Grid’s Library Mode. Enabling the Batching API Batching may be enabled on a per-cache basis by defining a transaction mode of BATCH. The following example demonstrates this: <local-cache name="batchingCache"> <transaction mode="BATCH"/> </local-cache> By default invocation batching is disabled; in addition, a transaction manager is not required to use batching. ## 10.3. Grouping API The grouping API allows a group of entries to be co-located on the same node, instead of the default behavior of having each entry being stored on a node corresponding to a calculated hash code of the entry. By default JBoss Data Grid will take a hash code of each key when it is stored and map that key to a hash segment; this allows an algorithm to be used to determine the node that contains the key, allowing each node in the cluster to know which node contains the key without distributing ownership information. This behavior reduces overhead and improves redundancy as the ownership information does not need to be replicated should a node fail. By enabling the grouping API the hash of the key is ignored when deciding which node to store the entry on. Instead, a hash of the group is obtained and used in its place, while the hash of the key is used internally to prevent performance degradation. When the group API is in use every node can still determine the owners of the key, and due to this reason the group may not be manually specified. A group may either be intrinsic to the entry, generated by the key class, or extrinsic to the entry, generated by an external function. Enabling the Grouping API The grouping API may be enabled on a per-cache basis by adding the groups element as seen in the following example: <distributed-cache name="groupingCache"> <groups enabled="true"/> </distributed-cache> Defining an Extrinsic Group Assuming a custom Grouper exists it may be defined by passing in the classname as seen below: <distributed-cache name="groupingCache"> <groups enabled="true"> <grouper class="com.acme.KXGrouper" /> </groups> </distributed-cache> ## 10.4. Externalizable API ### 10.4.1. The Externalizable API An Externalizer is a class that can: • Marshall a given object type to a byte array. • Unmarshall the contents of a byte array into an instance of the object type. Externalizers are used by Red Hat JBoss Data Grid and allow users to specify how their object types are serialized. The marshalling infrastructure used in Red Hat JBoss Data Grid builds upon JBoss Marshalling and provides efficient payload delivery and allows the stream to be cached. The stream caching allows data to be accessed multiple times, whereas normally a stream can only be read once. The Externalizable interface uses and extends serialization. This interface is used to control serialization and deserialization in Red Hat JBoss Data Grid. ### 10.4.2. Register the Advanced Externalizer (Declaratively) After the advanced externalizer is set up, register it for use with Red Hat JBoss Data Grid. This registration is done declaratively (via XML) as follows: Register the Advanced Externalizer <infinispan> <cache-container> <serialization> <advanced-externalizer class="Book$BookExternalizer" />
</serialization>
</cache-container>
</infinispan>

1. Add the serialization element to the cache-container element.
2. Add the advanced-externalizer element, defining the custom Externalizer with the class attribute. Replace the Book$BookExternalizer values as required. ### 10.4.3. Custom Externalizer ID Values #### 10.4.3.1. Custom Externalizer ID Values Advanced externalizers can be assigned custom IDs if desired. Some ID ranges are reserved for other modules or frameworks and must be avoided: Table 10.1. Reserved Externalizer ID Ranges ID RangeReserved For 1000-1099 The Infinispan Tree Module 1100-1199 Red Hat JBoss Data Grid Server modules 1200-1299 Hibernate Infinispan Second Level Cache 1300-1399 JBoss Data Grid Lucene Directory 1400-1499 Hibernate OGM 1500-1599 Hibernate Search 1600-1699 Infinispan Query Module 1700-1799 Infinispan Remote Query Module 1800-1849 JBoss Data Grid Scripting Module 1850-1899 JBoss Data Grid Server Event Logger Module 1900-1999 JBoss Data Grid Remote Store #### 10.4.3.2. Customize the Externalizer ID (Declaratively) Customize the advanced externalizer ID declaratively (via XML) as follows: Customizing the Externalizer ID (Declaratively) <infinispan> <cache-container> <serialization> <advanced-externalizer id="123" class="Book$BookExternalizer"/>
</serialization>
</cache-container>
</infinispan>

1. Add the serialization element to the cache-container element.
2. Add the advanced-externalizer element to add information about the new advanced externalizer.
3. Define the externalizer ID using the id attribute. Ensure that the selected ID is not from the range of IDs reserved for other modules.
4. Define the externalizer class using the class attribute. Replace the Book$BookExternalizer values as required. ## Chapter 11. Set Up and Configure the Infinispan Query API ## 11.1. Set Up Infinispan Query ### 11.1.1. Infinispan Query Dependencies in Library Mode To use the JBoss Data Grid Infinispan Query via Maven, add the following dependencies: <dependency> <groupId>org.infinispan</groupId> <artifactId>infinispan-embedded-query</artifactId> <version>${infinispan.version}</version>
</dependency>

Non-Maven users must install all of the infinispan-embedded-query.jar and infinispan-embedded.jar files from the JBoss Data Grid distribution.

Warning

The Infinispan query API directly exposes the Hibernate Search and the Lucene APIs and cannot be embedded within the infinispan-embedded-query.jar file. Do not include other versions of Hibernate Search and Lucene in the same deployment as infinispan-embedded-query . This action will cause classpath conflicts and result in unexpected behavior.

## 11.2. Indexing Modes

### 11.2.1. Managing Indexes

In Red Hat JBoss Data Grid’s Query Module there are two options for storing indexes:

1. Each node can maintain an individual copy of the global index.
2. The index can be shared across all nodes.

When the indexes are stored locally, by setting indexLocalOnly to true, each write to cache must be forwarded to all other nodes so that they can update their indexes. If the index is shared, by setting indexLocalOnly to false, only the node where the write originates is required to update the shared index.

Lucene provides an abstraction of the directory structure called directory provider, which is used to store the index. The index can be stored, for example, as in-memory, on filesystem, or in distributed cache.

### 11.2.2. Managing the Index in Local Mode

In local mode, any Lucene Directory implementation may be used. The indexLocalOnly option is meaningless in local mode.

### 11.2.3. Managing the Index in Replicated Mode

In replication mode, each node can store its own local copy of the index. To store indexes locally on each node, set indexLocalOnly to false, so that each node will apply the required updates it receives from other nodes in addition to the updates started locally.

Any Directory implementation can be used. When a new node is started it must receive an up to date copy of the index. Usually this can be done via resync, however being an external operation, this may result in a slightly out of sync index, particularly where updates are frequent.

Alternatively, if a shared storage for indexes is used (see Infinispan Directory Provider), indexLocalOnly must be set to true so that each node will only apply the changes originated locally. While there is no risk of having an out of sync index, this causes contention on the node used for updating the index.

The following diagram demonstrates a replicated deployment where each node has a local index.

### 11.2.4. Managing the Index in Distribution Mode

In both Distribution modes, the shared index must be used, with the indexLocalOnly set to true.

The following diagram shows a deployment with a shared index.

### 11.2.5. Managing the Index in Invalidation Mode

Indexing and searching of elements in Invalidation mode is not supported.

## 11.3. Directory Providers

### 11.3.1. Directory Providers

The following directory providers are supported in Infinispan Query:

• RAM Directory Provider
• Filesystem Directory Provider
• Infinispan Directory Provider

### 11.3.2. RAM Directory Provider

Storing the global index locally in Red Hat JBoss Data Grid’s Query Module allows each node to

• maintain its own index.
• use Lucene's in-memory or filesystem-based index directory.

The following example demonstrates an in-memory, RAM-based index store:

<local-cache name="indexesInMemory">
<indexing index="LOCAL">
<property name="default.directory_provider">ram</property>
</indexing>
</local-cache>

### 11.3.3. Filesystem Directory Provider

To configure the storage of indexes, set the appropriate properties when enabling indexing in the JBoss Data Grid configuration.

This example shows a disk-based index store:

Disk-based Index Store

<local-cache name="indexesInInfinispan">
<indexing index="ALL">
<property name="default.directory_provider">filesystem</property>
<property name="default.indexBase">/tmp/ispn_index</property>
</indexing>
</local-cache>

### 11.3.4. Infinispan Directory Provider

In addition to the Lucene directory implementations, Red Hat JBoss Data Grid also ships with an infinispan-directory module.

Note

Red Hat JBoss Data Grid only supports infinispan-directory in the context of the Querying feature, not as a standalone feature.

The infinispan-directory allows Lucene to store indexes within the distributed data grid. This allows the indexes to be distributed, stored in-memory, and optionally written to disk using the cache store for durability.

Sharing the same index instance using the Infinispan Directory Provider introduces a write contention point, as only one instance can write on the same index at the same time.

Important

By default the exclusive_index_use is set to true, as this provides major performance increases; however, if external applications access the same index in use by Infinispan this property must be set to false. The default value is recommended for the majority of applications and use cases due to the performance increases, so only change this if absolutely necessary.

InfinispanIndexManager provides a default back end that sends all updates to master node which later applies the updates to the index. In case of master node failure, the update can be lost, therefore keeping the cache and index non-synchronized. Non-default back ends are not supported.

Enable Shared Indexes

<local-cache name="indexesInInfinispan">
<indexing index="ALL">
<property name="default.directory_provider">infinispan</property>
<property name="default.indexmanager">org.infinispan.query.indexmanager.InfinispanIndexManager</property>
</indexing>
</local-cache>

When using an indexed, clustered cache ensure that the caches containing the index data are also clustered, as described in Tuning Infinispan Directory.

## 11.4. Configure Indexing

### 11.4.1. Configure the Index in Remote Client-Server Mode

In Remote Client-Server Mode, index configuration depends on the provider and its configuration. The indexing mode depends on the provider and whether or not it is local or distributed. The following indexing modes are supported:

• NONE
• LOCAL = indexLocalOnly="true"
• ALL = indexLocalOnly="false"

Index configuration in Remote Client-Server Mode is as follows:

Configuration in Remote Client-Server Mode

<indexing index="LOCAL">
<property name="default.directory_provider">ram</property>
<!-- Additional configuration information here -->
</indexing>

Configure Lucene Caches

By default the Lucene caches will be created as local caches; however, with this configuration the Lucene search results are not shared between nodes in the cluster. To prevent this define the caches required by Lucene in a clustered mode, as seen in the following configuration snippet:

Configuring the Lucene cache in Remote Client-Server Mode

<cache-container name="clustered" default-cache="repltestcache">
[...]
<distributed-cache name="LuceneIndexesData" />
<replicated-cache name="LuceneIndexesLocking" />
[...]
</cache-container>

These caches are discussed in further detail at in the Red Hat JBoss Data Grid Developer Guide .

### 11.4.2. Rebuilding the Index

The Lucene index can be rebuilt, if required, by reconstructing it from the data store in the cache.

The index must be rebuilt if:

• The definition of what is indexed in the types has changed.
• A parameter affecting how the index is defined, such as the Analyser changes.
• The index is destroyed or corrupted, possibly due to a system administration error.

Rebuilding the index may be performed by executing the Start operation on the MassIndexer MBean.

This operation reprocesses all data in the grid, and therefore may take some time.

## 11.5. Tuning the Index

### 11.5.1. Near-Realtime Index Manager

By default, each update is immediately flushed into the index. In order to achieve better throughput, the updates can be batched. However, this can result in a lag between the update and query — the query can see outdated data. If this is acceptable, you can use the Near-Realtime Index Manager by setting the following.

<property name="default.indexmanager">near-real-time</property>

### 11.5.2. Tuning Infinispan Directory

Lucene directory uses three caches to store the index:

• Data cache
• Locking cache

Configuration for these caches can be set explicitly, specifying the cache names as in the example below, and configuring those caches as usual. All of these caches must be clustered unless Infinispan Directory is used in local mode.

Tuning the Infinispan Directory

<distributed-cache name="indexedCache" >
<indexing index="LOCAL">
<property name="default.indexmanager">org.infinispan.query.indexmanager.InfinispanIndexManager</property>
<property name="default.data_cachename">lucene_data_dist</property>
<property name="default.locking_cachename">lucene_locking_repl</property>
</indexing>
</distributed-cache>

<distributed-cache name="lucene_data_dist" />

<replicated-cache name="lucene_locking_repl" />

### 11.5.3. Per-Index Configuration

The indexing properties in examples above apply for all indices - this is because we use the default. prefix for each property. To specify different configuration for each index, replace default with the index name. By default, this is the full class name of the indexed object, however you can override the index name in the @Indexed annotation.

## 12.1. The Health Check API

The Health Check API allows users to monitor the health of the cluster, and the caches contained within. This information is particularly important when working in a cloud environment, as it provides a method of querying to report the status of the cluster or cache.

This API exposes the following information:

• The name of the cluster.
• The number of machines in the cluster.
• The overall status of the cluster or cache, represented in one of three values:

• Healthy - The entity is healthy.
• Unhealthy - The entity is unhealthy. This value indicates that one or more caches are in a degraded state.
• Rebalancing - The entity is operational, but a rebalance is in progress. Cluster nodes should not be adjusted when this value is reported.
• The status of each cache.
• A tail of the server log.

For information on using the Health Check API programmatically, refer to the JBoss Data Grid Developer Guide.

## 12.2. Accessing the Health API using JMX

The Health Check API may be accessed through JMX, as seen in the following steps:

1. Connect to the JBoss Data Grid node using JMX, such as by Connecting to JDG via JConsole.
2. Expand jboss.datagrid-infinispan.
3. Expand CacheManager.
4. Select the desired cache manager. By default the cache manager will be named local, if the server was started in local mode, or clustered, if the server was started in a clustered mode.
5. Expand the CacheContainerHealth object.
6. The Health Check API attributes are now available to be viewed.

An example of this using JConsole is seen below:

## 12.3. Accessing the Health Check API using the CLI

The Health Check API may be accessed using the included CLI. Once connected to the server use the following command, substituting the desired cache container for CONTAINERNAME:

/subsystem=datagrid-infinispan/cache-container=CONTAINERNAME/health=HEALTH:read-resource(include-runtime=true)

The following demonstrates sample output from the above command, using the clustered cache-container:

[standalone@localhost:9990 health=HEALTH] /subsystem=datagrid-infinispan/cache-container=clustered/health=HEALTH:read-resource(include-runtime=true)
{
"outcome" => "success",
"result" => {
"cache-health" => [
"default",
"HEALTHY",
"_protobuf_metadata", "HEALTHY", "memcachedCache", "HEALTHY", "repl", "HEALTHY", "_script_cache",
"HEALTHY"
],
"cluster-health" => "HEALTHY",
"cluster-name" => "clustered",
"free-memory" => 936823L,
"log-tail" => [
"2017-03-04 16:22:28,138 INFO  [org.infinispan.server.endpoint] (MSC service thread 1-7) DGENDPT10001: MemcachedServer listening on 127.0.0.1:11211",
"2017-03-04 16:22:28,146 INFO  [org.infinispan.server.endpoint] (MSC service thread 1-3) DGENDPT10000: REST starting",
"2017-03-04 16:22:28,188 INFO  [org.jboss.as.clustering.infinispan] (MSC service thread 1-3) DGISPN0001: Started _protobuf_metadata cache from clustered container", "2017-03-04 16:22:28,195 INFO [org.jboss.as.clustering.infinispan] (MSC service thread 1-3) DGISPN0001: Started _script_cache cache from clustered container",
"2017-03-04 16:22:28,515 INFO  [org.jboss.as.clustering.infinispan] (MSC service thread 1-4) DGISPN0001: Started ___hotRodTopologyCache cache from clustered container",
"2017-03-04 16:22:28,552 INFO  [org.infinispan.rest.NettyRestServer] (MSC service thread 1-3) ISPN012003: REST server starting, listening on 127.0.0.1:8080",
"2017-03-04 16:22:28,552 INFO  [org.infinispan.server.endpoint] (MSC service thread 1-3) DGENDPT10002: REST mapped to /rest",
"2017-03-04 16:22:28,613 INFO  [org.jboss.as] (Controller Boot Thread) WFLYSRV0060: Http management interface listening on http://127.0.0.1:9990/management",
"2017-03-04 16:22:28,613 INFO  [org.jboss.as] (Controller Boot Thread) WFLYSRV0051: Admin console listening on http://127.0.0.1:9990",
"2017-03-04 16:22:28,613 INFO  [org.jboss.as] (Controller Boot Thread) WFLYSRV0025: Data Grid 7.1.0 (WildFly Core 2.1.10.Final-redhat-1) started in 7608ms - Started 196 of 235 services (119 services are lazy, passive or on-demand)"
],
"number-of-cpus" => 8,
"number-of-nodes" => 1,
"total-memory" => 1280000L
}
}

## 12.4. Accessing the Health Check API using the Management REST Interface

The Health Check API is integrated into the Management’s REST interface as Metrics (read-only runtime resources).

Important

Due to the metrics being exposed in runtime a HTTP POST method must be used instead of the typical HTTP GET.

To access these Metrics a HTTP POST method must be sent that contains valid user credentials. The following command demonstrates one such request:

curl --digest -L -D - "http://JDGADDRESS:_JDGPORT_/management/subsystem/datagrid-infinispan/cache-container/CONTAINERNAME/health/HEALTH?operation=resource&include-runtime=true&json.pretty=1" --header "Content-Type: application/json" -u username:password

The following properties should be substituted from the above command:

• JDGADDRESS - This should be the hostname or IP address where the JBoss Data Grid server is located.
• JDGPORT - This should be the port where the management interface is listening. By default this is 9990.
• CONTAINERNAME - This should be the name of the cache container to query. By default the cache manager will be named local, if the server was started in local mode, or clustered, if the server was started in a clustered mode.

If successful, a 200 response should be received along with the health status, such as seen below:

HTTP/1.1 401 Unauthorized
Connection: keep-alive
WWW-Authenticate: Digest realm="ManagementRealm",domain="/management",nonce="n1btFIY4yugNMTQ4ODY2NDY3NjUxMy4utKorhon/y+zSHie9V58=",opaque="00000000000000000000000000000000",algorithm=MD5,qop="auth"
X-Frame-Options: SAMEORIGIN
Content-Length: 77
Content-Type: text/html
Date: Sat, 04 Mar 2017 21:57:56 GMT

HTTP/1.1 200 OK
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Authentication-Info: nextnonce="n1btFIY4yugNMTQ4ODY2NDY3NjUxMy4utKorhon/y+zSHie9V58=",qop="auth",rspauth="09ab5888ea71413b56dd724c13825a08",cnonce="MzdjOTMyZWQ2OTk5Y2Q0NmNlYzcxYzE2Zjg5NzdjZDE=",nc=00000001
Content-Type: application/json; charset=utf-8
Content-Length: 2108
Date: Sat, 04 Mar 2017 21:57:56 GMT

{
"cache-health" : [
"default",
"HEALTHY",
"HEALTHY",
"memcachedCache",
"HEALTHY",
"repl",
"HEALTHY",
"___script_cache",
"HEALTHY"
],
"cluster-health" : "HEALTHY",
"cluster-name" : "clustered",
"free-memory" : 1198983,
"log-tail" : [
"2017-03-04 16:22:28,138 INFO  [org.infinispan.server.endpoint] (MSC service thread 1-7) DGENDPT10001: MemcachedServer listening on 127.0.0.1:11211",
"2017-03-04 16:22:28,146 INFO  [org.infinispan.server.endpoint] (MSC service thread 1-3) DGENDPT10000: REST starting",
"2017-03-04 16:22:28,188 INFO  [org.jboss.as.clustering.infinispan] (MSC service thread 1-3) DGISPN0001: Started ___protobuf_metadata cache from clustered container",
"2017-03-04 16:22:28,195 INFO  [org.jboss.as.clustering.infinispan] (MSC service thread 1-3) DGISPN0001: Started ___script_cache cache from clustered container",
"2017-03-04 16:22:28,515 INFO  [org.jboss.as.clustering.infinispan] (MSC service thread 1-4) DGISPN0001: Started ___hotRodTopologyCache cache from clustered container",
"2017-03-04 16:22:28,552 INFO  [org.infinispan.rest.NettyRestServer] (MSC service thread 1-3) ISPN012003: REST server starting, listening on 127.0.0.1:8080",
"2017-03-04 16:22:28,552 INFO  [org.infinispan.server.endpoint] (MSC service thread 1-3) DGENDPT10002: REST mapped to /rest",
"2017-03-04 16:22:28,613 INFO  [org.jboss.as] (Controller Boot Thread) WFLYSRV0060: Http management interface listening on http://127.0.0.1:9990/management",
"2017-03-04 16:22:28,613 INFO  [org.jboss.as] (Controller Boot Thread) WFLYSRV0051: Admin console listening on http://127.0.0.1:9990",
"2017-03-04 16:22:28,613 INFO  [org.jboss.as] (Controller Boot Thread) WFLYSRV0025: Data Grid 7.1.0 (WildFly Core 2.1.10.Final-redhat-1) started in 7608ms - Started 196 of 235 services (119 services are lazy, passive or on-demand)"
],
"number-of-cpus" : 8,
"number-of-nodes" : 1,
"total-memory" : 1280000

# Part VI. Remote Client-Server Mode Interfaces

## Chapter 13. Remote Client-Server Mode Interfaces

Red Hat JBoss Data Grid offers the following APIs to interact with the data grid in Remote Client-Server mode:

• The Hot Rod Interface, including the RemoteCache API
• The Asynchronous API (can only be used in conjunction with the Hot Rod Client in Remote Client-Server Mode)
• The REST Interface
• The Memcached Interface

## Chapter 14. The Hot Rod Interface

Hot Rod is a binary TCP client-server protocol used in Red Hat JBoss Data Grid. It was created to overcome deficiencies in other client/server protocols, such as Memcached.

Hot Rod will failover on a server cluster that undergoes a topology change. Hot Rod achieves this by providing regular updates to clients about the cluster topology.

Hot Rod enables clients to do smart routing of requests in partitioned or distributed Red Hat JBoss Data Grid server clusters. To do this, Hot Rod allows clients to determine the partition that houses a key and then communicate directly with the server that has the key. This functionality relies on Hot Rod updating the cluster topology with clients, and that the clients use the same consistent hash algorithm as the servers.

Red Hat JBoss Data Grid contains a server module that implements the Hot Rod protocol. The Hot Rod protocol facilitates faster client and server interactions in comparison to other text-based protocols and allows clients to make decisions about load balancing, failover and data location operations.

## 14.2. The Benefits of Using Hot Rod over Memcached

Red Hat JBoss Data Grid offers a choice of protocols for allowing clients to interact with the server in a Remote Client-Server environment. When deciding between using memcached or Hot Rod, the following should be considered.

Memcached

The memcached protocol causes the server endpoint to use the memcached text wire protocol. The memcached wire protocol has the benefit of being commonly used, and is available for almost any platform. All of JBoss Data Grid’s functions, including clustering, state sharing for scalability, and high availability, are available when using memcached.

However the memcached protocol lacks dynamicity, resulting in the need to manually update the list of server nodes on your clients in the event one of the nodes in a cluster fails. Also, memcached clients are not aware of the location of the data in the cluster. This means that they will request data from a non-owner node, incurring the penalty of an additional request from that node to the actual owner, before being able to return the data to the client. This is where the Hot Rod protocol is able to provide greater performance than memcached.

Hot Rod

JBoss Data Grid’s Hot Rod protocol is a binary wire protocol that offers all the capabilities of memcached, while also providing better scaling, durability, and elasticity.

The Hot Rod protocol does not need the hostnames and ports of each node in the remote cache, whereas memcached requires these parameters to be specified. Hot Rod clients automatically detect changes in the topology of clustered Hot Rod servers; when new nodes join or leave the cluster, clients update their Hot Rod server topology view. Consequently, Hot Rod provides ease of configuration and maintenance, with the advantage of dynamic load balancing and failover.

Additionally, the Hot Rod wire protocol uses smart routing when connecting to a distributed cache. This involves sharing a consistent hash algorithm between the server nodes and clients, resulting in faster read and writing capabilities than memcached.

Warning

When using JCache over Hot Rod it is not possible to create remote clustered caches, as the operation is executed on a single node as opposed to the entire cluster; however, once a cache has been created on the cluster it may be obtained using the cacheManager.getCache method.

It is recommended to create caches using either configuration files or the CLI.

## 14.3. Hot Rod Hash Functions

Hot Rod uses the same algorithm as on the server. The Hot Rod client always connects to the primary owner of the key, which is the first node in the list of owners. For more information about consistent hashing in Red Hat JBoss Data Grid, see Distribution Mode’s Consistent Hash Algorithm.

## 14.4. The Hot Rod Interface Connector

### 14.4.1. The Hot Rod Interface Connector

The following enables a Hot Rod server using the hotrod socket binding.

<hotrod-connector socket-binding="hotrod"
cache-container="local" />

The connector creates a supporting topology cache with default settings. These settings can be tuned by adding the <topology-state-transfer /> child element to the connector as follows:

<hotrod-connector socket-binding="hotrod"
cache-container="local">
<topology-state-transfer lazy-retrieval="false"
lock-timeout="1000"
replication-timeout="5000" />
</hotrod-connector>

The Hot Rod connector can be tuned with additional settings. See Configure Hot Rod Connectors for more information on how to configure the Hot Rod connector.

Note

The Hot Rod connector can be secured using SSL. See the Hot Rod Authentication Using SASL section of the Developer Guide for more information.

### 14.4.2. Configure Hot Rod Connectors

The following procedure describes the attributes used to configure the Hot Rod connector in Red Hat JBoss Data Grid’s Remote Client-Server Mode. Both the hotrod-connector and topology-state-transfer elements must be configured based on the following procedure.

Configuring Hot Rod Connectors for Remote Client-Server Mode

<subsystem xmlns="urn:infinispan:server:endpoint:8.1">
<hotrod-connector socket-binding="hotrod"
cache-container="local"
worker-threads="${VALUE}" idle-timeout="${SECONDS}"
tcp-nodelay="${TRUE/FALSE}" send-buffer-size="${VALUE}"
receive-buffer-size="${VALUE}" > <topology-state-transfer lock-timeout"="${MILLISECONDS}"
replication-timeout="${MILLISECONDS}" external-host="${HOSTNAME}"
external-port="${PORT}" lazy-retrieval="${TRUE/FALSE}"  />
</hotrod-connector>
</subsystem>

1. The hotrod-connector element defines the configuration elements for use with Hot Rod.

• The socket-binding parameter specifies the socket binding port used by the Hot Rod connector. This is a mandatory parameter.
• The cache-container parameter names the cache container used by the Hot Rod connector. This is a mandatory parameter.
• The worker-threads parameter specifies the number of worker threads available for the Hot Rod connector. The default value for this parameter is 160. This is an optional parameter.
• The idle-timeout parameter specifies the time, in seconds, that the connector can remain idle before the connection times out. The default value for this parameter is 0, which means that no timeout period is set. This is an optional parameter.
• The tcp-nodelay parameter specifies whether TCP packets will be delayed and sent out in batches. Valid values for this parameter are true and false. The default value for this parameter is true. This is an optional parameter.
• The send-buffer-size parameter indicates the size of the send buffer for the Hot Rod connector. The default value for this parameter is the size of the TCP stack buffer. This is an optional parameter.
• The receive-buffer-size parameter indicates the size of the receive buffer for the Hot Rod connector. The default value for this parameter is the size of the TCP stack buffer. This is an optional parameter.
2. The topology-state-transfer element specifies the topology state transfer configurations for the Hot Rod connector. This element can only occur once within a hotrod-connector element.

• The lock-timeout parameter specifies the time (in milliseconds) after which the operation attempting to obtain a lock times out. The default value for this parameter is 10 seconds. This is an optional parameter.
• The replication-timeout parameter specifies the time (in milliseconds) after which the replication operation times out. The default value for this parameter is 10 seconds. This is an optional parameter.
• The external-host parameter specifies the hostname sent by the Hot Rod server to clients listed in the topology information. The default value for this parameter is the host address. This is an optional parameter.
• The external-port parameter specifies the port sent by the Hot Rod server to clients listed in the topology information. The default value for this parameter is the configured port. This is an optional parameter.
• The lazy-retrieval parameter indicates whether the Hot Rod connector will carry out retrieval operations lazily. The default value for this parameter is true. This is an optional parameter.

## 15.1. The REST Interface

Red Hat JBoss Data Grid provides a REST interface, allowing for loose coupling between the client and server. Its primary benefit is interoperability with existing HTTP clients, along with providing a connection for php clients. In addition, the need for specific versions of client libraries and bindings is eliminated.

The REST API introduces an overhead, and requires a REST client or custom code to understand and create REST calls. It is recommended to use the Hot Rod client where performance is a concern.

To interact with Red Hat JBoss Data Grid’s REST API only a HTTP client library is required. For Java, this may be the Apache HTTP Commons Client, or the java.net API.

Important

The following examples assume that REST security is disabled on the REST connector. To disable REST security remove the authentication and encryption elements from the connector.

## 15.2. The REST Interface Connector

### 15.2.1. The REST Interface Connector

The REST connector differs from the Hot Rod and Memcached connectors because it requires a web subsystem. Therefore configurations such as socket-binding, worker threads, timeouts, etc, must be performed on the web subsystem.

Once the REST interface has been enabled on the server it may be used normally for adding, removing, and retrieving data. For information on these processes refer to the JBoss Data Grid Developer Guide .

### 15.2.2. Configure REST Connectors

Use the following procedure to configure the rest-connector element in Red Hat JBoss Data Grid’s Remote Client-Server mode.

Configuring REST Connectors for Remote Client-Server Mode

<subsystem xmlns="urn:infinispan:server:endpoint:8.1">
<rest-connector cache-container="local"
context-path="${CONTEXT_PATH}"/> </subsystem> The rest-connector element specifies the configuration information for the REST connector. 1. The cache-container parameter names the cache container used by the REST connector. This is a mandatory parameter. 2. The context-path parameter specifies the context path for the REST connector. The default value for this parameter is an empty string (""). This is an optional parameter. ## Chapter 16. The Memcached Interface ## 16.1. The Memcached Interface Memcached is an in-memory caching system used to improve response and operation times for database-driven websites. The Memcached caching system defines a text based protocol called the Memcached protocol. The Memcached protocol uses in-memory objects or (as a last resort) passes to a persistent store such as a special memcached database. Red Hat JBoss Data Grid offers a server that uses the Memcached protocol, removing the necessity to use Memcached separately with JBoss Data Grid. Additionally, due to JBoss Data Grid’s clustering features, its data failover capabilities surpass those provided by Memcached. ## 16.2. About Memcached Servers Red Hat JBoss Data Grid contains a server module that implements the memcached protocol. This allows memcached clients to interact with one or multiple JBoss Data Grid based memcached servers. The servers can be either: • Standalone, where each server acts independently without communication with any other memcached servers. • Clustered, where servers replicate and distribute data to other memcached servers. ## 16.3. Memcached Statistics The following table contains a list of valid statistics available using the memcached protocol in Red Hat JBoss Data Grid. Table 16.1. Memcached Statistics StatisticData TypeDetails uptime 32-bit unsigned integer. Contains the time (in seconds) that the memcached instance has been available and running. time 32-bit unsigned integer. Contains the current time. version String Contains the current version. curr_items 32-bit unsigned integer. Contains the number of items currently stored by the instance. total_items 32-bit unsigned integer. Contains the total number of items stored by the instance during its lifetime. cmd_get 64-bit unsigned integer Contains the total number of get operation requests (requests to retrieve data). cmd_set 64-bit unsigned integer Contains the total number of set operation requests (requests to store data). get_hits 64-bit unsigned integer Contains the number of keys that are present from the keys requested. get_misses 64-bit unsigned integer Contains the number of keys that were not found from the keys requested. delete_hits 64-bit unsigned integer Contains the number of keys to be deleted that were located and successfully deleted. delete_misses 64-bit unsigned integer Contains the number of keys to be deleted that were not located and therefore could not be deleted. incr_hits 64-bit unsigned integer Contains the number of keys to be incremented that were located and successfully incremented incr_misses 64-bit unsigned integer Contains the number of keys to be incremented that were not located and therefore could not be incremented. decr_hits 64-bit unsigned integer Contains the number of keys to be decremented that were located and successfully decremented. decr_misses 64-bit unsigned integer Contains the number of keys to be decremented that were not located and therefore could not be decremented. cas_hits 64-bit unsigned integer Contains the number of keys to be compared and swapped that were found and successfully compared and swapped. cas_misses 64-bit unsigned integer Contains the number of keys to be compared and swapped that were not found and therefore not compared and swapped. cas_badval 64-bit unsigned integer Contains the number of keys where a compare and swap occurred but the original value did not match the supplied value. evictions 64-bit unsigned integer Contains the number of eviction calls performed. bytes_read 64-bit unsigned integer Contains the total number of bytes read by the server from the network. bytes_written 64-bit unsigned integer Contains the total number of bytes written by the server to the network. ## 16.4. The Memcached Interface Connector ### 16.4.1. The Memcached Interface Connector The following enables a Memcached server using the memcached socket binding, and exposes the memcachedCache cache declared in the local container, using defaults for all other settings. <memcached-connector socket-binding="memcached" cache-container="local"/> Due to the limitations in the Memcached protocol, only one cache can be exposed by a connector. To expose more than one cache, declare additional memcached-connectors on different socket-bindings. See Configure Memcached Connectors. ### 16.4.2. Configure Memcached Connectors The following procedure describes the attributes used to configure the memcached connector within the connectors element in Red Hat JBoss Data Grid’s Remote Client-Server Mode. Configuring the Memcached Connector in Remote Client-Server Mode The memcached-connector element defines the configuration elements for use with memcached. <subsystem xmlns="urn:infinispan:server:endpoint:8.1"> <memcached-connector socket-binding="memcached" cache-container="local" worker-threads="${VALUE}"
idle-timeout="{SECONDS}"
tcp-nodelay="{TRUE/FALSE}"
send-buffer-size="{VALUE}"
receive-buffer-size="${VALUE}" /> </subsystem> 1. The socket-binding parameter specifies the socket binding port used by the memcached connector. This is a mandatory parameter. 2. The cache-container parameter names the cache container used by the memcached connector. This is a mandatory parameter. 3. The worker-threads parameter specifies the number of worker threads available for the memcached connector. The default value for this parameter is 160. This is an optional parameter. 4. The idle-timeout parameter specifies the time, in seconds, that the connector can remain idle before the connection times out. The default value for this parameter is 0, which means that no timeout period is set. This is an optional parameter. 5. The tcp-nodelay parameter specifies whether TCP packets will be delayed and sent out in batches. Valid values for this parameter are true and false. The default value for this parameter is true. This is an optional parameter. 6. The send-buffer-size parameter indicates the size of the send buffer for the memcached connector. The default value for this parameter is the size of the TCP stack buffer. This is an optional parameter. 7. The receive-buffer-size parameter indicates the size of the receive buffer for the memcached connector. The default value for this parameter is the size of the TCP stack buffer. This is an optional parameter. # Part VII. Set Up Locking for the Cache ## Chapter 17. Locking ## 17.1. Locking Red Hat JBoss Data Grid provides locking mechanisms to prevent dirty reads (where a transaction reads an outdated value before another transaction has applied changes to it) and non-repeatable reads. ## 17.2. Configure Locking (Remote Client-Server Mode) In Remote Client-Server mode, locking is configured using the locking element within the cache tags (for example, invalidation-cache, distributed-cache, replicated-cache or local-cache). Note The default isolation mode for the Remote Client-Server mode configuration is READ_COMMITTED. If the isolation attribute is included to explicitly specify an isolation mode, it is ignored, a warning is thrown, and the default value is used instead. The following is a sample procedure of a basic locking configuration for a default cache in Red Hat JBoss Data Grid’s Remote Client-Server mode. Configure Locking (Remote Client-Server Mode) <distributed-cache name="distributedCache"> <locking acquire-timeout="30000" concurrency-level="1000" striping="false" /> <!-- Additional configuration here --> </distributed-cache> 1. The acquire-timeout parameter specifies the number of milliseconds after which lock acquisition will time out. 2. The concurrency-level parameter defines the number of lock stripes used by the LockManager. 3. The striping parameter specifies whether lock striping will be used for the local cache. ## 17.3. Configure Locking (Library Mode) For Library mode, the locking element and its parameters are set within the default element found within cache element. An example of this configuration on a local cache is below: Configure Locking (Library Mode) <local-cache name="default"> <locking concurrency-level="${VALUE}"
isolation="${LEVEL}" acquire-timeout="${TIME}"
striping="${TRUE/FALSE}" write-skew="${TRUE/FALSE}" />
</local-cache>

1. The concurrency-level parameter specifies the concurrency level for the lock container. Set this value according to the number of concurrent threads interacting with the data grid.
2. The isolation parameter specifies the cache’s isolation level. Valid isolation levels are READ_COMMITTED and REPEATABLE_READ. For details about isolation levels, see About Isolation Levels.
3. The acquire-timeout parameter specifies time (in milliseconds) after which a lock acquisition attempt times out.
4. The striping parameter specifies whether a pool of shared locks are maintained for all entries that require locks. If set to FALSE, locks are created for each entry in the cache. For details, see About Lock Striping.
5. The write-skew parameter is only valid if the isolation is set to REPEATABLE_READ. If this parameter is set to FALSE, a disparity between a working entry and the underlying entry at write time results in the working entry overwriting the underlying entry. If the parameter is set to TRUE, such conflicts (namely write skews) throw an exception. The write-skew parameter can be only used with OPTIMISTIC transactions and it requires entry versioning to be enabled, with SIMPLE versioning scheme.

## 17.4. Locking Types

Optimistic locking allows multiple transactions to complete simultaneously by deferring lock acquisition to the transaction prepare time.

Optimistic mode assumes that multiple transactions can complete without conflict. It is ideal where there is little contention between multiple transactions running concurrently, as transactions can commit without waiting for other transaction locks to clear. With write-skew enabled, transactions in optimistic locking mode roll back if one or more conflicting modifications are made to the data before the transaction completes.

Pessimistic locking is also known as eager locking.

Pessimistic locking prevents more than one transaction to modify a value of a key by enforcing cluster-wide locks on each write operation. Locks are only released once the transaction is completed either through committing or being rolled back.

Pessimistic mode is used where a high contention on keys is occurring, resulting in inefficiencies and unexpected roll back operations.

### 17.4.3. Pessimistic Locking Types

Red Hat JBoss Data Grid includes explicit pessimistic locking and implicit pessimistic locking:

• Explicit Pessimistic Locking, which uses the JBoss Data Grid Lock API to allow cache users to explicitly lock cache keys for the duration of a transaction. The Lock call attempts to obtain locks on specified cache keys across all nodes in a cluster. This attempt either fails or succeeds for all specified cache keys. All locks are released during the commit or rollback phase.
• Implicit Pessimistic Locking ensures that cache keys are locked in the background as they are accessed for modification operations. Using Implicit Pessimistic Locking causes JBoss Data Grid to check and ensure that cache keys are locked locally for each modification operation. Discovering unlocked cache keys causes JBoss Data Grid to request a cluster-wide lock to acquire a lock on the unlocked cache key.

### 17.4.4. Explicit Pessimistic Locking Example

The following is an example of explicit pessimistic locking that depicts a transaction that runs on one of the cache nodes:

Transaction with Explicit Pessimistic Locking

tx.begin()
cache.lock(K)
cache.put(K,V5)
tx.commit()

1. When the line cache.lock(K) executes, a cluster-wide lock is acquired on K.
2. When the line cache.put(K,V5) executes, it guarantees success.
3. When the line tx.commit() executes, the locks held for this process are released.

### 17.4.5. Implicit Pessimistic Locking Example

An example of implicit pessimistic locking using a transaction that runs on one of the cache nodes is as follows:

Transaction with Implicit Pessimistic locking

tx.begin()
cache.put(K,V)
cache.put(K2,V2)
cache.put(K,V5)
tx.commit()

1. When the line cache.put(K,V) executes, a cluster-wide lock is acquired on K.
2. When the line cache.put(K2,V2) executes, a cluster-wide lock is acquired on K2.
3. When the line cache.put(K,V5) executes, the lock acquisition is non operational because a cluster-wide lock for K has been previously acquired. The put operation will still occur.
4. When the line tx.commit() executes, all locks held for this transaction are released.

### 17.4.6. Configure Locking Mode (Remote Client-Server Mode)

To configure a locking mode in Red Hat JBoss Data Grid’s Remote Client-Server mode, use the transaction element as follows:

<transaction locking="{OPTIMISTIC/PESSIMISTIC}" />

### 17.4.7. Configure Locking Mode (Library Mode)

In Red Hat JBoss Data Grid’s Library mode, the locking mode is set within the transaction element as follows:

<transaction transaction-manager-lookup="{TransactionManagerLookupClass}"
mode="{NONE, BATCH, NON_XA, NON_DURABLE_XA, FULL_XA}"
locking="{OPTIMISTIC,PESSIMISTIC}">
</transaction>

Set the locking value to OPTIMISTIC or PESSIMISTIC to configure the locking mode used for the transactional cache.

## 17.5. Locking Operations

The LockManager component is responsible for locking an entry before a write process initiates. The LockManager uses a LockContainer to locate, hold and create locks. There are two types of LockContainers JBoss Data Grid uses internally and their choice is dependent on the useLockStriping setting. The first type offers support for lock striping while the second type supports one lock per entry.

Red Hat JBoss Data Grid acquires remote locks lazily by default. The node running a transaction locally acquires the lock while other cluster nodes attempt to lock cache keys that are involved in a two phase prepare/commit phase. JBoss Data Grid can lock cache keys in a pessimistic manner either explicitly or implicitly.

Concurrency refers to the number of threads simultaneously interacting with the data grid. In Red Hat JBoss Data Grid, concurrency levels refer to the number of concurrent threads used within a lock container.

In JBoss Data Grid, concurrency levels determine the size of each striped lock container. Additionally, concurrency levels tune all related JDK ConcurrentHashMap based collections, such as those internal to DataContainers.

## Chapter 18. Set Up Lock Striping

Lock Striping allocates locks from a shared collection of (fixed size) locks in the cache. Lock allocation is based on the hash code for each entry’s key. Lock Striping provides a highly scalable locking mechanism with fixed overhead. However, this comes at a cost of potentially unrelated entries being blocked by the same lock.

Lock Striping is disabled by default in Red Hat JBoss Data Grid. If lock striping remains disabled, a new lock is created for each entry. This alternative approach can provide greater concurrent throughput, but also results in additional memory usage, garbage collection churn, and other disadvantages.

## 18.2. Configure Lock Striping (Remote Client-Server Mode)

Lock striping in Red Hat JBoss Data Grid’s Remote Client-Server mode is enabled by setting the striping element to true.

Lock Striping (Remote Client-Server Mode)

<locking acquire-timeout="20000"
concurrency-level="500"
striping="true" />

Note

The default isolation mode for the Remote Client-Server mode configuration is READ_COMMITTED. If the isolation attribute is included to explicitly specify an isolation mode, it is ignored, a warning is thrown, and the default value is used instead.

The locking element uses the following attributes:

• The acquire-timeout attribute specifies the maximum time to attempt a lock acquisition. The default value for this attribute is 10000 milliseconds.
• The concurrency-level attribute specifies the concurrency level for lock containers. Adjust this value according to the number of concurrent threads interacting with JBoss Data Grid. The default value for this attribute is 32.
• The striping attribute specifies whether a shared pool of locks is maintained for all entries that require locking (true). If set to false, a lock is created for each entry. Lock striping controls the memory footprint but can reduce concurrency in the system. The default value for this attribute is false.

## 18.3. Configure Lock Striping (Library Mode)

Lock striping is disabled by default in Red Hat JBoss Data Grid. Configure lock striping in JBoss Data Grid’s Library mode using the striping parameter as demonstrated in the following procedure.

Configure Lock Striping (Library Mode)

<local-cache>
<locking concurrency-level="${VALUE}" isolation="${LEVEL}"
acquire-timeout="${TIME}" striping="${TRUE/FALSE}"
write-skew="${TRUE/FALSE}" /> </local-cache> 1. The concurrency-level is used to specify the size of the shared lock collection use when lock striping is enabled. 2. The isolation parameter specifies the cache’s isolation level. Valid isolation levels are READ_COMMITTED and REPEATABLE_READ. 3. The acquire-timeout parameter specifies time (in milliseconds) after which a lock acquisition attempt times out. 4. The striping parameter specifies whether a pool of shared locks are maintained for all entries that require locks. If set to FALSE, locks are created for each entry in the cache. If set to TRUE, lock striping is enabled and shared locks are used as required from the pool. 5. The write-skew check determines if a modification to the entry from a different transaction should roll back the transaction. Write skew set to true requires isolation_level set to REPEATABLE_READ. The default value for write-skew and isolation_level are FALSE and READ_COMMITTED respectively. The write-skew parameter can be only used with OPTIMISTIC transactions and it requires entry versioning to be enabled, with SIMPLE versioning scheme. ## Chapter 19. Set Up Isolation Levels ## 19.1. About Isolation Levels Isolation levels determine when readers can view a concurrent write. READ_COMMITTED and REPEATABLE_READ are the two isolation modes offered in Red Hat JBoss Data Grid. • READ_COMMITTED. This isolation level is applicable to a wide variety of requirements. This is the default value in Remote Client-Server and Library modes. • REPEATABLE_READ. Important The only valid value for locks in Remote Client-Server mode is the default READ_COMMITTED value. The value explicitly specified with the isolation value is ignored. If the locking element is not present in the configuration, the default isolation value is READ_COMMITTED. For isolation mode configuration examples in JBoss Data Grid, see the lock striping configuration samples: ## 19.2. About READ_COMMITTED READ_COMMITTED is one of two isolation modes available in Red Hat JBoss Data Grid. In JBoss Data Grid’s READ_COMMITTED mode, write operations are made to copies of data rather than the data itself. A write operation blocks other data from being written, however writes do not block read operations. As a result, both READ_COMMITTED and REPEATABLE_READ modes permit read operations at any time, regardless of when write operations occur. In READ_COMMITTED mode multiple reads of the same key within a transaction can return different results due to write operations in different transactions modifying data between reads. This phenomenon is known as non-repeatable reads and is avoided in REPEATABLE_READ mode. ## 19.3. About REPEATABLE_READ REPEATABLE_READ is one of two isolation modes available in Red Hat JBoss Data Grid. Traditionally, REPEATABLE_READ does not allow write operations while read operations are in progress, nor does it allow read operations when write operations occur. This prevents the "non-repeatable read" phenomenon, which occurs when a single transaction has two read operations on the same row but the retrieved values differ (possibly due to a write operation modifying the value between the two read operations). JBoss Data Grid’s REPEATABLE_READ isolation mode preserves the value of an entry before a modification occurs. As a result, the "non-repeatable read" phenomenon is avoided because a second read operation on the same entry retrieves the preserved value rather than the new modified value. As a result, the two values retrieved by the two read operations in a single transaction will always match, even if a write operation occurs in a different transaction between the two reads. # Part VIII. Set Up and Configure a Cache Store ## Chapter 20. Cache Stores ## 20.1. Cache Stores The cache store connects Red Hat JBoss Data Grid to the persistent data store. Cache stores are associated with individual caches. Different caches attached to the same cache manager can have different cache store configurations. Note If a clustered cache is configured with an unshared cache store (where shared is set to false), on node join, stale entries which might have been removed from the cluster might still be present in the stores and can reappear. ## 20.2. Cache Loaders and Cache Writers Integration with the persistent store is done through the following SPIs located in org.infinispan.persistence.spi: • CacheLoader • CacheWriter • AdvancedCacheLoader • AdvancedCacheWriter CacheLoader and CacheWriter provide basic methods for reading and writing to a store. CacheLoader retrieves data from a data store when the required data is not present in the cache, and CacheWriter is used to enforce entry passivation and activation on eviction in a cache. AdvancedCacheLoader and AdvancedCacheWriter provide operations to manipulate the underlying storage in bulk: parallel iteration and purging of expired entries, clear and size. The org.infinispan.persistence.file.SingleFileStore is a good starting point to write your own store implementation. Note Previously, JBoss Data Grid used the old API (CacheLoader, extended by CacheStore), which is also still available. ## 20.3. Cache Store Configuration ### 20.3.1. Configuring the Cache Store Cache stores can be configured in a chain. Cache read operations checks each cache store in the order configured until a valid non-null element of data has been located. Write operations affect all cache stores unless the ignoreModifications element has been set to "true" for a specific cache store. ### 20.3.2. Configure the Cache Store using XML (Library Mode) The following example demonstrates cache store configuration using XML in JBoss Data Grid’s Library mode: <persistence passivation="false"> <file-store shared="false" preload="true" fetch-state="true" purge-startup="false" singleton="true" location="${java.io.tmpdir}" >
<write-behind enabled="true"
flush-lock-timeout="15000"
</singleFile>
</persistence>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode).

In Red Hat JBoss Data Grid’s Remote Client-Server mode, when the cache is preloaded from a cache store and eviction is disabled, read requests go to the memory. If the entry is not found in a memory during a read request, it accesses the cache store which may impact the read performance.

To avoid referring to the cache store when a key is not found in the memory, use the SKIP_CACHE_LOAD flag.

### 20.3.4. About the SKIP_CACHE_STORE Flag

When the SKIP_CACHE_STORE Flag is used then the cache store will not be considered for the specified cache operations. This flag can be useful to place an entry in the cache without having it included in the configured cache store, along with determining if an entry is found within a cache without retrieving it from the associated cache store.

### 20.3.5. About the SKIP_SHARED_CACHE_STORE Flag

When the SKIP_SHARED_CACHE_STORE Flag is enabled then any shared cache store will not be considered for the specified cache operations. This flag can be useful to place an entry in the cache without having it included in the shared cache store, along with determining if an entry is found within a cache without retrieving it from the shared cache store.

## 20.4. Shared Cache Stores

### 20.4.1. Shared Cache Stores

A shared cache store is a cache store that is shared by multiple cache instances.

A shared cache store is useful when all instances in a cluster communicate with the same remote, shared database using the same JDBC settings. In such an instance, configuring a shared cache store prevents the unnecessary repeated write operations that occur when various cache instances attempt to write the same data to the cache store.

### 20.4.2. Invalidation Mode and Shared Cache Stores

When used in conjunction with a shared cache store, Red Hat JBoss Data Grid’s invalidation mode causes remote caches to see the shared cache store to retrieve modified data.

The benefits of using invalidation mode in conjunction with shared cache stores include the following:

• Compared to replication messages, which contain the updated data, invalidation messages are much smaller and result in reduced network traffic.
• The remaining cluster caches look up modified data from the shared cache store lazily and only when required to do so, resulting in further reduced network traffic.

### 20.4.3. The Cache Store and Cache Passivation

In Red Hat JBoss Data Grid, a cache store can be used to enforce the passivation of entries and to activate eviction in a cache. Whether passivation mode or activation mode are used, the configured cache store both reads from and writes to the data store.

When passivation is disabled in JBoss Data Grid, after the modification, addition or removal of an element is carried out the cache store steps in to persist the changes in the store.

### 20.4.4. Application Cachestore Registration

It is not necessary to register an application cache store for an isolated deployment. This is not a requirement in Red Hat JBoss Data Grid because lazy deserialization is used to work around this problem.

## 20.5. Connection Factories

### 20.5.1. Connection Factories

In Red Hat JBoss Data Grid, all JDBC cache stores rely on a ConnectionFactory implementation to obtain a database connection. This process is also known as connection management or pooling.

A connection factory can be specified using the ConnectionFactoryClass configuration attribute. JBoss Data Grid includes the following ConnectionFactory implementations:

• ManagedConnectionFactory
• SimpleConnectionFactory.
• PooledConnectionFactory.

ManagedConnectionFactory is a connection factory that is ideal for use within managed environments such as application servers. This connection factory can explore a configured location in the JNDI tree and delegate connection management to the DataSource.

SimpleConnectionFactory is a connection factory that creates database connections on a per invocation basis. This connection factory is not designed for use in a production environment.

PooledConnectionFactory is a connection factory based on C3P0, and is typically recommended for standalone deployments as opposed to deployments utilizing a servlet container, such as JBoss EAP. This connection factory functions by allowing the user to define a set of parameters which may be used for all DataSource instances generated by the factory.

## 21.1. Cache Stores

The cache store connects Red Hat JBoss Data Grid to the persistent data store. Cache stores are associated with individual caches. Different caches attached to the same cache manager can have different cache store configurations.

Note

If a clustered cache is configured with an unshared cache store (where shared is set to false), on node join, stale entries which might have been removed from the cluster might still be present in the stores and can reappear.

## 21.2. Cache Store Comparison

Select a cache store based on your requirements. The following is a summary of high level differences between the cache stores available in Red Hat JBoss Data Grid:

• The Single File Cache Store is a local file cache store. It persists data locally for each node of the clustered cache. The Single File Cache Store provides superior read and write performance, but keeps keys in memory which limits its use when persisting large data sets at each node. See Single File Cache Store for details.
• The LevelDB file cache store is a local file cache store which provides high read and write performance. It does not have the limitation of Single File Cache Store of keeping keys in memory. See LevelDB Cache Store for details.
• The JDBC cache store is a cache store that may be shared, if required. When using it, all nodes of a clustered cache persist to a single database or a local JDBC database for every node in the cluster. The shared cache store lacks the scalability and performance of a local cache store such as the LevelDB cache store, but it provides a single location for persisted data. The JDBC cache store persists entries as binary blobs, which are not readable outside JBoss Data Grid. See JDBC Based Cache Stores for details.
• The JPA Cache Store (supported in Library mode only) is a shared cache store like JDBC cache store, but preserves schema information when persisting to the database. Therefore, the persisted entries can be read outside JBoss Data Grid. See JPA Cache Store for details.

## 21.3. Cache Store Configuration Details (Library Mode)

The following lists contain details about the configuration elements and parameters for cache store elements in JBoss Data Grid’s Library mode. The following list is meant to highlight certain parameters on each element, and a full list may be found in the schemas.

The persistence Element

• The passivation parameter affects the way in which Red Hat JBoss Data Grid interacts with stores. When an object is evicted from in-memory cache, passivation writes it to a secondary data store, such as a system or a database. Valid values for this parameter are true and false but passivation is set to false by default.

The file-store Element

• The shared parameter indicates that the cache store is shared by different cache instances. For example, where all instances in a cluster use the same JDBC settings to talk to the same remote, shared database. shared is false by default. When set to true, it prevents duplicate data being written to the cache store by different cache instances. For the LevelDB cache stores, this parameter must be excluded from the configuration, or set to false because sharing this cache store is not supported.
• The preload parameter is set to false by default. When set to true the data stored in the cache store is preloaded into the memory when the cache starts. This allows data in the cache store to be available immediately after startup and avoids cache operations delays as a result of loading data lazily. Preloaded data is only stored locally on the node, and there is no replication or distribution of the preloaded data. Red Hat JBoss Data Grid will only preload up to the maximum configured number of entries in eviction.
• The fetch-state parameter determines whether or not to fetch the persistent state of a cache and apply it to the local cache store when joining the cluster. If the cache store is shared the fetch persistent state is ignored, as caches access the same cache store. A configuration exception will be thrown when starting the cache service if more than one cache store has this property set to true. The fetch-state property is false by default.
• In order to speed up lookups, the single file cache store keeps an index of keys and their corresponding position in the file. To avoid this index resulting in memory consumption problems, this cache store can be bounded by a maximum number of entries that it stores, defined by the max-entries parameter. If this limit is exceeded, entries are removed permanently using the LRU algorithm both from the in-memory index and the underlying file based cache store. The default value is -1, allowing unlimited entries.
• The singleton parameter enables a singleton store cache store. SingletonStore is a delegating cache store used when only one instance in a cluster can interact with the underlying store; however, singleton parameter is not recommended for file-store. The default value is false.
• The purge parameter controls whether cache store is purged when it starts up.
• The location configuration element sets a location on disk where the store can write.

The write-behind Element

The write-behind element contains parameters that configure various aspects of the cache store.

• The thread-pool-size parameter specifies the number of threads that concurrently apply modifications to the store. The default value for this parameter is 1.
• The flush-lock-timeout parameter specifies the time to acquire the lock which guards the state to be flushed to the cache store periodically. The default value for this parameter is 1.
• The modification-queue-size parameter specifies the size of the modification queue for the asynchronous store. If updates are made at a rate that is faster than the underlying cache store can process this queue, then the asynchronous store behaves like a synchronous store for that period, blocking until the queue can accept more elements. The default value for this parameter is 1024 elements.
• The shutdown-timeout parameter specifies maximum amount of time that can be taken to stop the cache store. Default value for this parameter is 25000 milliseconds.

The remote-store Element

• The cache attribute specifies the name of the remote cache to which it intends to connect in the remote Infinispan cluster. The default cache will be used if the remote cache name is unspecified.
• The fetch-state attribute, when set to true, ensures that the persistent state is fetched when the remote cache joins the cluster. If multiple cache stores are chained, only one cache store can have this property set to true . The default for this value is false.
• The shared attribute is set to true when multiple cache instances share a cache store, which prevents multiple cache instances writing the same modification individually. The default for this attribute is false.
• The preload attribute ensures that the cache store data is pre-loaded into memory and is immediately accessible after starting up. The disadvantage of setting this to true is that the start up time increases. The default value for this attribute is false.
• The singleton parameter enables the SingletonStore delegating cache store, used in situations when only one instance in a cluster should interact with the underlying store. The default value is false.
• The purge attribute ensures that the cache store is purged during the start up process. The default value for this attribute is false.
• The tcp-no-delay attribute triggers the TCPNODELAY stack. The default value for this attribute is true.
• The ping-on-start attribute sends a ping request to a back end server to fetch the cluster topology. The default value for this attribute is true.
• The key-size-estimate attribute provides an estimation of the key size. The default value for this attribute is 64.
• The value-size-estimate attribute specifies the size of the byte buffers when serializing and deserializing values. The default value for this attribute is 512.
• The force-return-values attribute sets whether FORCE_RETURN_VALUE is enabled for all calls. The default value for this attribute is false.

The remote-server Element

Create a remote-server element within the remote-store element to define the server information.

• The host attribute configures the host address.
• The port attribute configures the port used by the Remote Cache Store. This defaults to 11222.

The connection-pool Element (Remote Store)

• The max-active parameter indicates the maximum number of active connections for each server at a time. The default value for this attribute is -1 which indicates an infinite number of active connections.
• The max-idle parameter indicates the maximum number of idle connections for each server at a time. The default value for this attribute is -1 which indicates an infinite number of idle connections.
• The max-total parameter indicates the maximum number of persistent connections within the combined set of servers. The default setting for this attribute is -1 which indicates an infinite number of connections.
• The min-idle-time parameter sets a target value for the minimum number of idle connections (per server) that should always be available. If this parameter is set to a positive number and timeBetweenEvictionRunsMillis 0, each time the idle connection eviction thread runs, it will try to create enough idle instances so that there will be minIdle idle instances available for each server. The default setting for this parameter is 1.
• The eviction-interval parameter indicates how long the eviction thread should sleep before "runs" of examining idle connections. When non-positive, no eviction thread will be launched. The default setting for this parameter is 120000 milliseconds, or 2 minutes.
• The min-evictable-idle-time parameter specifies the minimum amount of time that an connection may sit idle in the pool before it is eligible for eviction due to idle time. When non-positive, no connection will be dropped from the pool due to idle time alone. This setting has no effect unless timeBetweenEvictionRunsMillis 0. The default setting for this parameter is 1800000, or (30 minutes).
• The test-idle parameter indicates whether or not idle connections should be validated by sending an TCP packet to the server, during idle connection eviction runs. Connections that fail to validate will be dropped from the pool. This setting has no effect unless timeBetweenEvictionRunsMillis 0. The default setting for this parameter is true.

The leveldb-store Element

• The relative-to parameter specifies the base directory in which to store the cache state.
• The path parameter specifies the location within the relative-to parameter to store the cache state.
• The shared parameter specifies whether the cache store is shared. The only supported value for this parameter in the LevelDB cache store is false.
• The preload parameter specifies whether the cache store will be pre-loaded. Valid values are true and false.
• The block-size parameter defines the block size of the cache store.
• The singleton parameter enables the SingletonStore delegating cache store, used in situations when only one instance in a cluster should interact with the underlying store. The default value is false.
• The cache-size parameter defines the cache size of the cache store.
• The clear-threshold parameter defines the cache clear threshold of the cache store.

The jpa-store Element

• The persistence-unit attribute specifies the name of the JPA cache store.
• The entity-class attribute specifies the fully qualified class name of the JPA entity used to store the cache entry value.
• The batch-size (optional) attribute specifies the batch size for cache store streaming. The default value for this attribute is 100.
• The store-metadata (optional) attribute specifies whether the cache store keeps the metadata (for example expiration and versioning information) with the entries. The default value for this attribute is true.
• The singleton parameter enables the SingletonStore delegating cache store, used in situations when only one instance in a cluster should interact with the underlying store. The default value is false.

The binary-keyed-jdbc-store, string-keyed-jdbc-store, and mixed-keyed-jdbc-store Elements

• The fetch-state parameter determines whether the persistent state is fetched when joining a cluster. Set this to true if using a replication and invalidation in a clustered environment. Additionally, if multiple cache stores are chained, only one cache store can have this property enabled. If a shared cache store is used, the cache does not allow a persistent state transfer despite this property being set to true. The fetch-state parameter is false by default.
• The singleton parameter enables the SingletonStore delegating cache store, used in situations when only one instance in a cluster should interact with the underlying store. The default value is false.
• The purge parameter specifies whether the cache store is purged when initially started.
• The key-to-string-mapper parameter specifies the class name used to map keys to strings for the database tables.

The connection-pool Element (JDBC Store)

• The connection-url parameter specifies the JDBC driver-specific connection URL.
• The username parameter contains the username used to connect via the connection-url.
• The password parameter contains the password to use when connecting via the connection-url
• The driver parameter specifies the class name of the driver used to connect to the database.

The binary-keyed-table and string-keyed-table Elements

• The prefix attribute defines the string prepended to name of the target cache when composing the name of the cache bucket table.
• The drop-on-exit parameter specifies whether the database tables are dropped upon shutdown.
• The create-on-start parameter specifies whether the database tables are created by the store on startup.
• The fetch-size parameter specifies the size to use when querying from this table. Use this parameter to avoid heap memory exhaustion when the query is large.
• The batch-size parameter specifies the batch size used when modifying this table.

The id-column, data-column, and timestamp-column Elements

• The name parameter specifies the name of the column used.
• The type parameter specifies the type of the column used.

The custom-store Element

• The class parameter specifies the class name of the cache store implementation.
• The preload parameter specifies whether to load entries into the cache during start up. Valid values for this parameter are true and false.
• The shared parameter specifies whether the cache store is shared. This is used when multiple cache instances share a cache store. Valid values for this parameter are true and false.

The property Element

A property may be defined inside of a cache store, with the entry between the property tags being the stored value. For instance, in the below example a value of 1 is defined for minOccurs.

<property name="minOccurs">1</property>
• The name attribute specifies the name of the property.

## 21.4. Cache Store Configuration Details (Remote Client-Server Mode)

The following tables contain details about the configuration elements and parameters for cache store elements in JBoss Data Grid’s Remote Client-Server mode. The following list is meant to highlight certain parameters on each element, and a full list may be found in the schemas.

The local-cache Element

• The name parameter of the local-cache attribute is used to specify a name for the cache.
• The statistics parameter specifies whether statistics are enabled at the container level. Enable or disable statistics on a per-cache basis by setting the statistics attribute to false.

The file-store Element

• The name parameter of the file-store element is used to specify a name for the file store.
• The passivation parameter determines whether entries in the cache are passivated (true) or if the cache store retains a copy of the contents in memory (false).
• The purge parameter specifies whether or not the cache store is purged when it is started. Valid values for this parameter are true and false.
• The shared parameter is used when multiple cache instances share a cache store. This parameter can be set to prevent multiple cache instances writing the same modification multiple times. Valid values for this parameter are true and false. However, the shared parameter is not recommended for the LevelDB cache store because this cache store cannot be shared.
• The relative-to property is the directory where the file-store stores the data. It is used to define a named path.
• The path property is the name of the file where the data is stored. It is a relative path name that is appended to the value of the relative-to property to determine the complete path.
• The max-entries parameter provides maximum number of entries allowed. The default value is -1 for unlimited entries.
• The fetch-state parameter when set to true fetches the persistent state when joining a cluster. If multiple cache stores are chained, only one of them can have this property enabled. Persistent state transfer with a shared cache store does not make sense, as the same persistent store that provides the data will just end up receiving it. Therefore, if a shared cache store is used, the cache does not allow a persistent state transfer even if a cache store has this property set to true. It is recommended to set this property to true only in a clustered environment. The default value for this parameter is false.
• The preload parameter when set to true, loads the data stored in the cache store into memory when the cache starts. However, setting this parameter to true affects the performance as the startup time is increased. The default value for this parameter is false.
• The singleton parameter enables a singleton store cache store. SingletonStore is a delegating cache store used when only one instance in a cluster can interact with the underlying store; however, singleton parameter is not recommended for file-store. The default value is false.

The store Element

• The class parameter specifies the class name of the cache store implementation.

The property Element

• The name parameter specifies the name of the property.
• The value parameter specifies the value assigned to the property.

The remote-store Element

• The cache parameter defines the name for the remote cache. If left undefined, the default cache is used instead.
• The socket-timeout parameter sets whether the value defined in SO_TIMEOUT (in milliseconds) applies to remote Hot Rod servers on the specified timeout. A timeout value of 0 indicates an infinite timeout. The default value is 60,000 ms, or one minute.
• The tcp-no-delay sets whether TCP_NODELAY applies on socket connections to remote Hot Rod servers.
• The hotrod-wrapping sets whether a wrapper is required for Hot Rod on the remote store.
• The singleton parameter enables the SingletonStore delegating cache store, used in situations when only one instance in a cluster should interact with the underlying store. The default value is false.

The remote-server Element

• The outbound-socket-binding parameter sets the outbound socket binding for the remote server.

The binary-keyed-jdbc-store, string-keyed-jdbc-store, and mixed-keyed-jdbc-store Elements

• The datasource parameter defines the name of a JNDI for the datasource.
• The passivation parameter determines whether entries in the cache are passivated (true) or if the cache store retains a copy of the contents in memory (false).
• The preload parameter specifies whether to load entries into the cache during start up. Valid values for this parameter are true and false.
• The purge parameter specifies whether or not the cache store is purged when it is started. Valid values for this parameter are true and false.
• The shared parameter is used when multiple cache instances share a cache store. This parameter can be set to prevent multiple cache instances writing the same modification multiple times. Valid values for this parameter are true and false.
• The singleton parameter enables a singleton store cache store. SingletonStore is a delegating cache store used when only one instance in a cluster can interact with the underlying store

The binary-keyed-table and string-keyed-table Elements

• The prefix parameter specifies a prefix string for the database table name.

The id-column, data-column, and timestamp-column Elements

• The name parameter specifies the name of the database column.
• The type parameter specifies the type of the database column.

The leveldb-store Element

• The relative-to parameter specifies the base directory to store the cache state. This value defaults to jboss.server.data.dir.
• The path parameter defines where, within the directory specified in the relative-to parameter, the cache state is stored. If undefined, the path defaults to the cache container name.
• The passivation parameter specifies whether passivation is enabled for the LevelDB cache store. Valid values are true and false.
• The singleton parameter enables the SingletonStore delegating cache store, used in situations when only one instance in a cluster should interact with the underlying store. The default value is false.
• The purge parameter specifies whether the cache store is purged when it starts up. Valid values are true and false.

## 21.5. Single File Cache Store

### 21.5.1. Single File Cache Store

Red Hat JBoss Data Grid includes one file system based cache store: the SingleFileCacheStore.

The SingleFileCacheStore is a simple file system based implementation and a replacement to the older file system based cache store: the FileCacheStore.

SingleFileCacheStore stores all key/value pairs and their corresponding metadata information in a single file. To speed up data location, it also keeps all keys and the positions of their values and metadata in memory. Hence, using the single file cache store slightly increases the memory required, depending on the key size and the amount of keys stored. Hence SingleFileCacheStore is not recommended for use cases where the keys are too big.

To reduce memory consumption, the size of the cache store can be set to a fixed number of entries to store in the file; however, this works only when JBoss Data Grid is used as a cache. When JBoss Data Grid is used this way, data which is not present in the cache can be recomputed or re-retrieved from the authoritative data store and stored in the JBoss Data Grid cache. This limitation exists so that once the maximum number of entries is reached older data in the cache store is removed. If JBoss Data Grid were used as an authoritative data store in this scenario it would lead to potential data loss.

Due to its limitations, SingleFileCacheStore can be used in a limited capacity in production environments. It can not be used on shared file system (such as NFS and Windows shares) due to a lack of proper file locking, resulting in data corruption. Furthermore, file systems are not inherently transactional, resulting in file writing failures during the commit phase if the cache is used in a transactional context.

### 21.5.2. Single File Store Configuration (Remote Client-Server Mode)

The following is an example of a Single File Store configuration for Red Hat JBoss Data Grid’s Remote Client-Server mode:

<local-cache name="default" statistics="true">
<file-store name="myFileStore"
passivation="true"
purge="true"
relative-to="{PATH}"
path="{DIRECTORY}"
max-entries="10000"
fetch-state="true"
</local-cache>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Remote Client-Server Mode).

### 21.5.3. Single File Store Configuration (Library Mode)

In Red Hat JBoss Grid’s Library mode, configure a Single File Cache Store as follows:.

<local-cache name="writeThroughToFile">
<persistence passivation="false">
<file-store fetch-state="true"
purge="false"
shared="false"
location="/tmp/Another-FileCacheStore-Location"
max-entries="100">
<write-behind enabled="true"
flush-lock-timeout="1"
modification-queue-size="1024"
shutdown-timeout="25000"/>
</singleFile>
</persistence>
</local-cache>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode).

### 21.5.4. Upgrade JBoss Data Grid Cache Stores

Red Hat JBoss Data Grid 7 stores data in a different format than previous versions of JBoss Data Grid. As a result, the newer version of JBoss Data Grid cannot read data stored by older versions. Use rolling upgrades to upgrade persisted data from the format used by the old JBoss Data Grid to the new format. Additionally, the newer version of JBoss Data Grid also stores persistence configuration information in a different location.

Rolling upgrades is the process by which a JBoss Data Grid installation is upgraded without a service shutdown. For JBoss Data Grid servers, this procedure refers to the server side components. The upgrade can be due to either hardware or software change, such as upgrading JBoss Data Grid.

Rolling upgrades are only available in JBoss Data Grid’s Remote Client-Server mode.

## 21.6. LevelDB Cache Store

### 21.6.1. LevelDB Cache Store

LevelDB is a key-value storage engine that provides an ordered mapping from string keys to string values.

The LevelDB Cache Store uses two filesystem directories. Each directory is configured for a LevelDB database. One directory stores the non-expired data and the second directory stores the keys pending to be purged permanently.

### 21.6.2. Configuring LevelDB Cache Store (Remote Client-Server Mode)

Procedure: To configure LevelDB Cache Store:

1. Add the following elements to a cache definition in standalone.xml to configure the database:

<leveldb-store path="/path/to/leveldb/data"
passivation="false"
purge="false" >
<leveldb-expiration path="/path/to/leveldb/expires/data" />
<implementation type="JNI" />
</leveldb-store>
Note

Directories will be automatically created if they do not exist.

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Remote Client-Server Mode).

### 21.6.3. LevelDB Cache Store Sample XML Configuration (Library Mode)

The following is a sample XML configuration of LevelDB Cache Store:

<local-cache name="vehicleCache">
<persistence passivation="false">
<leveldb-store xmlns="urn:infinispan:config:store:leveldb:8.0
relative-to="/path/to/leveldb/data"
shared="false"
</persistence>
</local-cache>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode).

### 21.6.4. Configure a LevelDB Cache Store Using JBoss Operations Network

Use the following procedure to set up a new LevelDB cache store using the JBoss Operations Network.

1. Ensure that Red Hat JBoss Operations Network 3.2 or higher is installed and started.
2. Install the Red Hat JBoss Data Grid Plugin Pack for JBoss Operations Network 3.2.0.
3. Ensure that JBoss Data Grid is installed and started.
4. Import JBoss Data Grid server into the inventory.
5. Configure the JBoss Data Grid connection settings.
6. Create a new LevelDB cache store as follows:

1. Right-click the default cache.
2. In the menu, mouse over the option.
7. Name the new LevelDB cache store as follows:

1. In the Resource Create Wizard that appears, add a name for the new LevelDB Cache Store.
2. Click btn:[Next] to continue.
8. Configure the LevelDB Cache Store settings as follows:

1. Use the options in the configuration window to configure a new LevelDB cache store.
2. Click menu:Finish[] to complete the configuration.
9. Schedule a restart operation as follows:

1. In the screen’s left panel, expand the JBoss AS7 Standalone Servers entry, if it is not currently expanded.
2. Click JDG (0.0.0.0:9990) from the expanded menu items.
3. In the screen’s right panel, details about the selected server display. Click the menu:Operations[] tab.
4. In the Operation drop-down box, select the Restart operation.
5. Select the radio button for the Now entry.
6. Click menu:Schedule[] to restart the server immediately.
10. Discover the new LevelDB cache store as follows:

1. In the screen’s left panel, select each of the following items in the specified order to expand them: menu:JBoss AS7 Standalong Servers[JDG (0.0.0.0:9990) > infinispan > Cache Containers > local > Caches > default > LevelDB Stores]
2. Click the name of your new LevelDB Cache Store to view its configuration information in the right panel.

## 21.7. JDBC Based Cache Stores

### 21.7.1. JDBC Based Cache Stores

Red Hat JBoss Data Grid offers several cache stores for use with common data storage formats. JDBC based cache stores are used with any cache store that exposes a JDBC driver. JBoss Data Grid offers the following JDBC based cache stores depending on the key to be persisted:

• JdbcBinaryStore.
• JdbcStringBasedStore.
• JdbcMixedStore.
Important

Both Binary and Mixed JDBC stores are deprecated in JBoss Data Grid 7.1, and are not recommended for production use. It is recommended to utilize a String Based store instead.

### 21.7.2. JdbcBinaryStores

#### 21.7.2.1. JdbcBinaryStores

The JdbcBinaryStore supports all key types. It stores all keys with the same hash value (hashCode method on the key) in the same table row/blob. The hash value common to the included keys is set as the primary key for the table row/blob. As a result of this hash value, JdbcBinaryStore offers excellent flexibility but at the cost of concurrency and throughput.

As an example, if three keys (k1, k2 and k3) have the same hash code, they are stored in the same table row. If three different threads attempt to concurrently update k1, k2 and k3, they must do it sequentially because all three keys share the same row and therefore cannot be simultaneously updated.

Important

Binary JDBC stores are deprecated in JBoss Data Grid 7.1, and are not recommended for production use. It is recommended to utilize a String Based store instead.

#### 21.7.2.2. JdbcBinaryStore Configuration (Remote Client-Server Mode)

The following is a configuration for JdbcBinaryStore using Red Hat JBoss Data Grid’s Remote Client-Server mode with Passivation enabled:

<local-cache name="customCache">
<!-- Additional configuration elements here -->
<binary-keyed-jdbc-store datasource="java:jboss/datasources/JdbcDS"
passivation="${true/false}" preload="${true/false}"
purge="${true/false}"> <binary-keyed-table prefix="JDG"> <id-column name="id" type="${id.column.type}"/>
<data-column name="datum"
type="${data.column.type}"/> <timestamp-column name="version" type="${timestamp.column.type}"/>
</binary-keyed-table>
</binary-keyed-jdbc-store>
</local-cache>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Remote Client-Server Mode).

#### 21.7.2.3. JdbcBinaryStore Configuration (Library Mode)

The following is a sample configuration for the JdbcBinaryStore :

<infinispan
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="urn:infinispan:config:8.4 http://www.infinispan.org/schemas/infinispan-config-8.4.xsd
urn:infinispan:config:store:jdbc:8.0 http://www.infinispan.org/schemas/infinispan-cachestore-jdbc-config-8.0.xsd"
xmlns="urn:infinispan:config:8.4">
<!-- Additional configuration elements here -->
<persistence>
<binary-keyed-jdbc-store xmlns="urn:infinispan:config:store:jdbc:8.0
fetch-state="false"
purge="false">
<connection-pool connection-url="jdbc:h2:mem:infinispan_binary_based;DB_CLOSE_DELAY=-1"
driver="org.h2.Driver"/>
<binary-keyed-table dropOnExit="true"
createOnStart="true"
prefix="ISPN_BUCKET_TABLE">
<id-column name="ID_COLUMN"
type="VARCHAR(255)" />
<data-column name="DATA_COLUMN"
type="BINARY" />
<timestamp-column name="TIMESTAMP_COLUMN"
type="BIGINT" />
</binary-keyed-table>
</binary-keyed-jdbc-store>
</persistence>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode).

### 21.7.3. JdbcStringBasedStores

#### 21.7.3.1. JdbcStringBasedStores

The JdbcStringBasedStore stores each entry in its own row in the table, instead of grouping multiple entries into each row, resulting in increased throughput under a concurrent load. It also uses a (pluggable) bijection that maps each key to a String object. The key-to-string-mapper interface defines the bijection.

Red Hat JBoss Data Grid includes a default implementation called DefaultTwoWayKey2StringMapper that handles primitive types.

#### 21.7.3.2. JdbcStringBasedStore Configuration (Remote Client-Server Mode)

The following is a sample JdbcStringBasedStore for Red Hat JBoss Data Grid’s Remote Client-Server mode:

<local-cache name="customCache">
<!-- Additional configuration elements here -->
<string-keyed-jdbc-store datasource="java:jboss/datasources/JdbcDS"
passivation="true"
purge="false"
shared="false"
singleton="true">
<string-keyed-table prefix="JDG">
<id-column name="id"
type="${id.column.type}"/> <data-column name="datum" type="${data.column.type}"/>
<timestamp-column name="version"
type="${timestamp.column.type}"/> </string-keyed-table> </string-keyed-jdbc-store> </local-cache> For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Remote Client-Server Mode). #### 21.7.3.3. JdbcStringBasedStore Configuration (Library Mode) The following is a sample configuration for the JdbcStringBasedStore : <infinispan xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="urn:infinispan:config:8.4 http://www.infinispan.org/schemas/infinispan-config-8.4.xsd urn:infinispan:config:store:jdbc:8.0 http://www.infinispan.org/schemas/infinispan-cachestore-jdbc-config-8.0.xsd" xmlns="urn:infinispan:config:8.4"> <!-- Additional configuration elements here --> <persistence> <string-keyed-jdbc-store xmlns="urn:infinispan:config:store:jdbc:8.0" fetch-state="false" purge="false" key2StringMapper="org.infinispan.loaders.keymappers.DefaultTwoWayKey2StringMapper"> <dataSource jndiUrl="java:jboss/datasources/JdbcDS"/> <string-keyed-table dropOnExit="true" createOnStart="true" prefix="ISPN_STRING_TABLE"> <id-column name="ID_COLUMN" type="VARCHAR(255)" /> <data-column name="DATA_COLUMN" type="BINARY" /> <timestamp-column name="TIMESTAMP_COLUMN" type="BIGINT" /> </string-keyed-table> </string-keyed-jdbc-store> </persistence> For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode). #### 21.7.3.4. JdbcStringBasedStore Multiple Node Configuration (Remote Client-Server Mode) The following is a configuration for the JdbcStringBasedStore in Red Hat JBoss Data Grid’s Remote Client-Server mode. This configuration is used when multiple nodes must be used. <subsystem xmlns="urn:infinispan:server:core:8.4" default-cache-container="default"> <cache-container <!-- Additional configuration information here --> > <!-- Additional configuration elements here --> <replicated-cache> <!-- Additional configuration elements here --> <string-keyed-jdbc-store datasource="java:jboss/datasources/JdbcDS" fetch-state="true" passivation="false" preload="false" purge="false" shared="false" singleton="true"> <string-keyed-table prefix="JDG"> <id-column name="id" type="${id.column.type}"/>
<data-column name="datum"
type="${data.column.type}"/> <timestamp-column name="version" type="${timestamp.column.type}"/>
</string-keyed-table>
</string-keyed-jdbc-store>
</replicated-cache>
</cache-container>
</subsystem>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Remote Client-Server Mode).

### 21.7.4. JdbcMixedStores

#### 21.7.4.1. JdbcMixedStores

The JdbcMixedStore is a hybrid implementation that delegates keys based on their type to either the JdbcBinaryStore or JdbcStringBasedStore.

Important

Mixed JDBC stores are deprecated in JBoss Data Grid 7.1, and are not recommended for production use. It is recommended to utilize a String Based store instead.

#### 21.7.4.2. JdbcMixedStore Configuration (Remote Client-Server Mode)

The following is a configuration for a JdbcMixedStore for Red Hat JBoss Data Grid’s Remote Client-Server mode:

<local-cache name="customCache">
<mixed-keyed-jdbc-store datasource="java:jboss/datasources/JdbcDS"
passivation="true"
purge="false">
<binary-keyed-table prefix="MIX_BKT2">
<id-column name="id"
type="${id.column.type}"/> <data-column name="datum" type="${data.column.type}"/>
<timestamp-column name="version"
type="${timestamp.column.type}"/> </binary-keyed-table> <string-keyed-table prefix="MIX_STR2"> <id-column name="id" type="${id.column.type}"/>
<data-column name="datum"
type="${data.column.type}"/> <timestamp-column name="version" type="${timestamp.column.type}"/>
</string-keyed-table>
</mixed-keyed-jdbc-store>
</local-cache>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Remote Client-Server Mode).

#### 21.7.4.3. JdbcMixedStore Configuration (Library Mode)

The following is a sample configuration for the JdbcMixedStore :

<infinispan
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="urn:infinispan:config:8.4 http://www.infinispan.org/schemas/infinispan-config-8.4.xsd
urn:infinispan:config:store:jdbc:8.0 http://www.infinispan.org/schemas/infinispan-cachestore-jdbc-config-8.0.xsd"
xmlns="urn:infinispan:config:8.4">
<!-- Additional configuration elements here -->
<persistence>
<mixed-keyed-jdbc-store xmlns="urn:infinispan:config:store:jdbc:8.0"
fetch-state="false"
purge="false"
key-to-string-mapper="org.infinispan.persistence.keymappers.DefaultTwoWayKey2StringMapper">
<connection-pool connection-url="jdbc:h2:mem:infinispan_binary_based;DB_CLOSE_DELAY=-1"
driver="org.h2.Driver"/>
<binary-keyed-table dropOnExit="true"
createOnStart="true"
prefix="ISPN_BUCKET_TABLE_BINARY">
<id-column name="ID_COLUMN"
type="VARCHAR(255)" />
<data-column name="DATA_COLUMN"
type="BINARY" />
<timestamp-column name="TIMESTAMP_COLUMN"
type="BIGINT" />
</binary-keyed-table>
<string-keyed-table dropOnExit="true"
createOnStart="true"
prefix="ISPN_BUCKET_TABLE_STRING">
<id-column name="ID_COLUMN"
type="VARCHAR(255)" />
<data-column name="DATA_COLUMN"
type="BINARY" />
<timestamp-column name="TIMESTAMP_COLUMN"
type="BIGINT" />
</string-keyed-table>
</mixed-keyed-jdbc-store>
</persistence>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode).

### 21.7.5. Cache Store Troubleshooting

#### 21.7.5.1. IOExceptions with JdbcStringBasedStore

An IOException Unsupported protocol version 48 error when using JdbcStringBasedStore indicates that your data column type is set to VARCHAR, CLOB or something similar instead of the correct type, BLOB or VARBINARY. Despite its name, JdbcStringBasedStore only requires that the keys are strings while the values can be any data type, so that they can be stored in a binary column.

## 21.8. The Remote Cache Store

### 21.8.1. Remote Cache Stores

The RemoteCacheStore is an implementation of the cache loader that stores data in a remote Red Hat JBoss Data Grid cluster. The RemoteCacheStore uses the Hot Rod client-server architecture to communicate with the remote cluster.

For remote cache stores, Hot Rod provides load balancing, fault tolerance and the ability to fine tune the connection between the RemoteCacheStore and the cluster.

### 21.8.2. Remote Cache Store Configuration (Remote Client-Server Mode)

The following is a sample remote cache store configuration for Red Hat JBoss Data Grid’s Remote Client-Server mode:

<remote-store cache="default"
socket-timeout="60000"
tcp-no-delay="true"
hotrod-wrapping="true">
<remote-server outbound-socket-binding="remote-store-hotrod-server" />
</remote-store>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Remote Client-Server Mode).

### 21.8.3. Remote Cache Store Configuration (Library Mode)

The following is a sample remote cache store configuration for Red Hat JBoss Data Grid’s Library mode:

<persistence passivation="false">
<remote-store xmlns="urn:infinispan:config:store:remote:8.0"
cache="default"
fetch-state="false"
shared="true"
purge="false"
tcp-no-delay="true"
key-size-estimate="62"
value-size-estimate="512"
force-return-values="false">
<remote-server host="127.0.0.1"
port="1971" />
<connectionPool max-active="99"
max-idle="97"
max-total="98" />
</remote-store>
</persistence>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode).

### 21.8.4. Define the Outbound Socket for the Remote Cache Store

The Hot Rod server used by the remote cache store is defined using the outbound-socket-binding element in a standalone.xml file.

An example of this configuration in the standalone.xml file is as follows:

Define the Outbound Socket

<server>
<!-- Additional configuration elements here -->
<socket-binding-group name="standard-sockets"
default-interface="public"
port-offset="${jboss.socket.binding.port-offset:0}"> <!-- Additional configuration elements here --> <outbound-socket-binding name="remote-store-hotrod-server"> <remote-destination host="remote-host" port="11222"/> </outbound-socket-binding> </socket-binding-group> </server> ## 21.9. JPA Cache Store ### 21.9.1. JPA Cache Stores The JPA (Java Persistence API) Cache Store stores cache entries in the database using a formal schema, which allows other applications to read the persisted data and load data provided by other applications into Red Hat JBoss Data Grid. The database should not be used by the other applications concurrently with JBoss Data Grid. Important In Red Hat JBoss Data Grid, JPA cache stores are only supported in Library mode. ### 21.9.2. JPA Cache Store Sample XML Configuration (Library Mode) To configure JPA Cache Stores using XML in Red Hat JBoss Data Grid, add the following configuration to the infinispan.xml file: <local-cache name="users"> <!-- Insert additional configuration elements here --> <persistence passivation="false"> <jpa-store xmlns="urn:infinispan:config:store:jpa:8.0" shared="true" preload="true" persistence-unit="MyPersistenceUnit" entity-class="org.infinispan.loaders.jpa.entity.User" /> </persistence> </local-cache> For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode). ### 21.9.3. Storing Metadata in the Database When storeMetadata is set to true (default value), meta information about the entries such as expiration, creation and modification timestamps, and versioning is stored in the database. JBoss Data Grid stores the metadata in an additional table named _ispn_metadata_ because the entity table has a fixed layout that cannot accommodate the metadata. The structure of this table depends on the database in use. Enable the automatic creation of this table using the same database as the test environment and then transfer the structure to the production database. Configure persistence.xml for Metadata Entities 1. Using Hibernate as the JPA implementation allows automatic creation of these tables using the property hibernate.hbm2ddl.auto in persistence.xml as follows: <property name="hibernate.hbm2ddl.auto" value="update"/> 2. Declare the metadata entity class to the JPA provider by adding the following to persistence.xml : <class>org.infinispan.persistence.jpa.impl.MetadataEntity</class> As outlined, metadata is always stored in a new table. If metadata information collection and storage is not required, set the storeMetadata attribute to false in the JPA Store configuration. ### 21.9.4. Deploying JPA Cache Stores in Various Containers Red Hat JBoss Data Grid’s JPA Cache Store implementations are deployed normally for all supported containers, except Red Hat JBoss Enterprise Application Platform. JBoss Data Grid’s JBoss EAP modules contain the JPA cache store and related libraries (such as Hibernate). As a result, the relevant libraries are not packaged inside the application, but instead the application refers to the libraries in the JBoss EAP modules that have them installed. These modules are not required for containers other than JBoss EAP. As a result, all the relevant libraries are packaged in the application’s WAR/EAR file, such as with the following Maven dependency: <dependency> <groupId>org.infinispan</groupId> <artifactId>infinispan-cachestore-jpa</artifactId> <version>8.4.0.Final-redhat-2</version> </dependency> Deploy JPA Cache Stores in JBoss EAP 6.3.x and earlier • To add dependencies from the JBoss Data Grid modules to the application’s classpath, provide the JBoss EAP deployer a list of dependencies in one of the following ways: • Add a dependency configuration to the MANIFEST.MF file: Manifest-Version: 1.0 Dependencies: org.infinispan:jdg-7.1 services, org.infinispan.persistence.jpa:jdg-7.1 services • Add a dependency configuration to the jboss-deployment-structure.xml file: <jboss-deployment-structure xmlns="urn:jboss:deployment-structure:1.2"> <deployment> <dependencies> <module name="org.infinispan.persistence.jpa" slot="jdg-7.1" services="export"/> <module name="org.infinispan" slot="jdg-7.1" services="export"/> </dependencies> </deployment> </jboss-deployment-structure> Deploy JPA Cache Stores in JBoss EAP 6.4 and later 1. Add the following property in persistence.xml : <persistence-unit> [...] <properties> <property name="jboss.as.jpa.providerModule" value="application" /> </properties> </persistence-unit> 2. Add the following dependencies to the jboss-deployment-structure.xml : <jboss-deployment-structure> <deployment> <dependencies> <module name="org.infinispan" slot="jdg-7.1"/> <module name="org.jgroups" slot="jdg-7.1"/> <module name="org.infinispan.persistence.jpa" slot="jdg-7.1" services="export"/> <module name="org.hibernate"/> </dependencies> </deployment> </jboss-deployment-structure> 3. Add any additional dependencies, such as additional JDG modules, are in use add these to the dependencies section in jboss-deployment-structure.xml . Important JPA Cache Store is not supported in Apache Karaf in JBoss Data Grid 7.1. ## 21.10. Cassandra Cache Store ### 21.10.1. Cassandra Cache Store Red Hat JBoss Data Grid allows Apache Cassandra to function as a Cache Store, leveraging their distributed database architecture to provide a virtually unlimited, horizontally scalable persistent store for cache entries. In order to use the Cassandra Cache Store an appropriate keyspace must first be created on the Cassandra database. This may either be performed automatically or by enabling the auto-create-keyspace parameter in the cache store configuration. A sample keyspace creation is demonstrated below: CREATE KEYSPACE IF NOT EXISTS Infinispan WITH replication = {'class':'SimpleStrategy', 'replication_factor':1}; CREATE TABLE Infinispan.InfinispanEntries (key blob PRIMARY KEY, value blob, metadata blob); ### 21.10.2. Enabling the Cassandra Cache Store The Cassandra Cache Store is included based on the downloaded distribution. The following indicates where this is located, and steps to enable it if required: • Library Mode - The infinispan-cachestore-cassandra-8.4.0.Final-redhat-2-deployable.jar is included in the jboss-datagrid-${jdg-version}-library/ directory, and may be added to any projects that are using the Cassandra Cache Store.
• Remote Client-Server Mode - The Cassandra Cache Store is prepackaged in the modules/ directory of the server, and may be used by default with no additional configuration necessary.
• JBoss Data Grid modules for JBoss EAP - The Cassandra Cache Store is included in the modules distributed, and may be added by using the org.infinispan.persistence.cassandra as the module name.

### 21.10.3. Cassandra Cache Store Sample XML Configuration (Remote Client-Server Mode)

In Remote Client-Server mode the Cassandra Cache Store is defined by using the class org.infinispan.persistence.cassandra.CassandraStore and defining the properties individually within the store.

The following configuration snippet provides an example on how to define a Cassandra Cache Store inside of an xml file:

<local-cache name="cassandracache">
<locking acquire-timeout="30000" concurrency-level="1000" striping="false"/>
<transaction mode="NONE"/>
<store name="cassstore1"
class="org.infinispan.persistence.cassandra.CassandraStore"
shared="true"
passivation="false">
<property name="autoCreateKeyspace">true</property>
<property name="keyspace">store1</property>
<property name="entryTable">entries1</property>
<property name="consistencyLevel">LOCAL_ONE</property>
<property name="serialConsistencyLevel">SERIAL</property>
<property name="servers">127.0.0.1[9042],127.0.0.1[9041]</property>
<property name="connectionPool.heartbeatIntervalSeconds">30</property>
<property name="connectionPool.idleTimeoutSeconds">120</property>
<property name="connectionPool.poolTimeoutMillis">5</property>
</store>
</local-cache>

### 21.10.4. Cassandra Cache Store Sample XML Configuration (Library Mode)

In Library Mode the Cassandra Cache Store may be configured using two different methods:

• Option 1: Using the same method discussed for Remote Client-Server Mode, found in Cassandra Cache Store Sample XML Configuration (Remote Client-Server Mode).
• Option 2: Using the cassandra-store schema. The following snippet shows an example configuration defining a Cassandra Cache Store:

<cache-container default-cache="cassandracache">
<local-cache name="cassandracache">
<persistence passivation="false">
<cassandra-store xmlns="urn:infinispan:config:store:cassandra:8.2"
auto-create-keyspace="true"
keyspace="Infinispan"
entry-table="InfinispanEntries" shared="true">
<cassandra-server host="127.0.0.1" port="9042" />
<connection-pool heartbeat-interval-seconds="30"
idle-timeout-seconds="120"
pool-timeout-millis="5" />
</cassandra-store>
</persistence>
</local-cache>
</cache-container>

### 21.10.5. Cassandra Configuration Parameters

When defining a backing Cassandra instance in Library Mode one or more cassandra-server elements may be specified in the configuration. Each of the elements has the following properties:

Table 21.1. Cassandra Server Configuration Parameters

Parameter NameDescriptionDefault Value

host

The hostname or ip address of a Cassandra server.

127.0.0.1

port

The port on which the server is listening.

9042

The following properties may be configured on the Cassandra Cache Store:

Table 21.2. Cassandra Configuration Parameter

Parameter NameDescriptionDefault Value

auto-create-keyspace

Determines whether the keyspace and entry table should be automatically created on startup.

true

keyspace

Name of the keyspace to use.

Infinispan

entry-table

Name of the table storing entries.

InfinispanEntries

consistency-level

Consistency level to use for the queries.

LOCAL_ONE

serial-consistency-level

Serial consistency level to use for the queries.

SERIAL

A connection-pool may also be defined with the following elements:

Table 21.3. Connection Pool Configuration Parameters

Parameter NameDescriptionDefault Value

pool-timeout-millis

Time that the driver blocks when no connection from hosts pool is available. After this timeout, the driver will try the next host.

5

heartbeat-interval-seconds

Application-side heartbeat to avoid the connections being dropped when no activity is happening. Set to 0 to disable.

30

idle-timeout-seconds

Timeout before an idle connection is removed.

120

## 21.11. Custom Cache Stores

### 21.11.1. Custom Cache Stores

Custom cache stores are a customized implementation of Red Hat JBoss Data Grid cache stores.

In order to create a custom cache store (or loader), implement all or a subset of the following interfaces based on the need:

• CacheLoader
• CacheWriter
• AdvancedCacheLoader
• AdvancedCacheWriter
• ExternalStore
• AdvancedLoadWriteStore

See Cache Loaders and Cache Writers for individual functions of the interfaces.

Note

If the AdvancedCacheWriter is not implemented, the expired entries cannot be purged or cleared using the given writer.

Note

If the AdvancedCacheLoader is not implemented, the entries stored in the given loader will not be used for preloading.

To migrate the existing cache store to the new API or to write a new store implementation, use SingleFileStore as an example. To view the SingleFileStore example code, download the JBoss Data Grid source code.

Use the following procedure to download SingleFileStore example code from the Customer Portal:

1. To access the Red Hat Customer Portal, navigate to https://access.redhat.com/home in a browser.
3. In the section labeled JBoss Development and Management , click menu:Red Hat JBoss Data Grid[] .
5. From the list of downloadable files, locate Red Hat JBoss Data Grid 7 Source Code and click menu:Download[] . Save and unpack it in a desired location.
6. Locate the SingleFileStore source code by navigating through jboss-datagrid-7.1.0-sources/infinispan-8.4.0.Final-redhat-2-src/core/src/main/java/org/infinispan/persistence/file/SingleFileStore.java .

### 21.11.2. Custom Cache Store Maven Archetype

An easy way to get started with developing a Custom Cache Store is to use the Maven archetype; creating an archetype will generate a new Maven project with the correct directory layout and sample code.

Generate a Maven Archetype

1. Ensure the JBoss Data Grid Maven repository has been installed by following the instructions in the Red Hat JBoss Data Grid Getting Started Guide .
2. Open a command prompt and execute the following command to generate an archetype in the current directory:

mvn -Dmaven.repo.local="path/to/unzipped/jboss-datagrid-7.1.0-maven-repository/"
archetype:generate
-DarchetypeGroupId=org.infinispan
-DarchetypeArtifactId=custom-cache-store-archetype
-DarchetypeVersion=0.0.2.Final-redhat-2
Note

The above command has been broken into multiple lines for readability; however, when executed this command and all arguments must be on a single line.

### 21.11.3. Custom Cache Store Configuration (Remote Client-Server Mode)

#### 21.11.3.1. Custom Cache Store Configuration (Remote Client-Server Mode)

The following is a sample configuration for a custom cache store in Red Hat JBoss Data Grid’s Remote Client-Server mode:

Custom Cache Store Configuration

<distributed-cache name="cacheStore" mode="SYNC" segments="20" owners="2" remote-timeout="30000">
<store class="my.package.CustomCacheStore">
<property name="customStoreProperty">10</property>
</store>
</distributed-cache>

For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Remote Client-Server Mode).

#### 21.11.3.2. Option 1: Add Custom Cache Store using deployments (Remote Client-Server Mode)

Deploy Custom Cache Store .jar file to JDG server using deployments

1. Add the following Java service loader file META-INF/services/org.infinispan.persistence.spi.AdvancedLoadWriteStore to the module and add a reference to the Custom Cache Store Class, such as seen below:

my.package.CustomCacheStore
15. Confirm the bundle has been installed in $JDG_HOME/standalone/deployments. Once the above steps are completed the .jar file will be successfully uploaded and registered by the JDG server. Note The JON plugin has been deprecated in JBoss Data Grid 7.1 and is expected to be removed in a subsequent version. ### 21.11.4. Custom Cache Store Configuration (Library Mode) The following is a sample configuration for a custom cache store in Red Hat JBoss Data Grid’s Library mode: Custom Cache Store Configuration <persistence> <store class="org.infinispan.custom.CustomCacheStore" preload="true" shared="true"> <property name="customStoreProperty">10</property> </store> </persistence> For details about the elements and parameters used in this sample configuration, see Cache Store Configuration Details (Library Mode). Note The Custom Cache Store classes must be in the classpath where Red Hat JBoss Data Grid is used. Most often this is accomplished by packaging the Custom Cache Store in with the application; however, it may also be accomplished by defining the Custom Cache Store as a module to EAP and listed as a dependency, as discussed in the Red Hat JBoss Enterprise Application Platform Administration and Configuration Guide . # Part IX. Set Up Passivation ## Chapter 22. Activation and Passivation Modes ## 22.1. Activation and Passivation Modes Activation is the process of loading an entry into memory and removing it from the cache store. Activation occurs when a thread attempts to access an entry that is in the store but not the memory (namely a passivated entry). Passivation mode allows entries to be stored in the cache store after they are evicted from memory. Passivation prevents unnecessary and potentially expensive writes to the cache store. It is used for entries that are frequently used or referenced and therefore not evicted from memory. While passivation is enabled, the cache store is used as an overflow tank, similar to virtual memory implementation in operating systems that swap memory pages to disk. The passivation flag is used to toggle passivation mode, a mode that stores entries in the cache store only after they are evicted from memory. ## 22.2. Passivation Mode Benefits The primary benefit of passivation mode is that it prevents unnecessary and potentially expensive writes to the cache store. This is particularly useful if an entry is frequently used or referenced and therefore is not evicted from memory. ## 22.3. Configure Passivation In Red Hat JBoss Data Grid’s Remote Client-Server mode, add the passivation parameter to the cache store element to toggle passivation for it: Toggle Passivation in Remote Client-Server Mode <local-cache name="customCache"/> <!-- Additional configuration elements for local-cache here --> <file-store passivation="true" <!-- Additional configuration elements for file-store here --> </local-cache> In Library mode, add the passivation parameter to the persistence element to toggle passivation: Toggle Passivation in Library Mode <persistence passivation="true"> <!-- Additional configuration elements here --> </persistence> ## 22.4. Evication and Passivation ### 22.4.1. Eviction and Passivation To ensure that a single copy of an entry remains, either in memory or in a cache store, use passivation in conjunction with eviction. The primary reason to use passivation instead of a normal cache store is that updating entries require less resources when passivation is in use. This is because passivation does not require an update to the cache store. ### 22.4.2. Eviction and Passivation Usage If the eviction policy caused the eviction of an entry from the cache while passivation is enabled, the following occur as a result: • A notification regarding the passivated entry is emitted to the cache listeners. • The evicted entry is stored. When an attempt to retrieve an evicted entry is made, the entry is lazily loaded into memory from the cache loader. After the entry and its children are loaded, they are removed from the cache loader and a notification regarding the entry’s activation is sent to the cache listeners. ### 22.4.3. Eviction Example when Passivation is Disabled The following example indicates the state of the memory and the persistent store during eviction operations with passivation disabled. Table 22.1. Eviction when Passivation is Disabled StepKey in MemoryKey on Disk Insert keyOne Memory: keyOne Disk: keyOne Insert keyTwo Memory: keyOne, keyTwo Disk: keyOne, keyTwo Eviction thread runs, evicts keyOne Memory: keyTwo Disk: keyOne, keyTwo Read keyOne Memory: keyOne, keyTwo Disk: keyOne, keyTwo Eviction thread runs, evicts keyTwo Memory: keyOne Disk: keyOne, keyTwo Remove keyTwo Memory: keyOne Disk: keyOne ### 22.4.4. Eviction Example when Passivation is Enabled The following example indicates the state of the memory and the persistent store during eviction operations with passivation enabled. Table 22.2. Eviction when Passivation is Enabled StepKey in MemoryKey on Disk Insert keyOne Memory: keyOne Disk: Insert keyTwo Memory: keyOne, keyTwo Disk: Eviction thread runs, evicts keyOne Memory: keyTwo Disk: keyOne Read keyOne Memory: keyOne, keyTwo Disk: Eviction thread runs, evicts keyTwo Memory: keyOne Disk: keyTwo Remove keyTwo Memory: keyOne Disk: # Part X. Set Up Cache Writing ## Chapter 23. Cache Writing Modes ## 23.1. Cache Writing Modes Red Hat JBoss Data Grid presents configuration options with a single or multiple cache stores. This allows it to store data in a persistent location, for example a shared JDBC database or a local file system. JBoss Data Grid supports two caching modes: • Write-Through (Synchronous) • Write-Behind (Asynchronous) ## 23.2. Write-Through Caching ### 23.2.1. Write-Through Caching The Write-Through (or Synchronous) mode in Red Hat JBoss Data Grid ensures that when clients update a cache entry (usually via a Cache.put() invocation), the call does not return until JBoss Data Grid has located and updated the underlying cache store. This feature allows updates to the cache store to be concluded within the client thread boundaries. ### 23.2.2. Write-Through Caching Benefits and Disadvantages Write-Through Caching Benefits The primary advantage of the Write-Through mode is that the cache and cache store are updated simultaneously, which ensures that the cache store remains consistent with the cache contents. Write-Through Caching Disadvantages Due to the cache store being updated simultaneously with the cache entry, there is a possibility of reduced performance for cache operations that occur concurrently with the cache store accesses and updates. ### 23.2.3. Write-Through Caching Configuration (Library Mode) No specific configuration operations are required to configure a Write-Through or synchronous cache store. All cache stores are Write-Through or synchronous unless explicitly marked as Write-Behind or asynchronous. The following procedure demonstrates a sample configuration file of a Write-Through unshared local file cache store. Configure a Write-Through Local File Cache Store <local-cache name="persistentCache"> <persistence> <file-store fetch-state="true" purge="false" shared="false" location="${java.io.tmpdir}"/>
</persistence>
</local-cache>

1. The name parameter specifies the name of the local-cache to use.
2. The fetch-state parameter determines whether the persistent state is fetched when joining a cluster. Set this to true if using a replication and invalidation in a clustered environment. Additionally, if multiple cache stores are chained, only one cache store can have this property enabled. If a shared cache store is used, the cache does not allow a persistent state transfer despite this property being set to true. The fetch-state parameter is false by default.
3. The purge parameter specifies whether the cache is purged when initially started.
4. The shared parameter is used when multiple cache instances share a cache store and is now defined at the cache store level. This parameter can be set to prevent multiple cache instances writing the same modification multiple times. Valid values for this parameter are true and false.

## 23.3. Write-Behind Caching

### 23.3.1. Write-Behind Caching

In Red Hat JBoss Data Grid’s Write-Behind (Asynchronous) mode, cache updates are asynchronously written to the cache store. Asynchronous updates ensure that cache store updates are carried out by a thread different from the client thread interacting with the cache.

One of the foremost advantages of the Write-Behind mode is that the cache operation performance is not affected by the underlying store update. However, because of the asynchronous updates, for a brief period the cache store contains stale data compared to the cache.

### 23.3.2. About Unscheduled Write-Behind Strategy

In the Unscheduled Write-Behind Strategy mode, Red Hat JBoss Enterprise Data Grid attempts to store changes as quickly as possible by applying pending changes in parallel. This results in multiple threads waiting for modifications to conclude. Once these modifications are concluded, the threads become available and the modifications are applied to the underlying cache store.

This strategy is ideal for cache stores with low latency and low operational costs. An example of this is a local unshared file based cache store in which the cache store is local to the cache itself. Using this strategy the period of time where an inconsistency exists between the contents of the cache and the contents of the cache store is reduced to the shortest possible interval.

### 23.3.3. Unscheduled Write-Behind Strategy Configuration (Remote Client-Server Mode)

To set the write-behind strategy in Red Hat JBoss Data Grid’s Remote Client-Server mode, add the write-behind element to the target cache store configuration as follows:

The write-behind Element

<file-store passivation="false"
path="${PATH}" purge="true" shared="false"> <write-behind modification-queue-size="1024" shutdown-timeout="25000" flush-lock-timeout="15000" thread-pool-size="5" /> </file-store> The write-behind element uses the following configuration parameters: 1. The modification-queue-size parameter sets the modification queue size for the asynchronous store. If updates occur faster than the cache store can process the queue, the asynchronous store behaves like a synchronous store. The store behavior remains synchronous and blocks elements until the queue is able to accept them, after which the store behavior becomes asynchronous again. 2. The shutdown-timeout parameter specifies the time in milliseconds after which the cache store is shut down. When the store is stopped some modifications may still need to be applied. Setting a large timeout value will reduce the chance of data loss. The default value for this parameter is 25000. 3. The flush-lock-timeout parameter specifies the time (in milliseconds) to acquire the lock that guards the state to be periodically flushed. The default value for this parameter is 15000. 4. The thread-pool-size parameter specifies the size of the thread pool. The threads in this thread pool apply modifications to the cache store. The default value for this parameter is 5. ### 23.3.4. Unscheduled Write-Behind Strategy Configuration (Library Mode) To enable the write-behind strategy of the cache entries to a store, add the async element to the store configuration as follows: The async Element <persistence> <singleFile location="${LOCATION}">
<async enabled="true"
modificationQueueSize="1024"
shutdownTimeout="25000"
flushLockTimeout="15000"
</singleFile>
</persistence>

1. The async element uses the following configuration parameters: . The modificationQueueSize parameter sets the modification queue size for the asynchronous store. If updates occur faster than the cache store can process the queue, the asynchronous store behaves like a synchronous store. The store behavior remains synchronous and blocks elements until the queue is able to accept them, after which the store behavior becomes asynchronous again.
2. The shutdownTimeout parameter specifies the time in milliseconds after which the cache store is shut down. This provides time for the asynchronous writer to flush data to the store when a cache is shut down. The default value for this parameter is 25000.
3. The flushLockTimeout parameter specifies the time (in milliseconds) to acquire the lock that guards the state to be periodically flushed. The default value for this parameter is 15000.
4. The threadPoolSize parameter specifies the number of threads that concurrently apply modifications to the store. The default value for this parameter is 5.

# Part XI. Monitor Caches and Cache Managers

## 24.1. About Java Management Extensions (JMX)

Java Management Extension (JMX) is a Java based technology that provides tools to manage and monitor applications, devices, system objects, and service oriented networks. Each of these objects is managed, and monitored by MBeans.

JMX is the de facto standard for middleware management and administration. As a result, JMX is used in Red Hat JBoss Data Grid to expose management and statistical information.

## 24.2. Using JMX with Red Hat JBoss Data Grid

Management in Red Hat JBoss Data Grid instances aims to expose as much relevant statistical information as possible. This information allows administrators to view the state of each instance. While a single installation can comprise of tens or hundreds of such instances, it is essential to expose and present the statistical information for each of them in a clear and concise manner.

In JBoss Data Grid, JMX is used in conjunction with JBoss Operations Network (JON) to expose this information and present it in an orderly and relevant manner to the administrator.

## 24.3. JMX Statistic Levels

JMX statistics can be enabled at two levels:

• At the cache level, where management information is generated by individual cache instances.
• At the CacheManager level, where the CacheManager is the entity that governs all cache instances created from it. As a result, the management information is generated for all these cache instances instead of individual caches.
Important

In Red Hat JBoss Data Grid, statistics are enabled by default in Remote Client-Server mode and disabled by default for Library mode. While statistics are useful in assessing the status of JBoss Data Grid, they adversely affect performance and must be disabled if they are not required.

## 24.4. Enable JMX for Cache Instances

At the Cache level, JMX statistics can be enabled either declaratively or programmatically, as follows.

Enable JMX Declaratively at the Cache Level

Add the following snippet within either the <default> element for the default cache instance, or under the target <local-cache> element for a specific cache:

<jmxStatistics enabled="true"/>

## 24.5. Enable JMX for CacheManagers

At the CacheManager level, JMX statistics can be enabled either declaratively or programmatically, as follows.

Enable JMX Declaratively at the CacheManager Level

Add the following in the <global> element to enable JMX declaratively at the CacheManager level:

<globalJmxStatistics enabled="true"/>

## 24.6. Disabling the CacheStore via JMX When Using Rolling Upgrades

Red Hat JBoss Data Grid allows the CacheStore to be disabled via JMX by invoking the disconnectSource operation on the RollingUpgradeManager MBean.

## 24.7. Multiple JMX Domains

Multiple JMX domains are used when multiple CacheManager instances exist on a single virtual machine, or if the names of cache instances in different CacheManagers clash.

To resolve this issue, name each CacheManager in manner that allows it to be easily identified and used by monitoring tools such as JMX and JBoss Operations Network.

Set a CacheManager Name Declaratively

Add the following snippet to the relevant CacheManager configuration:

<globalJmxStatistics enabled="true" cacheManagerName="Hibernate2LC"/>

## 24.8. MBeans

### 24.8.1. MBeans

An MBean represents a manageable resource such as a service, component, device or an application.

Red Hat JBoss Data Grid provides MBeans that monitor and manage multiple aspects. For example, MBeans that provide statistics on the transport layer are provided. If a JBoss Data Grid server is configured with JMX statistics, an MBean that provides information such as the hostname, port, bytes read, bytes written and the number of worker threads exists at the following location:

jboss.infinispan:type=Server,name=<Memcached|Hotrod>,component=Transport

MBeans are available under two JMX domains:

• jboss.as - these MBeans are created by the server subsystem.
• jboss.infinispan - these MBeans are symmetric to those created by embedded mode.

Only the MBeans under jboss.infinispan should be used for Red Hat JBoss Data Grid, as the ones under jboss.as are for Red Hat JBoss Enterprise Application Platform.

Note

A full list of available MBeans, their supported operations and attributes, is available in the Appendix

### 24.8.2. Understanding MBeans

When JMX reporting is enabled at either the Cache Manager or Cache level, use a standard JMX GUI such as JConsole or VisualVM to connect to a Java Virtual Machine running Red Hat JBoss Data Grid. When connected, the following MBeans are available:

• If Cache Manager-level JMX statistics are enabled, an MBean named jboss.infinispan:type=CacheManager,name="DefaultCacheManager" exists, with properties specified by the Cache Manager MBean.
• If the cache-level JMX statistics are enabled, multiple MBeans display depending on the configuration in use. For example, if a write behind cache store is configured, an MBean that exposes properties that belong to the cache store component is displayed. All cache-level MBeans use the same format:

jboss.infinispan:type=Cache,name="<name-of-cache>(<cache-mode>)",manager="<name-of-cache-manager>",component=<component-name>

In this format:

• Specify the default name for the cache using the cache-container element’s default-cache attribute.
• The cache-mode is replaced by the cache mode of the cache. The lower case version of the possible enumeration values represents the cache mode.
• The component-name is replaced by one of the JMX component names from the JMX reference documentation.

As an example, the cache store JMX component MBean for a default cache configured for synchronous distribution would be named as follows:

jboss.infinispan:type=Cache,name="default(dist_sync)", manager="default",component=CacheStore

Each cache and cache manager name is within quotation marks to prevent the use of unsupported characters in these user-defined names.

### 24.8.3. Registering MBeans in Non-Default MBean Servers

The default location where all the MBeans used are registered is the standard JVM MBeanServer platform. Users can set up an alternative MBeanServer instance as well. Implement the MBeanServerLookup interface to ensure that the getMBeanServer() method returns the desired (non default) MBeanServer.

To set up a non default location to register your MBeans, create the implementation and then configure Red Hat JBoss Data Grid with the fully qualified name of the class. An example is as follows:

To Add the Fully Qualified Domain Name Declaratively

<globalJmxStatistics enabled="true" mBeanServerLookup="com.acme.MyMBeanServerLookup"/>

## 25.1. About JBoss Operations Network (JON)

The JBoss Operations Network (JON) is JBoss' administration and management platform used to develop, test, deploy and monitor the application life cycle. JBoss Operations Network is JBoss' enterprise management solution and is recommended for the management of multiple Red Hat JBoss Data Grid instances across servers. JBoss Operations Network’s agent and auto discovery features facilitate monitoring the Cache Manager and Cache instances in JBoss Data Grid. JBoss Operations Network presents graphical views of key runtime parameters and statistics and allows administrators to set thresholds and be notified if usage exceeds or falls under the set thresholds.

Important

In Red Hat JBoss Data Grid Remote Client-Server mode, statistics are enabled by default. While statistics are useful in assessing the status of JBoss Data Grid, they adversely affect performance and must be disabled if they are not required. In JBoss Data Grid Library mode, statistics are disabled by default and must be explicitly enabled when required.

Important

To achieve full functionality of JBoss Operations Network library plugin for JBoss Data Grid’s Library mode, upgrade to JBoss Operations Network 3.3.0 with patch Update 04 or higher. For information on upgrading the JBoss Operations Network, see the Upgrading JBoss ON section in the JBoss Operations Network Installation Guide .

Note

JBoss Data Grid will support the JON plugin until its end of life in June 2019.

### 25.2.1. Prerequisites for Installing JBoss Operations Network (JON)

In order to install JBoss Operations Network in Red Hat JBoss Data Grid, the following is required:

• A Linux, Windows, or Mac OSX operating system, and an x86_64, i686, or ia64 processor.
• Java 6 or higher is required to run both the JBoss Operations Network Server and the JBoss Operations Network Agent.
• Synchronized clocks on JBoss Operations Network Servers and Agents.
• An external database must be installed.

Use the following procedure to download Red Hat JBoss Operations Network (JON) from the Customer Portal:

1. To access the Red Hat Customer Portal, navigate to https://access.redhat.com/home in a browser.
3. In the section labeled JBoss Development and Management , click Red Hat JBoss Data Grid.
5. Select the appropriate version in the Version drop down menu list.

### 25.2.3. Remote JMX Port Values

A port value must be provided to allow Red Hat JBoss Data Grid instances to be located. The value itself can be any available port.

Provide unique (and available) remote JMX ports to run multiple JBoss Data Grid instances on a single machine. A locally running JBoss Operations Network agent can discover each instance using the remote port values.

1. Open http://access.redhat.com in a web browser.
3. Click Red Hat JBoss Operations Network in the list under JBoss Development and Management.

If you intend to use the JBoss Operations Network plugin for JBoss Data Grid, select JBoss ON for Data Grid from either the Product drop-down box, or the menu on the left.

If you intend to use the JBoss Operations Network plugin for JBoss Enterprise Web Server, select JBoss ON for Web Server from either the Product drop-down box, or the menu on the left.

1. Click the Red Hat JBoss Operations Network VERSION Base Distribution Download button.
2. Repeat the steps to download the Data Grid Management Plugin Pack for JBoss ON VERSION

## 25.3. JBoss Operations Network Server Installation

The core of JBoss Operations Network is the server, which communicates with agents, maintains the inventory, manages resource settings, interacts with content providers, and provides a central management UI.

Note

For more detailed information about configuring JBoss Operations Network, see the JBoss Operations Network Installation Guide .

## 25.4. JBoss Operations Network Agent

The JBoss Operations Network Agent is a standalone Java application. Only one agent is required per machine, regardless of how many resources you require the agent to manage.

The JBoss Operations Network Agent does not ship fully configured. Once the agent has been installed and configured it can be run as a Windows service from a console, or run as a daemon or init.d script in a UNIX environment.

A JBoss Operations Network Agent must be installed on each of the machines being monitored in order to collect data.

The JBoss Operations Network Agent is typically installed on the same machine on which Red Hat JBoss Data Grid is running, however where there are multiple machines an agent must be installed on each machine.

Note

For more detailed information about configuring JBoss Operations Network agents, see the JBoss Operations Network Installation Guide .

## 25.5. JBoss Operations Network for Remote Client-Server Mode

### 25.5.1. JBoss Operations Network for Remote Client-Server Mode

In Red Hat JBoss Data Grid’s Remote Client-Server mode, the JBoss Operations Network plug-in is used to

• initiate and perform installation and configuration operations.
• monitor resources and their metrics.

In Remote Client-Server mode, the JBoss Operations Network plug-in uses JBoss Enterprise Application Platform’s management protocol to obtain metrics and perform operations on the JBoss Data Grid server.

### 25.5.2. Installing the JBoss Operations Network Plug-in (Remote Client-Server Mode)

The following procedure details how to install the JBoss Operations Network plug-ins for Red Hat JBoss Data Grid’s Remote Client-Server mode.

1. Install the plug-ins

1. Copy the JBoss Data Grid server rhq plug-in to $JON_SERVER_HOME/plugins . 2. Copy the JBoss Enterprise Application Platform plug-in to$JON_SERVER_HOME/plugins .

The server will automatically discover plug-ins here and deploy them. The plug-ins will be removed from the plug-ins directory after successful deployment.

2. Obtain plug-ins

Obtain all available plug-ins from the JBoss Operations Network server. To do this, type the following into the agent’s console:

plugins update
3. List installed plug-ins

Ensure the JBoss Enterprise Application Platform plug-in and the JBoss Data Grid server rhq plug-in are installed correctly using the following:

plugins info

JBoss Operation Network can now discover running JBoss Data Grid servers.

## 25.6. JBoss Operations Network Remote-Client Server Plugin

### 25.6.1. JBoss Operations Network Plugin Metrics

Table 25.1. JBoss Operations Network Traits for the Cache Container (Cache Manager)

Trait NameDisplay NameDescription

cache-manager-status

Cache Container Status

The current runtime status of a cache container.

cluster-name

Cluster Name

The name of the cluster.

members

Cluster Members

The names of the members of the cluster.

version

Version

The cache manager version.

defined-cache-names

Defined Cache Names

The caches that have been defined for this manager.

Table 25.2. JBoss Operations Network Metrics for the Cache Container (Cache Manager)

Metric NameDisplay NameDescription

cluster-size

Cluster Size

How many members are in the cluster.

defined-cache-count

Defined Cache Count

How many caches that have been defined for this manager.

running-cache-count

Running Cache Count

How many caches are running under this manager.

created-cache-count

Created Cache Count

How many caches have actually been created under this manager.

Table 25.3. JBoss Operations Network Traits for the Cache

Trait NameDisplay NameDescription

cache-status

Cache Status

The current runtime status of a cache.

cache-name

Cache Name

The current name of the cache.

version

Version

The cache version.

Table 25.4. JBoss Operations Network Metrics for the Cache

Metric NameDisplay NameDescription

cache-status

Cache Status

The current runtime status of a cache.

number-of-locks-available

[LockManager] Number of locks available

The number of exclusive locks that are currently available.

concurrency-level

[LockManager] Concurrency level

The LockManager’s configured concurrency level.

Average number of milliseconds required for a read operation on the cache to complete.

hit-ratio

[Statistics] Hit ratio

The result (in percentage) when the number of hits (successful attempts) is divided by the total number of attempts.

elapsed-time

[Statistics] Seconds since cache started

The number of seconds since the cache started.

The read/write ratio (in percentage) for the cache.

average-write-time

[Statistics] Average write time

Average number of milliseconds a write operation on a cache requires to complete.

hits

[Statistics] Number of cache hits

Number of cache hits.

evictions

[Statistics] Number of cache evictions

Number of cache eviction operations.

remove-misses

[Statistics] Number of cache removal misses

time-since-reset

[Statistics] Seconds since cache statistics were reset

Number of seconds since the last cache statistics reset.

number-of-entries

[Statistics] Number of current cache entries

Number of entries currently in the cache.

stores

[Statistics] Number of cache puts

Number of cache put operations

remove-hits

[Statistics] Number of cache removal hits

Number of cache removal operation hits.

misses

[Statistics] Number of cache misses

Number of cache misses.

success-ratio

[RpcManager] Successful replication ratio

Successful replications as a ratio of total replications in numeric double format.

replication-count

[RpcManager] Number of successful replications

Number of successful replications

replication-failures

[RpcManager] Number of failed replications

Number of failed replications

average-replication-time

[RpcManager] Average time spent in the transport layer

The average time (in milliseconds) spent in the transport layer.

commits

[Transactions] Commits

Number of transaction commits performed since the last reset.

prepares

[Transactions] Prepares

Number of transaction prepares performed since the last reset.

rollbacks

[Transactions] Rollbacks

Number of transaction rollbacks performed since the last reset.

invalidations

[Invalidation] Number of invalidations

Number of invalidations.

passivations

[Passivation] Number of cache passivations

Number of passivation events.

activations

[Activations] Number of cache entries activated

Number of activation events.

[Activation] Number of cache store loads

Number of entries loaded from the cache store.

[Activation] Number of cache store misses

Number of entries that did not exist in the cache store.

[CacheStore] Number of cache store stores

Number of entries stored in the cache stores.

Note

Gathering of some of these statistics is disabled by default.

JBoss Operations Network Metrics for Connectors

The metrics provided by the JBoss Operations Network (JON) plugin for Red Hat JBoss Data Grid are for REST and Hot Rod endpoints only. For the REST protocol, the data must be taken from the Web subsystem metrics. For details about each of these endpoints, see the Getting Started Guide.

Table 25.5. JBoss Operations Network Metrics for the Connectors

Metric NameDisplay NameDescription

bytesWritten

Bytes Written

Number of bytes written.

Note

Gathering of these statistics is disabled by default.

### 25.6.2. JBoss Operations Network Plugin Operations

Table 25.6. JBoss ON Plugin Operations for the Cache

Operation NameDescription

Start Cache

Starts the cache.

Stop Cache

Stops the cache.

Clear Cache

Clears the cache contents.

Reset Statistics

Resets statistics gathered by the cache.

Reset Activation Statistics

Resets activation statistics gathered by the cache.

Reset Invalidation Statistics

Resets invalidations statistics gathered by the cache.

Reset Passivation Statistics

Resets passivation statistics gathered by the cache.

Reset Rpc Statistics

Resets replication statistics gathered by the cache.

Remove Cache

Removes the given cache from the cache-container.

Record Known Global Keyset

Records the global known keyset to a well-known key for retrieval by the upgrade process.

Synchronize Data

Synchronizes data from the old cluster to this using the specified migrator.

Disconnect Source

Disconnects the target cluster from the source cluster according to the specified migrator.

JBoss Operations Network Plugin Operations for the Cache Backups

The cache backups used for these operations are configured using cross-datacenter replication. In the JBoss Operations Network (JON) User Interface, each cache backup is the child of a cache. For more information about cross-datacenter replication, see Set Up Cross-Datacenter Replication.

Table 25.7. JBoss Operations Network Plugin Operations for the Cache Backups

Operation NameDescription

status

Display the site status.

bring-site-online

Brings the site online.

take-site-offline

Takes the site offline.

Cache (Transactions)

Red Hat JBoss Data Grid does not support using Transactions in Remote Client-Server mode. As a result, none of the endpoints can use transactions.

### 25.6.3. JBoss Operations Network Plugin Attributes

Table 25.8. JBoss ON Plugin Attributes for the Cache (Transport)

Attribute NameTypeDescription

cluster

string

The name of the group communication cluster.

executor

string

The executor used for the transport.

lock-timeout

long

The timeout period for locks on the transport. The default value is 240000.

machine

string

A machine identifier for the transport.

rack

string

A rack identifier for the transport.

site

string

A site identifier for the transport.

stack

string

The JGroups stack used for the transport.

### 25.6.4. Create a New Cache Using JBoss Operations Network (JON)

Use the following steps to create a new cache using JBoss Operations Network (JON) for Remote Client-Server mode.

Creating a new cache in Remote Client-Server mode

1. From the JBoss Operations Network console, click Inventory.
2. Select Servers from the Resources list on the left of the console.
2. Select the specific Red Hat JBoss Data Grid server from the servers list.

1. Below the server name, click infinispan and then Cache Containers.
3. Select the desired cache container that will be parent for the newly created cache.

1. Right-click the selected cache container. For example, clustered.
2. In the context menu, navigate to Create Child and select Cache.
4. Create a new cache in the resource create wizard.

1. Enter the new cache name and click Next.
2. Set the cache attributes in the Deployment Options and click Finish.
Note

Refresh the view of caches in order to see newly added resource. It may take several minutes for the Resource to show up in the Inventory.

## 25.7. JBoss Operations Network for Library Mode

### 25.7.1. JBoss Operations Network for Library Mode

In Red Hat JBoss Data Grid’s Library mode, the JBoss Operations Network plug-in is used to

• initiate and perform installation and configuration operations.
• monitor resources and their metrics.

In Library mode, the JBoss Operations Network plug-in uses JMX to obtain metrics and perform operations on an application using the JBoss Data Grid library.

### 25.7.2. Installing the JBoss Operations Network Plug-in (Library Mode)

Use the following procedure to install the JBoss Operations Network plug-in for Red Hat JBoss Data Grid’s Library mode.

Install JBoss Operations Network Library Mode Plug-in

1. Open the JBoss Operations Network Console

1. From the JBoss Operations Network console, select Administration.
2. Select Agent Plugins from the Configuration options on the left side of the console.
2. Upload the Library Mode Plug-in

1. Click Browse, locate the InfinispanPlugin on your local file system.
2. Click Upload to add the plug-in to the JBoss Operations Network Server.

1. Once the file has successfully uploaded, click Scan For Updates at the bottom of the screen.
2. The InfinispanPlugin will now appear in the list of installed plug-ins.

### 25.7.3. Monitoring of JBoss Data Grid Instances in Library Mode

#### 25.7.3.1. Prerequisites

The following is a list of common prerequisites for Monitor an Application Deployed in Standalone Mode, Monitor an Application Deployed in Domain Mode, and Manually Adding JBoss Data Grid Instances in Library Mode.

• A correctly configured instance of JBoss Operations Network (JON) 3.2.0 with patch Update 02 or higher version.
• A running instance of JON Agent on the server where the application will run. For more information, see JBoss Operations Network Agent.
• An operational instance of the RHQ agent with a full JDK. Ensure that the agent has access to the tools.jar file from the JDK in particular. In the JON agent’s environment file (bin/rhq-env.sh ), set the value of the RHQ_AGENT_JAVA_HOME property to point to a full JDK home.
• The RHQ agent must have been initiated using the same user as the JBoss Enterprise Application Platform instance. As an example, running the JON agent as a user with root privileges and the JBoss Enterprise Application Platform process under a different user does not work as expected and must be avoided.
• An installed JON plugin for JBoss Data GridLibrary Mode. For more information, see Installing the JBoss Operations Network Plug-in (Library Mode)
• Generic JMX plugin from JBoss Operation Networks 3.2.0 with patch Update 02 or better version in use.
• A custom application using Red Hat JBoss Data Grid’s Library mode with enabled JMX statistics for library mode caches in order to make statistics and monitoring working. For details how to enable JMX statistics for cache instances, see Enable JMX for Cache Instances and to enable JMX for cache managers see Enable JMX for CacheManagers.
• The Java Virtual Machine (JVM) must be configured to expose the JMX MBean Server. For the Oracle/Sun JDK, see http://docs.oracle.com/javase/1.5.0/docs/guide/management/agent.html
• A correctly added and configured management user for JBoss Enterprise Application Platform.

#### 25.7.3.2. Manually Adding JBoss Data Grid Instances in Library Mode

To add Red Hat JBoss Data Grid instances to JBoss Operations Network manually, use the following procedure in the JBoss Operations Network interface.

Add JBoss Data Grid Instances in Library Mode

1. Import the Platform

1. Navigate to the Inventory and select Discovery Queue from the Resources list on the left of the console.
2. Select the platform on which the application is running and click Import at the bottom of the screen.
2. Access the Servers on the Platform

1. The jdg Platform now appears in the Platforms list.
2. Click on the Platform to access the servers that are running on it.
3. Import the JMX Server

1. From the Inventory tab, select Child Resources.
2. Click the Import button at the bottom of the screen and select the JMX Server** option from the list.
4. Enable JDK Connection Settings

1. In the Resource Import Wizard window, specify JDK 8 from the list of Connection Settings Template options.

1. In the Deployment Options menu, modify the supplied Connector Address with the hostname and JMX port of the process containing the Infinispan Library.
2. Enter the JMX connector address of the new JBoss Data Grid instance you want to monitor. For example:

service:jmx:rmi://127.0.0.1/jndi/rmi://127.0.0.1:7997/jmxrmi
Note

The connector address varies depending on the host and the JMX port assigned to the new instance. In this case, instances require the following system properties at start up:

-Dcom.sun.management.jmxremote.port=7997 -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.authenticate=false
3. Specify the Principal and Credentials information if required.
4. Click Finish.
6. View Cache Statistics and Operations

1. Click Refresh to refresh the list of servers.
2. The JMX Servers tree in the panel on the left side of the screen contains the Infinispan Cache Managers node, which contains the available cache managers. The available cache managers contain the available caches.
3. Select a cache from the available caches to view metrics.
4. Select the Monitoring tab.
5. The Tables view shows statistics and metrics.
6. The Operations tab provides access to the various operations that can be performed on the services.

#### 25.7.3.3. Monitor Custom Applications Using Library Mode Deployed On JBoss Enterprise Application Platform

##### 25.7.3.3.1. Monitor an Application Deployed in Standalone Mode

Use the following instructions to monitor an application deployed in JBoss Enterprise Application Platform using its standalone mode:

Monitor an Application Deployed in Standalone Mode

1. Start the JBoss Enterprise Application Platform Instance

Start the JBoss Enterprise Application Platform instance as follows:

1. Enter the following command at the command line or change standalone configuration file (/bin/standalone.conf ) respectively:

JAVA_OPTS="$JAVA_OPTS -Dorg.rhq.resourceKey=MyEAP" 2. Start the JBoss Enterprise Application Platform instance in standalone mode as follows: $JBOSS_HOME/bin/standalone.sh
2. Deploy the Red Hat JBoss Data Grid Application

Deploy the WAR file that contains the JBoss Data Grid Library mode application with globalJmxStatistics and jmxStatistics enabled.

3. Run JBoss Operations Network (JON) Discovery

Run the discovery --full command in the JBoss Operations Network (JON) agent.

4. Locate Application Server Process

In the JBoss Operations Network (JON) web interface, the JBoss Enterprise Application Platform process is listed as a JMX server.

5. Import the Process Into Inventory

Import the process into the JBoss Operations Network (JON) inventory.

6. Optional: Run Discovery Again

If required, run the discovery --full command again to discover the new resources.

##### 25.7.3.3.2. Monitor an Application Deployed in Domain Mode

Use the following instructions to monitor an application deployed in JBoss Enterprise Application Platform 6 using its domain mode:

Monitor an Application Deployed in Domain Mode

1. Edit the Host Configuration

Edit the domain/configuration/host.xml file to replace the server element with the following configuration:

<servers>
<server name="server-one" group="main-server-group">
<jvm name="default">
<jvm-options>
<option value="-Dorg.rhq.resourceKey=EAP1"/>
</jvm-options>
</jvm>
</server>
<server name="server-two" group="main-server-group" auto-start="true">
<socket-bindings port-offset="150"/>
<jvm name="default">
<jvm-options>
<option value="-Dorg.rhq.resourceKey=EAP2"/>
</jvm-options>
</jvm>
</server>
</servers>
2. Start JBoss Enterprise Application Platform 6

Start JBoss Enterprise Application Platform 6 in domain mode:

### 26.3.3. Logging in the JBoss Data Grid Administration Console

Once the JBoss Data Grid server is running, in either domain or standalone mode, the JBoss Data Grid Administration Console may be accessed at the following login page:

http://${jboss.bind.address.management}:9990/console/index.html Enter the user credentials to log in. After logging in, the cache container view is displayed. ## 26.4. Dashboard View ### 26.4.1. Dashboard View The Dashboard view is split into 3 tabs namely: • Caches • Clusters • Status Events Note The Clusters and Status Events tabs are not available when running JBoss Data Grid in standalone non-clustered mode. ### 26.4.2. Cache Containers View The first default view after logging in is the Cache Container list. A Cache Container is the primary mechanism for treating a cache instance and is used as a starting point for using a cache itself. Cache centric view presents the list of configured caches. It is used for viewing and adding caches to clusters, adding and adjusting new cache configurations, adding and configuring endpoints and other cache related administrative tasks. In this instance, there is one cache container with the name clustered with two caches deployed on the cluster group with UDP transport and three Endpoints attached to it. There are no remote sites configured for this cache container. ### 26.4.3. Clusters View The Cluster tab presents the summary of the clusters along with the current status, number of hosts and number of nodes. Note The Cluster view will not appear when the server is running in standalone non-clustered mode. ### 26.4.4. Status Events View The JBoss Data Grid Administration Console displays the cluster wide events such as local rebalancing, cluster start and stop, cluster-split and cluster-merge events in a consolidated section. To view the detailed status events, navigate to the Status Events tab from the Dashboard. The status events are displayed with the associated timestamp and the event description. Note The Status Events view will not appear when the server is running in standalone non-clustered mode. ## 26.5. Cache Administration ### 26.5.1. Adding a New Cache To add a new cache, follow these steps: Adding a New Cache 1. In the Cache Containers view, click on the name of the cache container. 2. The Caches view is displayed listing all the configured caches. Click Add Cache to add and configure a new cache. The new cache creation window is opened. 3. Enter the new cache name, select the base configuration template from the drop-down menu, check the Edit button, and click Next. If the Edit button is not selected then the cache will be immediately created using the selected template. 4. The cache configuration screen is displayed. Enter the cache parameters and click Create. 5. A confirmation screen is displayed. Click Create to create the cache. ### 26.5.2. Editing Cache Configuration The JBoss Data Grid Administration Console allows administrators to edit the configuration of an existing cache. The following procedure outlines the steps to edit a cache configuration: Editing Cache Configuration 1. Log into the JBoss Data Grid Administration Console and click on the cache container name. 2. In the Caches view, click on the cache name. 3. The cache statistics and properties page is displayed. On the right hand side, click the Configuration tab. 4. The edit cache configuration interface is opened. The editable cache properties are found in the cache properties menu at the left hand side. 5. Select the cache configuration property to be edited from the cache properties menu along the left-hand side. To get a description on the cache configuration parameters, hover the cursor over the information icon to the right of each field. The parameter description is presented in form of a tooltip. 6. The General property is selected by default. Edit the required values in the given parameter input fields and click Apply changes below 7. The restart dialogue box appears. Click Restart Now to apply the changes, or Restart Later to continue editing the cache properties. Note In standalone mode the dialog instead contains the following text: Config changes will only be made available after you manually restart the server! ### 26.5.3. Cache Statistics and Properties View The JBoss Data Grid Administration Console allows administrators to view all the cache statistics including the average time for reads, average times for writes, total number of entries, total number of reads, total number of failed reads and total number of writes. To view the cache statistics, follow these steps: Viewing Cache Statistics 1. Navigate to the list of caches by clicking on the name of the cache container in the Cache Container view. 2. Click on the name of the cache from the list of caches. Optionally you can use the cache filter on the left side to filter caches. The caches can be filtered by a keyword, substring or by selecting the type, the trait, and the status. 3. The next page displays the comprehensive cache statistics under the headings: Cache content, Operations performance and Caching Activity. 4. Additional cache statistics are displayed under the headings: Entries Lifecycle, Cache Loader and Locking 5. To view cache properties, click on Configuration at the right hand side. 6. The cache properties menu is displayed at the left hand side. To view on which node a cache resides, click on the Nodes tab next to the General Status tab on the cache statistics page. The name of the Node(s) is displayed along with the read-write statistics. ### 26.5.4. Enable and Disable Caches The following procedure outlines the steps to disable a cache: Disabling a Cache 1. Navigate to the caches view by clicking on the name of the cache container in the Cache Container view. Click on the name of the cache to be disabled. 2. The cache statistics will be displayed. On the right hand side of the interface, click on the Actions tab and then click Disable. 3. A confirmation dialogue box will appear. Click Disable to disable the cache. 4. A subsequent dialogue box appears. Click Ok. 5. The selected cache is disabled successfully with a visual indicator Disabled next to the cache name label. The following procedure outlines the steps to enable a cache: Enabling a Cache 1. To enable a cache, click on the specific disabled cache from the Cache view. 2. On the right hand side of the interface, click on the Actions tab. 3. From the Actions tab, click Enable 4. A confirmation dialogue box appears. Click Enable. 5. A subsequent dialogue box appears. Click Ok 6. The selected cache is enabled successfully with a visual indicator Enabled next to the cache name label. ### 26.5.5. Cache Flush and Clear The JBoss Data Grid Administration Console allows administrators to remove all the entries from a cache and the cache stores through the cache Clear operation. The console also provides the Flush operation to store the entries from the cache memory to the cache store. These entries are not removed from the cache memory, as during a Clear operation. ##### Flushing a Cache To flush a cache, follow these steps: Flushing a Cache 1. In the Cache Containers view, click on the name of the cache container. 2. The Caches view is displayed. Click on the cache to be flushed. 3. The cache statistics page is displayed. At the right hand side, click Actions. 4. From the Actions menu, click Flush. 5. A confirmation dialogue box appears. Click Flush. 6. The cache is successfully flushed. Click Ok. ##### Clearing a Cache To clear a cache, follow these steps: Clearing a Cache 1. In the Cache Containers view, click on the name of the cache container. 2. The Caches view is displayed. Click on the cache to be cleared. 3. On the cache statistics page, at the right hand side, click Actions. 4. From the Actions menu, click Clear. 5. A confirmation dialogue box appears. Click Clear. 6. The cache is successfully cleared. Click Ok. ### 26.5.6. Server Tasks Execution The JBoss Data Grid Administration Console allows administrators to start a server script job on the JBoss Data Grid cluster. ### 26.5.7. Server Tasks #### 26.5.7.1. New Server Task The following procedure outlines the steps to launch a new server task: Note Launching a new task is not supported if the server is running in standalone non-clustered mode. Launching a New Server Task 1. In the Cache Containers view of the JBoss Data Grid Administration Console, click on the name of the Cache container. 2. On the cache view page, click the Task Execution tab. 3. In the Tasks execution tab, click Launch new task. 4. Enter the new task properties and click Launch task. #### 26.5.7.2. Server Tasks View After the server task is launched, it can be viewed in the Task execution tab along with the other running tasks. The set of completed server script jobs with the start time and end time can be viewed. Additionally, number of successful executions and number of failed executions can also be viewed. ## 26.6. Cache Container Configuration ### 26.6.1. Cache Container Configuration The JBoss Data Grid Administration Console allows users to view and set Cache Container level settings such as transport, thread pools, security, cache templates, deployment of remote Executables/Scripts. Each cache container is associated with a cluster. The following procedure outlines the steps to aceess the Cache Container Configuration settings: Accessing Cache Container Configuration Settings 1. In the Cache Container View, click on the name of the cache container. 2. Click Configuration setting button at the top right hand side of the interface. The Cache Container Configuration interface is displayed. ### 26.6.2. Defining Protocol Buffer Schema A Protocol Buffer Schema is defined in the Cache Container Configuration interface. The following procedure outlines the steps to define a protobuf schema: Defining a Protobuf Schema 1. Click Add at the right hand side of the Schema tab to launch the create schema window. 2. Enter the schema name and the schema in the respective fields and click Create Schema. 3. The protocol buffer schema is added. ### 26.6.3. Transport Setting To access the Transport setting, click on the Transport tab in the Cache Container Configuration interface. Enter the Transport settings and click Save . A dialog box will prompt to restart the server due to configuration changes. Restart to apply the changes. ### 26.6.4. Defining Thread Pools To define thread pools for different cache related operations, click on the Thread Pools tab in the Cache Container Configuration interface. The JBoss Data Grid Administration Console allows administrators to set Thread Pool values for the following cache level operations: Async Operations The currently set value for each parameter is set by the console. Hover the cursor over the information icon to view the parameter description in form of a tooltip. To change a thread pool value, enter the new value in the parameter field and click Save . A server restart is needed after every change of values. Expiration For Expiration settings, the user can set values for the following parameters: Listener For Listener settings, the user can set values for the following parameters: Persistence For Persistence settings, the user can set values for the following parameters: Remote Commands For Remote Commands settings, the user can set values for the following parameters: Replication Queue For Replication Queue settings, the user can set values for the following parameters: State Transfer For Listener settings, the user can set values for the following parameters: Transport For Transport settings, the user can set values for the following parameters: ### 26.6.5. Adding New Security Role The following procedure outlines the steps to add a new security role: Adding a Security Role 1. Click on the Security tab. If authorization is not defined for a cache container, click Yes to define. 2. Select the Role Mapper from the drop-down menu. Click Add to launch the permissions window. 3. In the Permissions window, enter the name of the new role and assign the permissions by checking the required check-boxes. Click Save changes to save the role. 4. The new security role is added. ### 26.6.6. Creating Cache Configuration Template The Templates tab in the Cache Container Configuration interface lists all the configured and available cache templates. The following procedure outlines the steps to create a new Cache configuration template : Creating New Cache Configuration Template 1. Click Create new Template on the right hand side of the templates list. 2. Enter the cache configuration template name and select the base configuration from the drop-down and click Next. 3. Set the cache template attributes for the various cache operations such as Locking, Expiration, Indexing and others. 4. After entering the values, click Create to create the Cache Template. ## 26.7. Cluster Administration ### 26.7.1. Cluster Nodes View Clusters centric view allows to view the nodes created for each server group and the list of deployed servers can be viewed. In Clusters view, you can add new nodes to the cluster group and view performance metrics of the particular nodes. Note The Cluster view will not appear when the server is running in standalone non-clustered mode. When running in standalone clustered mode the Cluster view will be displayed, but no operations on cluster nodes may be performed. To access the Clusters view, navigate to the Clusters tab from the Dashboard and click on the name of the cluster. ### 26.7.2. Cluster Nodes Mismatch The total number of server nodes on the JBoss Data Grid cluster should ideally match the number of nodes shown in the JBoss Data Grid Administration Console. If in case, due to some reason, the expected nodes in the console do not match with the exact number of nodes on the JBoss Data Grid physical cluster, the console issues a mismatch warning by displaying the number of nodes detected and the number of expected nodes. Knowing the expected number of server nodes helps in handling Network Partitions. If nodes mismatch occurs, it can be viewed in the clusters view, above the list of nodes as a warning. To access the Clusters view, navigate to the Clusters tab from the Dashboard and click on the name of the cluster. In the following screen, the Console alerts the user in the form of a warning. The expected number of server nodes are 5 but only 3 are detected by the console. ### 26.7.3. Cluster Rebalancing The Red Hat JBoss Data Grid Administration Console allows the user to enable and disable cluster rebalancing at the cache container and cache levels. Note Cluster rebalancing is enabled by default. The following procedure outlines the steps to enable and disable cluster rebalancing at a cache container level : Enable and Disable Rebalancing 1. From the cache container view, click on the name of the cache container. 2. In the caches view, at the right hand side, click on Actions. 3. A callout menu is opened. Click Disable Rebalancing. 4. A confirmation dialogue box appears. Click Accept. 5. Cluster rebalancing is successfully disabled. 6. To enable rebalancing, click Actions Enable Rebalancing. 7. A confirmation dialogue box appears. Click Accept. Rebalancing is successfully enabled. The following procedure outlines the steps to enable and disable cluster rebalancing at a cache level : Enable and Disable Rebalancing 1. From the cache container view, click on the name of the cache container. 2. In the caches view, click on a specific cache. 3. The cache statistics page is displayed. At the right hand side, click Actions. 4. From the callout menu, click Disable Rebalance. 5. A confirmation dialogue box appears. Click Disable Rebalance. 6. The rebalancing for the cache is successfully disabled. 7. To enable cache level rebalancing, click Enable rebalance from the Actions menu. 8. A confirmation dialogue box appears. Click Enable rebalance. The rebalancing for the cache is successfully enabled. ### 26.7.4. Cluster Partition Handling The JBoss Data Grid Administration Console alerts the user with a visual warning when the cluster changes state to DEGRADED . The assumed causes for a DEGRADED cluster are occurence of a network partition, unreachable node(s) or unexpected extra nodes. The visual warning is displayed in the Clusters view. To access the Clusters view, navigate to the Clusters tab from the Dashboard and click on the name of the cluster. In the following screen, the visual warning DEGRADED is displayed next to the cluster name JDG Cluster #1. This visual warning for a DEGRADED cluster is shown at Cluster, Cache Container, and Cache levels of the console. ### 26.7.5. Cluster Events The JBoss Data Grid Console displays the cluster wide events such as cluster-split and cluster-merge events in a consolidated section. Note Cluster Events are not available when the server is running in standalone non-clustered mode. Along with the cluster events, the console displays the timestamp of the associated event. Cluster events can be viewed in the Cache containers page, the Clusters view page and also in the Status Events tab of the Dashboard. To view cluster events on the cache containers page, navigate to the default cache containers view which is the default landing interface after logging into the console. The Cluster events are displayed at the right hand side in a consolidated section under the title Latest Grid Events To view the cluster events on the Clusters view page, navigate to the Clusters view by clicking on the Clusters tab. The Cluster events are displayed at the right hand side in a consolidated section under the title Latest status Events ### 26.7.6. Adding Node The JBoss Data Grid Administration Console allows administrators to configure new nodes. The following procedure outlines the steps to add a new Node: Adding a New Node 1. In the Dashboard view, click Cluster tab. 2. Click on the name of the cluster where the new node has to be added. 3. Click Add Node. 4. The node configuration window is opened. Enter the node properties in the respective fields and click Create 5. The system boots up. 6. The new node is successfully created. ### 26.7.7. Node Statistics and Properties View JBoss Data Grid Administration Console allows users to view the average time for reads, average times for writes, total number of entries, total number of reads, total number of failed reads, total number of writes and other data. To view the Node statistics, click on the name of the Node in the Clusters tab on the JBoss Data Grid Administration Console. ### 26.7.8. Node Performance Metrics View To view the Node performance metrics, click on the name of the node in the Clusters tab of the JBoss Data Grid Administration Console ### 26.7.9. Disabling a Node The JBoss Data Grid Administration Console allows administrators to disable nodes. To disable a node of a cluster, follow these steps: Adding a New Node 1. Click on the name of the cluster in the Cluster View of the JBoss Data Grid Administration Console. 2. In the Nodes view, click on the node to be disabled. 3. The Node statistics view is opened. Click on the Actions tab located at the right hand side of the page and then click Stop. 4. A confirmation box appears. Click Stop to shut down the node. ### 26.7.10. Cluster Shutdown and Restart #### 26.7.10.1. Cluster Shutdown JBoss Data Grid Administration Console allows convenient and controlled shutdown of JBoss Data Grid clusters for maintenance purposes. For caches with a configured cache store, the data will be persisted without any data loss.For caches without a configured cache store, data will be lost after cluster shutdown. To shut down or stop a cluster, follow these steps: Shutting Down Cluster 1. Navigate to the Clusters view in the JBoss Data Grid Administration console and click on the name of the cluster. 2. On the Nodes view page, locate the Actions tab to the top right hand side of the interface. Click on Actions tab and then click Stop. 3. A confirmation box will appear. To confirm, click Stop. #### 26.7.10.2. Cluster Start JBoss Data Grid Administration Console allows restarting a stopped cluster. The cache data is preloaded without any data loss for caches with configured cache-store. Caches without a configured cache store, will initially contain no data. Preloading will only happen if preload is enabled on the cache store. If the local cache state on one of the nodes is corrupt, the cache will not start and manual intervention will be required. To a cluster, follow these steps: Starting Cluster 1. Navigate to the Clusters view in the JBoss Data Grid Administration console and click on the name of the cluster. 2. On the Nodes view page, locate the Actions tab to the top right hand side of the interface. Click on Actions tab and then click Start. 3. A confirmation box will appear. Click Start to start the cluster. # Part XIII. Securing Data in Red Hat JBoss Data Grid ## Chapter 27. Introduction ## 27.1. Securing Data in Red Hat JBoss Data Grid In Red Hat JBoss Data Grid, data security can be implemented in the following ways: Role-based Access Control JBoss Data Grid features role-based access control for operations on designated secured caches. Roles can be assigned to users who access your application, with roles mapped to permissions for cache and cache-manager operations. Only authenticated users are able to perform the operations that are authorized for their role. In Library mode, data is secured via role-based access control for CacheManagers and Caches, with authentication delegated to the container or application. In Remote Client-Server mode, JBoss Data Grid is secured by passing identity tokens from the Hot Rod client to the server, and role-based access control of Caches and CacheManagers. Node Authentication and Authorization Node-level security requires new nodes or merging partitions to authenticate before joining a cluster. Only authenticated nodes that are authorized to join the cluster are permitted to do so. This provides data protection by preventing unauthorized servers from storing your data. Encrypted Communications Within the Cluster JBoss Data Grid increases data security by supporting encrypted communications between the nodes in a cluster by using a user-specified cryptography algorithm, as supported by Java Cryptography Architecture (JCA). JBoss Data Grid also provides audit logging for operations, and the ability to encrypt communication between the Hot Rod Client and Server using Transport Layer Security (TLS/SSL). ## Chapter 28. Red Hat JBoss Data Grid Security: Authorization and Authentication ## 28.1. Red Hat JBoss Data Grid Security: Authorization and Authentication Red Hat JBoss Data Grid is able to perform authorization on CacheManagers and Caches. JBoss Data Grid authorization is built on standard security features available in a JDK, such as JAAS and the SecurityManager. If an application attempts to interact with a secured CacheManager and Cache, it must provide an identity which JBoss Data Grid’s security layer can validate against a set of required roles and permissions. Once validated, the client is issued a token for subsequent operations. Where access is denied, an exception indicating a security violation is thrown. When a cache has been configured for with authorization, retrieving it returns an instance of SecureCache. SecureCache is a simple wrapper around a cache, which checks whether the "current user" has the permissions required to perform an operation. The "current user" is a Subject associated with the AccessControlContext. JBoss Data Grid maps Principals names to roles, which in turn, represent one or more permissions. The following diagram represents these relationships: ## 28.2. Permissions Access to a CacheManager or a Cache is controlled using a set of required permissions. Permissions control the type of action that is performed on the CacheManager or Cache, rather than the type of data being manipulated. Some of these permissions can apply to specifically name entities, such as a named cache. Different types of permissions are available depending on the entity. Table 28.1. CacheManager Permissions PermissionFunctionDescription CONFIGURATION defineConfiguration Whether a new cache configuration can be defined. LISTEN addListener Whether listeners can be registered against a cache manager. LIFECYCLE stop, start Whether the cache manager can be stopped or started respectively. ALL A convenience permission which includes all of the above. Table 28.2. Cache Permissions PermissionFunctionDescription READ get, contains Whether entries can be retrieved from the cache. WRITE put, putIfAbsent, replace, remove, evict Whether data can be written/replaced/removed/evicted from the cache. EXEC distexec, mapreduce Whether code execution can be run against the cache. LISTEN addListener Whether listeners can be registered against a cache. BULK_READ keySet, values, entrySet,query Whether bulk retrieve operations can be executed. BULK_WRITE clear, putAll Whether bulk write operations can be executed. LIFECYCLE start, stop Whether a cache can be started / stopped. ADMIN getVersion, addInterceptor*, removeInterceptor, getInterceptorChain, getEvictionManager, getComponentRegistry, getDistributionManager, getAuthorizationManager, evict, getRpcManager, getCacheConfiguration, getCacheManager, getInvocationContextContainer, setAvailability, getDataContainer, getStats, getXAResource Whether access to the underlying components/internal structures is allowed. ALL A convenience permission which includes all of the above. ALL_READ Combines READ and BULK_READ. ALL_WRITE Combines WRITE and BULK_WRITE. Note Some permissions may need to be combined with others in order to be useful. For example, EXEC with READ or with WRITE. ## 28.3. Role Mapping In order to convert the Principals in a Subject into a set of roles used for authorization, a PrincipalRoleMapper must be specified in the global configuration. Red Hat JBoss Data Grid ships with three mappers, and also allows you to provide a custom mapper. Table 28.3. Mappers Mapper NameJavaXMLDescription IdentityRoleMapper org.infinispan.security.impl.IdentityRoleMapper <identity-role-mapper /> Uses the Principal name as the role name. CommonNameRoleMapper org.infinispan.security.impl.CommonRoleMapper <common-name-role-mapper /> If the Principal name is a Distinguished Name (DN), this mapper extracts the Common Name (CN) and uses it as a role name. For example the DN cn=managers,ou=people,dc=example,dc=com will be mapped to the role managers. ClusterRoleMapper org.infinispan.security.impl.ClusterRoleMapper <cluster-role-mapper /> Uses the ClusterRegistry to store principal to role mappings. This allows the use of the CLI’s GRANT and DENY commands to add/remove roles to a Principal. Custom Role Mapper <custom-role-mapper class="a.b.c" /> Supply the fully-qualified class name of an implementation of org.infinispan.security.impl.PrincipalRoleMapper ## 28.4. Configuring Authentication and Role Mapping using Login Modules When using the authentication login-module for querying roles from LDAP, you must implement your own mapping of Principals to Roles, as custom classes are in use. An example implementation of this conversion is found in the JBoss Data Grid Developer Guide , while a declarative configuration example is below: Example of LDAP Login Module Configuration  <security-domain name="ispn-secure" cache-type="default"> <authentication> <login-module code="org.jboss.security.auth.spi.LdapLoginModule" flag="required"> <module-option name="java.naming.factory.initial" value="com.sun.jndi.ldap.LdapCtxFactory"/> <module-option name="java.naming.provider.url" value="ldap://localhost:389"/> <module-option name="java.naming.security.authentication" value="simple"/> <module-option name="principalDNPrefix" value="uid="/> <module-option name="principalDNSuffix" value=",ou=People,dc=infinispan,dc=org"/> <module-option name="rolesCtxDN" value="ou=Roles,dc=infinispan,dc=org"/> <module-option name="uidAttributeID" value="member"/> <module-option name="matchOnUserDN" value="true"/> <module-option name="roleAttributeID" value="cn"/> <module-option name="roleAttributeIsDN" value="false"/> <module-option name="searchScope" value="ONELEVEL_SCOPE"/> </login-module> </authentication> </security-domain> Example of Login Module Configuration <security-domain name="krb-admin" cache-type="default"> <authentication> <login-module code="Kerberos" flag="required"> <module-option name="useKeyTab" value="true"/> <module-option name="principal" value="admin@INFINISPAN.ORG"/> <module-option name="keyTab" value="${basedir}/keytab/admin.keytab"/>
</authentication>
</security-domain>

When using GSSAPI authentication, this would typically involve using LDAP for role mapping, with the JBoss Data Grid server authenticating itself to the LDAP server via GSSAPI. For an example on configuring this authentication to an Active Directory server refer to Active Directory Authentication Using Kerberos (GSSAPI).

Important

For information on configuring an LDAP server, or specifying users and roles in an LDAP server, refer to the Red Hat Directory Server Administration Guide .

## 28.5. Configuring Red Hat JBoss Data Grid for Authorization

Authorization is configured at two levels: the cache container (CacheManager), and at the single cache.

CacheManager

The following is an example configuration for authorization at the CacheManager level:

CacheManager Authorization (Declarative Configuration)

<cache-container name="local" default-cache="default">
<security>
<authorization>
<identity-role-mapper />
<role name="writer" permissions="WRITE"/>
</authorization>
</security>
</cache-container>

Each cache container determines:

• whether to use authorization.
• a class which will map principals to a set of roles.
• a set of named roles and the permissions they represent.

You can choose to use only a subset of the roles defined at the container level.

Roles

Roles may be applied on a cache-per-cache basis, using the roles defined at the cache-container level, as follows:

Defining Roles

<local-cache name="secured">
<security>
</security>
</local-cache>

Important

Any cache that is intended to require authentication must have a listing of roles defined; otherwise authentication is not enforced as the no-anonymous policy is defined by the cache’s authorization.

Important

The REST protocol is not supported for use with authorization, and any attempts to access a cache with authorization enabled will result in a SecurityException.

## 28.6. Authorization Using a SecurityManager

In Red Hat JBoss Data Grid’s Remote Client-Server mode, authorization is able to work without a SecurityManager for basic cache operations. In Library mode, a SecurityManager may also be used to perform some of the more complex tasks, such as distexec and query among others.

In order to enforce access restrictions, enable the SecurityManager in your JVM using one of the following methods:

Command Line

java -Djava.security.manager ...

Programmaticaly

System.setSecurityManager(new SecurityManager());

Using the JDK’s default implementation is not required; however, an appropriate policy file must be supplied. The policy file defines a set of permissions, which the SecurityManager examines when an application performs an action. If the action is allowed by the policy file, then the SecurityManager will permit the action to take place; however, if the action is not allowed by the policy then the SecurityManager denies that action.

Example policy files are below:

Library Mode Security Policy File Example

// Grant permissions to all of the Infinispan libraries. Modify the URLs of the codebases below to actually point to the physical location of the infinispan-embedded uberjar in your environment

grant codeBase "file://path/to/infinispan-embedded-8.4.0.Final-redhat-2.jar" {
permission java.lang.RuntimePermission "accessDeclaredMembers";
permission java.lang.reflect.ReflectPermission "suppressAccessChecks";

// Modify this depending on the naming and location of your configuration files
permission java.io.FilePermission ".${/}jgroups.xml", "read"; permission java.util.PropertyPermission "*" "read"; permission java.net.SocketPermission "*"; permission java.util.PropertyPermission "*" "read"; // Modify this depending on the naming and location of your configuration files permission java.io.FilePermission ".${/}infinispan.xml", "read";
permission java.lang.reflect.ReflectPermission "suppressAccessChecks";

// ForkJoin backport
permission java.lang.RuntimePermission "accessClassInPackage.sun.misc";

// Infinispan shutdown hooks
permission java.lang.RuntimePermission "shutdownHooks";

// ConcurrentHashMap backports

// Infinispan security
permission javax.security.auth.AuthPermission "doAs";
permission javax.security.auth.AuthPermission "getSubject";
permission org.infinispan.security.CachePermission "ALL";
}

Remote Client-Server Security Policy File Example

// Grant permissions to all of the Infinispan libraries. Modify the URLs of the codebases below to actually point to the physical location of the libraries in your environment

grant codeBase "file://$JDG_HOME/modules/system/layers/base/org/jboss/marshalling/main/jboss-marshalling-osgi-1.4.10.Final-redhat-3.jar" { permission java.lang.RuntimePermission "accessDeclaredMembers"; permission java.lang.reflect.ReflectPermission "suppressAccessChecks"; } grant codeBase "file://$JDG_HOME/modules/system/layers/base/org/jgroups/main/jgroups-4.0.0.CR2-redhat-1.jar" {
// Modify this depending on the naming and location of your configuration files
permission java.io.FilePermission ".${/}jgroups.xml", "read"; permission java.util.PropertyPermission "*" "read"; permission java.net.SocketPermission "*"; } grant codeBase "file://$JDG_HOME/modules/system/layers/base/org/infinispan/commons/main/infinispan-commons.jar" {
}

grant codeBase "file://$JDG_HOME/modules/system/layers/base/org/infinispan/main/infinispan-core.jar" { // Modify this depending on the naming and location of your configuration files permission java.io.FilePermission ".${/}infinispan.xml", "read";
permission java.lang.reflect.ReflectPermission "suppressAccessChecks";
permission java.lang.RuntimePermission "accessClassInPackage.sun.misc"; // ForkJoin backport
permission java.lang.RuntimePermission "shutdownHooks"; // Infinispan shutdown hooks

// ConcurrentHashMap backport

// Infinispan security
permission javax.security.auth.AuthPermission "doAs";
permission javax.security.auth.AuthPermission "getSubject";
permission org.infinispan.security.CachePermission "ALL";
}

## 28.7. SecurityManager in Java

### 28.7.1. About the Java Security Manager

Java Security Manager

The Java Security Manager is a class that manages the external boundary of the Java Virtual Machine (JVM) sandbox, controlling how code executing within the JVM can interact with resources outside the JVM. When the Java Security Manager is activated, the Java API checks with the security manager for approval before executing a wide range of potentially unsafe operations.

The Java Security Manager uses a security policy to determine whether a given action will be permitted or denied.

### 28.7.2. About Java Security Manager Policies

Security Policy

A set of defined permissions for different classes of code. The Java Security Manager compares actions requested by applications against the security policy. If an action is allowed by the policy, the Security Manager will permit that action to take place. If the action is not allowed by the policy, the Security Manager will deny that action. The security policy can define permissions based on the location of code, on the code’s signature, or based on the subject’s principals.

The Java Security Manager and the security policy used are configured using the Java Virtual Machine options java.security.manager and java.security.policy.

Basic Information

A security policy’s entry consists of the following configuration elements, which are connected to the policytool:

CodeBase
The URL location (excluding the host and domain information) where the code originates from. This parameter is optional.
SignedBy
The alias used in the keystore to reference the signer whose private key was used to sign the code. This can be a single value or a comma-separated list of values. This parameter is optional. If omitted, presence or lack of a signature has no impact on the Java Security Manager.
Principals
A list of principal_type/principal_name pairs, which must be present within the executing thread’s principal set. The Principals entry is optional. If it is omitted, it signifies that the principals of the executing thread will have no impact on the Java Security Manager.
Permissions
A permission is the access which is granted to the code. Many permissions are provided as part of the Java Enterprise Edition 6 (Java EE 6) specification. This document only covers additional permissions which are provided by JBoss EAP 6.
Important

Refer to your container documentation on how to configure the security policy, as it may differ depending on the implementation.

### 28.7.3. Write a Java Security Manager Policy

Introduction

An application called policytool is included with most JDK and JRE distributions, for the purpose of creating and editing Java Security Manager security policies. Detailed information about policytool is linked from http://docs.oracle.com/javase/6/docs/technotes/tools/.

Setup a new Java Security Manager Policy

1. Start policytool

Start the policytool tool in one of the following ways.

1. Red Hat Enterprise Linux

From your GUI or a command prompt, run /usr/bin/policytool.

2. Microsoft Windows Server

Run policytool.exe from your Start menu or from the bin\ of your Java installation. The location can vary.

2. Create a policy.

To create a policy, select Add Policy Entry. Add the parameters you need, then click Done. .

3. Edit an existing policy.

Select the policy from the list of existing policies, and select the Edit Policy Entry button. Edit the parameters as needed.

4. Delete an existing policy.

Select the policy from the list of existing policies, and select the Remove Policy Entry button.

### 28.7.4. Run Red Hat JBoss Data Grid Server Within the Java Security Manager

To specify a Java Security Manager policy, you need to edit the Java options passed to the server instance during the bootstrap process. For this reason, you cannot pass the parameters as options to the standalone.sh script. The following procedure guides you through the steps of configuring your instance to run within a Java Security Manager policy.

Prerequisites

Before you following this procedure, you need to write a security policy, using the policytool command which is included with your Java Development Kit (JDK). This procedure assumes that your policy is located at JDG_HOME/bin/server.policy . As an alternative, write the security policy using any text editor and manually save it as JDG_HOME/bin/server.policy * The JBoss Data Grid server must be completely stopped before you edit any configuration files.

Perform the following procedure for each physical host or instance in your environment.

Configure the Security Manager for JBoss Data Grid Server

1. Open the configuration file.

Open the configuration file for editing. This location of this file is listed below by OS. Note that this is not the executable file used to start the server, but a configuration file that contains runtime parameters. For Linux: JDG_HOME/bin/standalone.conf For Windows: JDG_HOME\bin\standalone.conf.bat

2. Add the Java options to the file.

To ensure the Java options are used, add them to the code block that begins with:

if [ "x$JAVA_OPTS" = "x" ]; then You can modify the -Djava.security.policy value to specify the exact location of your security policy. It should go onto one line only, with no line break. Using == when setting the -Djava.security.policy property specifies that the security manager will use only the specified policy file. Using = specifies that the security manager will use the specified policy combined with the policy set in the policy.url section of JAVA_HOME/lib/security/java.security . Important JBoss Enterprise Application Platform releases from 6.2.2 onwards require that the system property jboss.modules.policy-permissions is set to true. standalone.conf JAVA_OPTS="$JAVA_OPTS -Djava.security.manager -Djava.security.policy==$PWD/server.policy -Djboss.home.dir=$JBOSS_HOME -Djboss.modules.policy-permissions=true"

standalone.conf.bat

set "JAVA_OPTS=%JAVA_OPTS% -Djava.security.manager -Djava.security.policy==\path\to\server.policy -Djboss.home.dir=%JBOSS_HOME% -Djboss.modules.policy-permissions=true"

3. Start the server.

Start the server as normal.

## 28.8. Data Security for Remote Client Server Mode

A security realm is a series of mappings between users and passwords, and users and roles. Security realms are a mechanism for adding authentication and authorization to your EJB and Web applications. Red Hat JBoss Data Grid Server provides two security realms by default:

• ManagementRealm stores authentication information for the Management API, which provides the functionality for the Management CLI and web-based Management Console. It provides an authentication system for managing JBoss Data Grid Server itself. You could also use the ManagementRealm if your application needed to authenticate with the same business rules you use for the Management API.
• ApplicationRealm stores user, password, and role information for Web Applications and EJBs.

Each realm is stored in two files on the filesystem:

• REALM-roles.properties stores user-to-role mappings.
• mgmt-groups.properties stores user-to-role mapping file for ManagementRealm.

The properties files are stored in the standalone/configuration/ directories. The files are written simultaneously by the add-user.sh or add-user.bat command. When you run the command, the first decision you make is which realm to add your new user to.

### 28.8.2. Add a New Security Realm

1. Run the Management CLI

Start the cli.sh or cli.bat command and connect to the server.

2. Create the new security realm itself

Run the following command to create a new security realm named MyDomainRealm on a domain controller or a standalone server.

/host=master/core-service=management/security-realm=MyDomainRealm:add()
3. Create the reference to the properties file which will store information about the new realm’s users

Run the below command to define the location of the new security realm’s properties file; this file contains information regarding the users of this security realm. The following command references a file named myfile.properties in the jboss.server.config.dir.

Note

The newly-created properties file is not managed by the included add-user.sh and add-user.bat scripts. It must be managed externally.

/host=master/core-service=management/security-realm=MyDomainRealm/authentication=properties:add(path="myfile.properties",relative-to="jboss.server.config.dir")

Reload the server so the changes will take effect.

:reload

Result

The new security realm is created. When you add users and roles to this new realm, the information will be stored in a separate file from the default security realms. You can manage this new file using your own applications or procedures.

### 28.8.3. Add a User to a Security Realm

Open a terminal and change directories to the JDG_HOME/bin/ directory. If you run Red Hat Enterprise Linux or another UNIX-like operating system, run add-user.sh. If you run Microsoft Windows Server, run add-user.bat.

2. Choose whether to add a Management User or Application User

For this procedure, type b to add an Application User.

3. Choose the realm this user will be added to

By default, the only available realms are the ManagementRealm and ApplicationRealm; however, if a custom realm has been added, then its name may be entered instead.

Type the desired username, password, and optional roles when prompted. Verify your choice by typing yes, or type no to cancel the changes. The changes are written to each of the properties files for the security realm.

### 28.8.4. Configuring Security Realms Declaratively

In Remote Client-Server mode, a Hot Rod endpoint must specify a security realm.

The security realm declares an authentication and an authorization section.

Configuring Security Realms Declaratively

<security-realms>
<security-realm name="ManagementRealm">
<authentication>
<local default-user="$local" skip-group-loading="true"/> <properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/> </authentication> <authorization map-groups-to-roles="false"> <properties path="mgmt-groups.properties" relative-to="jboss.server.config.dir"/> </authorization> </security-realm> <security-realm name="ApplicationRealm"> <authentication> <local default-user="$local" allowed-users="*" skip-group-loading="true"/>
<properties path="application-users.properties" relative-to="jboss.server.config.dir"/>
</authentication>
<authorization>
<properties path="application-roles.properties" relative-to="jboss.server.config.dir"/>
</authorization>
</security-realm>
</security-realms>

The server-identities parameter can also be used to specify certificates.

An LDAP directory contains entries for user accounts and groups, cross referenced by attributes. Depending on the LDAP server configuration, a user entity may map the groups the user belongs to through memberOf attributes; a group entity may map which users belong to it through uniqueMember attributes; or both mappings may be maintained by the LDAP server.

Users generally authenticate against the server using a simple user name. When searching for group membership information, depending on the directory server in use, searches could be performed using this simple name or using the distinguished name of the user’s entry in the directory.

The authentication step of a user connecting to the server always happens first. Once the user is successfully authenticated the server loads the user’s groups. The authentication step and the authorization step each require a connection to the LDAP server. The realm optimizes this process by reusing the authentication connection for the group loading step. As will be shown within the configuration steps below it is possible to define rules within the authorization section to convert a user’s simple user name to their distinguished name. The result of a "user name to distinguished name mapping" search during authentication is cached and reused during the authorization query when the force attribute is set to "false". When force is true, the search is performed again during authorization (while loading groups). This is typically done when different servers perform authentication and authorization.

<authorization>
<ldap connection="...">
<!-- OPTIONAL -->
<!-- Only one of the following. -->
<username-filter base-dn="..." recursive="..." user-dn-attribute="..." attribute="..." />
<advanced-filter base-dn="..." recursive="..." user-dn-attribute="..." filter="..." />

<group-search group-name="..." iterative="..." group-dn-attribute="..." group-name-attribute="..." >
<!-- One of the following -->
<group-to-principal base-dn="..." recursive="..." search-by="...">
<membership-filter principal-attribute="..." />
</group-to-principal>
<principal-to-group group-attribute="..." />
</group-search>
</ldap>
</authorization>
Important

These examples specify some attributes with their default values. This is done for demonstration. Attributes that specify their default values are removed from the configuration when it is persisted by the server. The exception is the force attribute. It is required, even when set to the default value of false.

The username-to-dn element specifies how to map the user name to the distinguished name of their entry in the LDAP directory. This element is only required when both of the following are true:

• The authentication and authorization steps are against different LDAP servers.
• The group search uses the distinguished name.

This specifies that the user name entered by the remote user is the user’s distinguished name.
<username-to-dn force="false">
</username-to-dn>

+ This defines a 1:1 mapping and there is no additional configuration.

The next option is very similar to the simple option described above for the authentication step. A specified attribute is searched for a match against the supplied user name.
<username-to-dn force="true">
<username-filter base-dn="dc=people,dc=harold,dc=example,dc=com" recursive="false" attribute="sn" user-dn-attribute="dn" />
</username-to-dn>

+ The attributes that can be set here are:

• base-dn: The distinguished name of the context to begin the search.
• recursive: Whether the search will extend to sub contexts. Defaults to false.
• attribute: The attribute of the users entry to try and match against the supplied user name. Defaults to uid.
• user-dn-attribute: The attribute to read to obtain the users distinguished name. Defaults to dn.

The final option is to specify an advanced filter, as in the authentication section this is an opportunity to use a custom filter to locate the users distinguished name.
<username-to-dn force="true">
<advanced-filter base-dn="dc=people,dc=harold,dc=example,dc=com" recursive="false" filter="sAMAccountName={0}" user-dn-attribute="dn" />
</username-to-dn>

+ For the attributes that match those in the username-filter example, the meaning and default values are the same. There is one new attribute:

• filter: Custom filter used to search for a user’s entry where the user name will be substituted in the {0} place holder.

Important

The XML must remain valid after the filter is defined so if any special characters are used such as & ensure the proper form is used. For example & for the & character.

There are two different styles that can be used when searching for group membership information. The first style is where the user’s entry contains an attribute that references the groups the user is a member of. The second style is where the group contains an attribute referencing the users entry.

When there is a choice of which style to use Red Hat recommends that the configuration for a user’s entry referencing the group is used. This is because with this method group information can be loaded by reading attributes of known distinguished names without having to perform any searches. The other approach requires extensive searches to identify the groups that reference the user.

Before describing the configuration here are some LDIF examples to illustrate this.

Principal to Group - LDIF example.

This example illustrates where we have a user TestUserOne who is a member of GroupOne, GroupOne is in turn a member of GroupFive. The group membership is shown by the use of a memberOf attribute which is set to the distinguished name of the group of which the user (or group) is a member.

It is not shown here but a user could potentially have multiple memberOf attributes set, one for each group of which the user is directly a member.

dn: uid=TestUserOne,ou=users,dc=principal-to-group,dc=example,dc=org
objectClass: extensibleObject
objectClass: top
objectClass: groupMember
objectClass: inetOrgPerson
objectClass: uidObject
objectClass: person
objectClass: organizationalPerson
cn: Test User One
sn: Test User One
uid: TestUserOne
distinguishedName: uid=TestUserOne,ou=users,dc=principal-to-group,dc=example,dc=org
memberOf: uid=GroupOne,ou=groups,dc=principal-to-group,dc=example,dc=org
memberOf: uid=Slashy/Group,ou=groups,dc=principal-to-group,dc=example,dc=org

dn: uid=GroupOne,ou=groups,dc=principal-to-group,dc=example,dc=org
objectClass: extensibleObject
objectClass: top
objectClass: groupMember
objectClass: group
objectClass: uidObject
uid: GroupOne
distinguishedName: uid=GroupOne,ou=groups,dc=principal-to-group,dc=example,dc=org
memberOf: uid=GroupFive,ou=subgroups,ou=groups,dc=principal-to-group,dc=example,dc=org

dn: uid=GroupFive,ou=subgroups,ou=groups,dc=principal-to-group,dc=example,dc=org
objectClass: extensibleObject
objectClass: top
objectClass: groupMember
objectClass: group
objectClass: uidObject
uid: GroupFive
distinguishedName: uid=GroupFive,ou=subgroups,ou=groups,dc=principal-to-group,dc=example,dc=org

Group to Principal - LDIF Example

This example shows the same user TestUserOne who is a member of GroupOne which is in turn a member of GroupFive - however in this case it is an attribute uniqueMember from the group to the user being used for the cross reference.

Again the attribute used for the group membership cross reference can be repeated, if you look at GroupFive there is also a reference to another user TestUserFive which is not shown here.

dn: uid=TestUserOne,ou=users,dc=group-to-principal,dc=example,dc=org
objectClass: top
objectClass: inetOrgPerson
objectClass: uidObject
objectClass: person
objectClass: organizationalPerson
cn: Test User One
sn: Test User One
uid: TestUserOne

dn: uid=GroupOne,ou=groups,dc=group-to-principal,dc=example,dc=org
objectClass: top
objectClass: groupOfUniqueNames
objectClass: uidObject
cn: Group One
uid: GroupOne
uniqueMember: uid=TestUserOne,ou=users,dc=group-to-principal,dc=example,dc=org

dn: uid=GroupFive,ou=subgroups,ou=groups,dc=group-to-principal,dc=example,dc=org
objectClass: top
objectClass: groupOfUniqueNames
objectClass: uidObject
cn: Group Five
uid: GroupFive
uniqueMember: uid=TestUserFive,ou=users,dc=group-to-principal,dc=example,dc=org
uniqueMember: uid=GroupOne,ou=groups,dc=group-to-principal,dc=example,dc=org
##### General Group Searching

Before looking at the examples for the two approaches shown above we first need to define the attributes common to both of these.

<group-search group-name="..." iterative="..." group-dn-attribute="..." group-name-attribute="..." >
...
</group-search>
• group-name: This attribute is used to specify the form that should be used for the group name returned as the list of groups of which the user is a member. This can either be the simple form of the group name or the group’s distinguished name. If the distinguished name is required this attribute can be set to DISTINGUISHED_NAME. Defaults to SIMPLE.
• iterative: This attribute is used to indicate if, after identifying the groups a user is a member of, we should also iteratively search based on the groups to identify which groups the groups are a member of. If iterative searching is enabled we keep going until either we reach a group that is not a member if any other groups or a cycle is detected. Defaults to false.

Cyclic group membership is not a problem. A record of each search is kept to prevent groups that have already been searched from being searched again.

Important

For iterative searching to work the group entries need to look the same as user entries. The same approach used to identify the groups a user is a member of is then used to identify the groups of which the group is a member. This would not be possible if for group to group membership the name of the attribute used for the cross reference changes or if the direction of the reference changes.

• group-dn-attribute: On an entry for a group which attribute is its distinguished name. Defaults to dn.
• group-name-attribute: On an entry for a group which attribute is its simple name. Defaults to uid.

Principal to Group Example Configuration

Based on the example LDIF from above here is an example configuration iteratively loading a user’s groups where the attribute used to cross reference is the memberOf attribute on the user.

<authorization>
<ldap connection="LocalLdap">
<username-filter base-dn="ou=users,dc=principal-to-group,dc=example,dc=org" recursive="false" attribute="uid" user-dn-attribute="dn" />
<group-search group-name="SIMPLE" iterative="true" group-dn-attribute="dn" group-name-attribute="uid">
<principal-to-group group-attribute="memberOf" />
</group-search>
</ldap>
</authorization>

The most important aspect of this configuration is that the principal-to-group element has been added with a single attribute.

• group-attribute: The name of the attribute on the user entry that matches the distinguished name of the group the user is a member of. Defaults to memberOf.

Group to Principal Example Configuration

This example shows an iterative search for the group to principal LDIF example shown above.

<authorization>
<ldap connection="LocalLdap">
<username-filter base-dn="ou=users,dc=group-to-principal,dc=example,dc=org" recursive="false" attribute="uid" user-dn-attribute="dn" />
<group-search group-name="SIMPLE" iterative="true" group-dn-attribute="dn" group-name-attribute="uid">
<group-to-principal base-dn="ou=groups,dc=group-to-principal,dc=example,dc=org" recursive="true" search-by="DISTINGUISHED_NAME">
<membership-filter principal-attribute="uniqueMember" />
</group-to-principal>
</group-search>
</ldap>
</authorization>

Here an element group-to-principal is added. This element is used to define how searches for groups that reference the user entry will be performed. The following attributes are set:

• base-dn: The distinguished name of the context to use to begin the search.
• recursive: Whether sub-contexts also be searched. Defaults to false.
• search-by: The form of the role name used in searches. Valid values are SIMPLE and DISTINGUISHED_NAME. Defaults to DISTINGUISHED_NAME.

Within the group-to-principal element there is a membership-filter element to define the cross reference.

• principal-attribute: The name of the attribute on the group entry that references the user entry. Defaults to member.

## 28.9. Securing Interfaces

### 28.9.1. Hot Rod Interface Security

#### 28.9.1.1. Publish Hot Rod Endpoints as a Public Interface

Red Hat JBoss Data Grid’s Hot Rod server operates as a management interface as a default. To extend its operations to a public interface, alter the value of the interface parameter in the socket-binding element from management to public as follows:

<socket-binding name="hotrod" interface="public" port="11222" />

#### 28.9.1.2. Encryption of communication between Hot Rod Server and Hot Rod client

Hot Rod can be encrypted using TLS/SSL, and has the option to require certificate-based client authentication.

Use the following procedure to secure the Hot Rod connector using SSL.

Secure Hot Rod Using SSL/TLS

1. Generate a Keystore

Create a Java Keystore using the keytool application distributed with the JDK and add your certificate to it. The certificate can be either self signed, or obtained from a trusted CA depending on your security policy.

2. Place the Keystore in the Configuration Directory

Put the keystore in the ~/JDG_HOME/standalone/configuration directory with the standalone-hotrod-ssl.xml file from the ~/JDG_HOME/docs/examples/configs directory.

3. Declare an SSL Server Identify

Declare an SSL server identity within a security realm in the management section of the configuration file. The SSL server identity must specify the path to a keystore and its secret key.

<server-identities>
<ssl protocol="...">
<keystore path="..." relative-to="..." keystore-password="${VAULT::VAULT_BLOCK::ATTRIBUTE_NAME::ENCRYPTED_VALUE}" /> </ssl> <secret value="..." /> </server-identities> See Configure Hot Rod Authentication (X.509) for details about these parameters. 4. Add the Security Element Add the security element to the Hot Rod connector as follows: <hotrod-connector socket-binding="hotrod" cache-container="local"> <encryption ssl="true" security-realm="ApplicationRealm" require-ssl-client-auth="false" /> </hotrod-connector> 1. Server Authentication of Certificate If you require the server to perform authentication of the client certificate, create a truststore that contains the valid client certificates and set the require-ssl-client-auth attribute to true. 5. Start the Server Start the server using the following: bin/standalone.sh -c standalone-hotrod-ssl.xml  This will start a server with a Hot Rod endpoint on port 11222. This endpoint will only accept SSL connections. Important To prevent plain text passwords from appearing in configurations or source codes, plain text passwords should be changed to Vault passwords. For more information about how to set up Vault passwords, see the Password Vault section of the JBoss Enterprise Application Platform security documentation. . #### 28.9.1.3. Securing Hot Rod to LDAP Server using SSL When connecting to an LDAP server with SSL enabled it may be necessary to specify a trust store or key store containing the appropriate certificates. Encryption of communication between Hot Rod Server and Hot Rod client describes how to set up SSL for Hot Rod client-server communication. This can be used, for example, for secure Hot Rod client authentication with PLAIN username/password. When the username/password is checked against credentials in LDAP, a secure connection from the Hot Rod server to the LDAP server is also required. To enable connection from the Hot Rod server to LDAP via SSL, a security realm must be defined as follows: Hot Rod Client Authentication to LDAP Server <management> <security-realms> <security-realm name="LdapSSLRealm"> <authentication> <truststore path="ldap.truststore" relative-to="jboss.server.config.dir" keystore-password=${VAULT::VAULT_BLOCK::ATTRIBUTE_NAME::ENCRYPTED_VALUE} />
</authentication>
</security-realm>
</security-realms>
<outbound-connections>
<ldap name="LocalLdap" url="ldaps://localhost:10389" search-dn="uid=wildfly,dc=simple,dc=wildfly,dc=org" search-credential="secret" security-realm="LdapSSLRealm" />
</outbound-connections>
</management>

Important

To prevent plain text passwords from appearing in configurations or source codes, plain text passwords should be changed to Vault passwords. For more information about how to set up Vault passwords, see the Red Hat Enterprise Application Platform Security Guide .

#### 28.9.1.4. User Authentication over Hot Rod Using SASL

##### 28.9.1.4.1. User Authentication over Hot Rod Using SASL

User authentication over Hot Rod can be implemented using the following Simple Authentication and Security Layer (SASL) mechanisms:

• PLAIN is the least secure mechanism because credentials are transported in plain text format. However, it is also the simplest mechanism to implement. This mechanism can be used in conjunction with encryption (SSL) for additional security.
• DIGEST-MD5 is a mechanism than hashes the credentials before transporting them. As a result, it is more secure than the PLAIN mechanism.
• GSSAPI is a mechanism that uses Kerberos tickets. As a result, it requires a correctly configured Kerberos Domain Controller (for example, Microsoft Active Directory).
• EXTERNAL is a mechanism that obtains the required credentials from the underlying transport (for example, from a X.509 client certificate) and therefore requires client certificate encryption to work correctly.
##### 28.9.1.4.2. Configure Hot Rod Authentication (GSSAPI/Kerberos)

Use the following steps to set up Hot Rod Authentication using the SASL GSSAPI/Kerberos mechanism:

Configure SASL GSSAPI/Kerberos Authentication - Server-side Configuration

1. Define a Kerberos security login module using the security domain subsystem:

<system-properties>
<property name="java.security.krb5.conf" value="/tmp/infinispan/krb5.conf"/>
<property name="java.security.krb5.debug" value="true"/>
<property name="jboss.security.disable.secdomain.option" value="true"/>
</system-properties>

<security-domain name="infinispan-server" cache-type="default">
<authentication>
<module-option name="debug" value="true"/>
<module-option name="storeKey" value="true"/>
<module-option name="refreshKrb5Config" value="true"/>
<module-option name="useKeyTab" value="true"/>
<module-option name="doNotPrompt" value="true"/>
<module-option name="keyTab" value="/tmp/infinispan/infinispan.keytab"/>
<module-option name="principal" value="HOTROD/localhost@INFINISPAN.ORG"/>
</authentication>
</security-domain>
2. Ensure that the cache-container has authorization roles defined, and these roles are applied in the cache’s authorization block as seen in Configuring Red Hat JBoss Data Grid for Authorization.
3. Configure a Hot Rod connector as follows:

<hotrod-connector socket-binding="hotrod"
cache-container="default">
<authentication security-realm="ApplicationRealm">
<sasl server-name="node0"
mechanisms="{mechanism_name}"
qop="{qop_name}"
strength="{value}">
<policy>
<no-anonymous value="true" />
</policy>
<property name="com.sun.security.sasl.digest.utf8">true</property>
</sasl>
</authentication>
</hotrod-connector>
• The server-name attribute specifies the name that the server declares to incoming clients. The client configuration must also contain the same server name value.
• The server-context-name attribute specifies the name of the login context used to retrieve a server subject for certain SASL mechanisms (for example, GSSAPI).
• The mechanisms attribute specifies the authentication mechanism in use. See User Authentication over Hot Rod Using SASL for a list of supported mechanisms.
• The qop attribute specifies the SASL quality of protection value for the configuration. Supported values for this attribute are auth (authentication), auth-int (authentication and integrity, meaning that messages are verified against checksums to detect tampering), and auth-conf (authentication, integrity, and confidentiality, meaning that messages are also encrypted). Multiple values can be specified, for example, auth-int auth-conf. The ordering implies preference, so the first value which matches both the client and server’s preference is chosen.
• The strength attribute specifies the SASL cipher strength. Valid values are low, medium, and high.
• The no-anonymous element within the policy element specifies whether mechanisms that accept anonymous login are permitted. Set this value to false to permit and true to deny.
4. Perform the Client-Side configuration on each client. As the Hot Rod client is configured programmatically information on this configuration is found in the JBoss Data Grid Developer Guide .
##### 28.9.1.4.3. Configure Hot Rod Authentication (MD5)

Use the following steps to set up Hot Rod Authentication using the SASL using the MD5 mechanism:

Configure Hot Rod Authentication (MD5)

1. Set up the Hot Rod Connector configuration by adding the sasl element to the authentication element (for details on the authentication element, see Configuring Security Realms Declaratively) as follows:

<hotrod-connector socket-binding="hotrod"
cache-container="default">
<authentication security-realm="ApplicationRealm">
<sasl server-name="myhotrodserver"
mechanisms="DIGEST-MD5"
qop="auth" />
</authentication>
</hotrod-connector>
• The server-name attribute specifies the name that the server declares to incoming clients. The client configuration must also contain the same server name value.
• The mechanisms attribute specifies the authentication mechanism in use. See User Authentication over Hot Rod Using SASL for a list of supported mechanisms.
• The qop attribute specifies the SASL quality of production value for the configuration. Supported values for this attribute are auth, auth-int, and auth-conf.
2. Configure each client to be connected to the Hot Rod connector. As this step is performed programmatically instructions are found in JBoss Data Grid’s Developer Guide .
##### 28.9.1.4.4. Configure Hot Rod Using LDAP/Active Directory

Use the following to configure authentication over Hot Rod using LDAP or Microsoft Active Directory:

<security-realms>
<security-realm name="ApplicationRealm">
<authentication>
<ldap connection="ldap_connection"
recursive="true"
base-dn="cn=users,dc=infinispan,dc=org">
</ldap>
</authentication>
</security-realm>
</security-realms>
<outbound-connections>
<ldap name="ldap_connection"
url="ldap://my_ldap_server"
search-dn="CN=test,CN=Users,DC=infinispan,DC=org"
</outbound-connections>

The following are some details about the elements and parameters used in this configuration:

• The security-realm element’s name parameter specifies the security realm to reference to use when establishing the connection.
• The authentication element contains the authentication details.
• The ldap element specifies how LDAP searches are used to authenticate a user. First, a connection to LDAP is established and a search is conducted using the supplied user name to identify the distinguished name of the user. A subsequent connection to the server is established using the password supplied by the user. If the second connection succeeds, the authentication is a success.

• The connection parameter specifies the name of the connection to use to connect to LDAP.
• The (optional) recursive parameter specifies whether the filter is executed recursively. The default value for this parameter is false.
• The base-dn parameter specifies the distinguished name of the context to use to begin the search from.
• The (optional) user-dn parameter specifies which attribute to read for the user’s distinguished name after the user is located. The default value for this parameter is dn.
• The outbound-connections element specifies the name of the connection used to connect to the LDAP directory.
• The ldap element specifies the properties of the outgoing LDAP connection.

• The name parameter specifies the unique name used to reference this connection.
• The url parameter specifies the URL used to establish the LDAP connection.
• The search-dn parameter specifies the distinguished name of the user to authenticate and to perform the searches.
• The search-credential parameter specifies the password required to connect to LDAP as the search-dn.
• The (optional) initial-context-factory parameter allows the overriding of the initial context factory. the default value of this parameter is com.sun.jndi.ldap.LdapCtxFactory.
##### 28.9.1.4.5. Configure Hot Rod Authentication (X.509)

The X.509 certificate can be installed at the node, and be made available to other nodes for authentication purposes for inbound and outbound SSL connections. This is enabled using the <server-identities/> element of a security realm definition, which defines how a server appears to external applications. This element can be used to configure a password to be used when establishing a remote connection, as well as the loading of an X.509 key.

The following example shows how to install an X.509 certificate on the node.

<security-realm name="ApplicationRealm">
<server-identities>
<ssl protocol="...">
</ssl>
</server-identities>

[... authentication/authorization ...]

</security-realms>

In the provided example, the SSL element contains the <keystore/> element, which is used to define how to load the key from the file-based keystore. The following parameters ave available for this element.

Table 28.4. <server-identities/> Options

ParameterMandatory/OptionalDescription

path

Mandatory

This is the path to the keystore, this can be an absolute path or relative to the next attribute.

relative-to

Optional

The name of a service representing a path the keystore is relative to.

keystore-password

Mandatory

The password required to open the keystore.

alias

Optional

The alias of the entry to use from the keystore - for a keystore with multiple entries in practice the first usable entry is used but this should not be relied on and the alias should be set to guarantee which entry is used.

key-password

Optional

Note

If the following error occurs, specify a key-password as well as an alias to ensure only one key is loaded.

UnrecoverableKeyException: Cannot recover key

### 28.9.2. REST Interface Security

#### 28.9.2.1. Publish REST Endpoints as a Public Interface

Red Hat JBoss Data Grid’s REST server operates as a management interface by default. To extend its operations to a public interface, alter the value of the interface parameter in the socket-binding element from management to public as follows:

<socket-binding name="http"
interface="public"
port="8080"/>

#### 28.9.2.2. Enable Security for the REST Endpoint

Use the following procedure to enable security for the REST endpoint in Red Hat JBoss Data Grid.

Note

The REST endpoint supports any of the JBoss Enterprise Application Platform security subsystem providers.

Enable Security for the REST Endpoint

To enable security for JBoss Data Grid when using the REST interface, make the following changes to standalone.xml:

1. Ensure that the rest endpoint defines a valid configuration for the authentication attribute. An example configuration is below:

<subsystem xmlns="urn:infinispan:server:endpoint:8.1">
<rest-connector socket-binding="rest" cache-container="security">
<authentication security-realm="ApplicationRealm" auth-method="BASIC"/>
</rest-connector>
</subsystem>
2. Check Security Domain Declaration

Ensure that the security subsystem contains the corresponding security-domain declaration. For details about setting up security-domain declarations, see the JBoss Enterprise Application Platform 7 documentation.

Run the relevant script and enter the configuration settings to add an application user.

1. Run the adduser.sh script (located in $JDG_HOME/bin ). 1. On a Windows system, run the adduser.bat file (located in$JDG_HOME/bin ) instead.
2. When prompted about the type of user to add, select Application User (application-users.properties) by entering b.
3. Accept the default value for realm (ApplicationRealm) by pressing the return key.
5. When prompted for a group, enter REST.
6. Ensure the username and application realm information is correct when prompted and enter "yes" to continue.
4. Verify the Created Application User

Ensure that the created application user is correctly configured.

1. Check the configuration listed in the application-users.properties file (located in $JDG_HOME/standalone/configuration/ ). The following is an example of what the correct configuration looks like in this file: user1=2dc3eacfed8cf95a4a31159167b936fc 2. Check the configuration listed in the application-roles.properties file (located in$JDG_HOME/standalone/configuration/ ). The following is an example of what the correct configuration looks like in this file:

user1=REST
5. Test the Server

Start the server and enter the following link in a browser window to access the REST endpoint:

http://localhost:8080/rest/namedCache
Note

If testing using a GET request, a 405 response code is expected and indicates that the server was successfully authenticated.

### 28.9.3. Memcached Interface Security

#### 28.9.3.1. Publish Memcached Endpoints as a Public Interface

Red Hat JBoss Data Grid’s memcached server operates as a management interface by default. It is possible to extend the memcached operations to a public interface, but there is no additional security available for this interface. If security is a concern then it is recommended to keep this interface on an isolated, internal network, or to use either the REST or Hot Rod interfaces.

To configure the memcached interface as a public interface, alter the value of the interface parameter in the socket-binding element from management to public as follows:

<socket-binding name="memcached"
interface="public"
port="11211" />

## 28.10. Active Directory Authentication (Non-Kerberos)

See Example of LDAP Login Module Configuration for a non-Kerberos Active Directory Authentication configuration example.

## 28.11. Active Directory Authentication Using Kerberos (GSSAPI)

When using Red Hat JBoss Data Grid with Microsoft Active Directory, data security can be enabled via Kerberos authentication. To configure Kerberos authentication for Microsoft Active Directory, use the following procedure.

Configure Kerberos Authentication for Active Directory (Library Mode)

1. Configure JBoss EAP server to authenticate itself to Kerberos. This can be done by configuring a dedicated security domain, for example:

<security-domain name="ldap-service" cache-type="default">
<authentication>
<module-option name="storeKey" value="true"/>
<module-option name="useKeyTab" value="true"/>
<module-option name="refreshKrb5Config" value="true"/>
<module-option name="principal" value="ldap/localhost@INFINISPAN.ORG"/>
<module-option name="keyTab" value="${basedir}/keytab/ldap.keytab"/> <module-option name="doNotPrompt" value="true"/> </login-module> </authentication> </security-domain> 2. The security domain for authentication must be configured correctly for JBoss EAP, an application must have a valid Kerberos ticket. To initiate the Kerberos ticket, you must reference another security domain using <module-option name="usernamePasswordDomain" value="krb-admin"/> This points to the standard Kerberos login module described in Step 3. <security-domain name="ispn-admin" cache-type="default"> <authentication> <login-module code="SPNEGO" flag="requisite"> <module-option name="password-stacking" value="useFirstPass"/> <module-option name="serverSecurityDomain" value="ldap-service"/> <module-option name="usernamePasswordDomain" value="krb-admin"/> </login-module> <login-module code="AdvancedAdLdap" flag="required"> <module-option name="password-stacking" value="useFirstPass"/> <module-option name="bindAuthentication" value="GSSAPI"/> <module-option name="jaasSecurityDomain" value="ldap-service"/> <module-option name="java.naming.provider.url" value="ldap://localhost:389"/> <module-option name="baseCtxDN" value="ou=People,dc=infinispan,dc=org"/> <module-option name="baseFilter" value="(krb5PrincipalName={0})"/> <module-option name="rolesCtxDN" value="ou=Roles,dc=infinispan,dc=org"/> <module-option name="roleFilter" value="(member={1})"/> <module-option name="roleAttributeID" value="cn"/> </login-module> </authentication> </security-domain> 3. The security domain authentication configuration described in the previous step points to the following standard Kerberos login module: <security-domain name="krb-admin" cache-type="default"> <authentication> <login-module code="Kerberos" flag="required"> <module-option name="useKeyTab" value="true"/> <module-option name="principal" value="admin@INFINISPAN.ORG"/> <module-option name="keyTab" value="${basedir}/keytab/admin.keytab"/>
</authentication>
</security-domain>

## 28.12. The Security Audit Logger

### 28.12.1. The Security Audit Logger

Red Hat JBoss Data Grid includes a logger to audit security logs for the cache, specifically whether a cache or a cache manager operation was allowed or denied for various operations.

The default audit logger is org.infinispan.security.impl.DefaultAuditLogger. This logger outputs audit logs using the available logging framework (for example, JBoss Logging) and provides results at the TRACE level and the AUDIT category.

To send the AUDIT category to either a log file, a JMS queue, or a database, use the appropriate log appender.

### 28.12.2. Configure the Security Audit Logger (Library Mode)

Use the following to configure the audit logger in Red Hat JBoss Data Grid:

<infinispan>
...
<global-security>
<authorization audit-logger = "org.infinispan.security.impl.DefaultAuditLogger">
...
</authorization>
</global-security>
...
</infinispan>

### 28.12.3. Configure the Security Audit Logger (Remote Client-Server Mode)

Use the following code to configure the audit logger in Red Hat JBoss Data Grid Remote Client-Server Mode.

To use a different audit logger, specify it in the authorization element. The authorization element must be within the cache-container element in the Infinispan subsystem (in the standalone.xml configuration file).

<cache-container name="local" default-cache="default">
<security>
<authorization audit-logger="org.infinispan.security.impl.DefaultAuditLogger">
<identity-role-mapper/>
<role name="writer" permissions="WRITE"/>
</authorization>
</security>
<local-cache name="default">
<locking isolation="NONE" acquire-timeout="30000" concurrency-level="1000" striping="false"/>
<transaction mode="NONE"/>
<security>
</security>
</local-cache>
[...]
</cache-container>
Note

The default audit logger for server mode is org.jboss.as.clustering.infinispan.subsystem.ServerAuditLogger which sends the log messages to the server audit log. See the Management Interface Audit Logging chapter in the JBoss Enterprise Application Platform Administration and Configuration Guide for more information.

### 28.12.4. Custom Audit Loggers

Users can implement custom audit loggers in Red Hat JBoss Data Grid Library and Remote Client-Server Mode. The custom logger must implement the org.infinispan.security.AuditLogger interface. If no custom logger is provided, the default logger (DefaultAuditLogger) is used.

## 29.1. Node Authentication and Authorization (Remote Client-Server Mode)

### 29.1.1. Node Authentication and Authorization (Remote Client-Server Mode)

Security can be enabled at node level via SASL protocol, which enables node authentication against a security realm. This requires nodes to authenticate each other when joining or merging with a cluster. For detailed information about security realms, see About Security Realms.

The following example depicts the <sasl /> element, which leverages the SASL protocol. Both DIGEST-MD5 or GSSAPI mechanisms are currently supported.

Configure SASL Authentication

<management>
<security-realms>
<!-- Additional configuration information here -->
<security-realm name="ClusterRealm">
<authentication>
<properties path="cluster-users.properties" relative-to="jboss.server.config.dir"/>
</authentication>
<authorization>
<properties path="cluster-roles.properties" relative-to="jboss.server.config.dir"/>
</authorization>
</security-realm>
</security-realms>
<!-- Additional configuration information here -->
</security-realms>
</management>

<stack name="udp">
<!-- Additional configuration information here -->
<sasl mech="DIGEST-MD5" security-realm="ClusterRealm" cluster-role="cluster">
<property name="client_name">node1</property>
</sasl>
<!-- Additional configuration information here -->
</stack>

In the provided example, the nodes use the DIGEST-MD5 mechanism to authenticate against the ClusterRealm. In order to join, nodes must have the cluster role.

The cluster-role attribute determines the role all nodes must belong to in the security realm in order to JOIN or MERGE with the cluster. Unless it has been specified, the cluster-role attribute is the name of the clustered <cache-container> by default. Each node identifies itself using the client-name property. If none is specified, the hostname on which the server is running will be used.

This name can also be overridden by specifying the jboss.node.name system property that can be overridden on the command line. For example:

$standalone.sh -Djboss.node.name=node001 Note JGroups AUTH protocol is not integrated with security realms, and its use is not advocated for Red Hat JBoss Data Grid. ### 29.1.2. Configure Node Authentication for Cluster Security (DIGEST-MD5) The following example demonstrates how to use DIGEST-MD5 with a properties-based security realm, with a dedicated realm for cluster node. Using the DIGEST-MD5 Mechanism <management> <security-realms> <security-realm name="ClusterRealm"> <authentication> <properties path="cluster-users.properties" relative-to="jboss.server.config.dir"/> </authentication> <authorization> <properties path="cluster-roles.properties" relative-to="jboss.server.config.dir"/> </authorization> </security-realm> </security-realms> </management> <subsystem xmlns="urn:infinispan:server:jgroups:8.0" default-stack="${jboss.default.jgroups.stack:udp}">
<stack name="udp">
<transport type="UDP" socket-binding="jgroups-udp"/>
<protocol type="PING"/>
<protocol type="MERGE2"/>
<protocol type="FD_SOCK" socket-binding="jgroups-udp-fd"/>
<protocol type="FD_ALL"/>
<protocol type="pbcast.NAKACK"/>
<protocol type="UNICAST2"/>
<protocol type="pbcast.STABLE"/>
<protocol type="pbcast.GMS"/>
<protocol type="UFC"/>
<protocol type="MFC"/>
<protocol type="FRAG3"/>
<protocol type="RSVP"/>
<sasl security-realm="ClusterRealm" mech="DIGEST-MD5">
</sasl>
</stack>
</subsystem>
<subsystem xmlns="urn:infinispan:server:core:8.4" default-cache-container="clustered">
<cache-container name="clustered" default-cache="default">
<transport executor="infinispan-transport" lock-timeout="60000" stack="udp"/>
<!-- various clustered cache definitions here -->
</cache-container>
</subsystem>

In the provided example, supposing the hostnames of the various nodes are node001, node002, node003, the cluster-users.properties will contain:

• node001=/<node001passwordhash>/
• node002=/<node002passwordhash>/
• node003=/<node003passwordhash>/

The cluster-roles.properties will contain:

• node001=clustered
• node002=clustered
• node003=clustered

To generate these values, the following add-users.sh script can be used:

$add-user.sh -up cluster-users.properties -gp cluster-roles.properties -r ClusterRealm -u node001 -g clustered -p <password> The MD5 password hash of the node must also be placed in the "client_password" property of the <sasl/> element. <property name="client_password>...</property> Note To increase security, it is recommended that this password be stored using a Vault. For more information about vault expressions, see the Red Hat Enterprise Application Platform Security Guide Once node security has been set up as discussed here, the cluster coordinator will validate each JOINing and MERGEing node’s credentials against the realm before letting the node become part of the cluster view. ### 29.1.3. Configure Node Authentication for Cluster Security (GSSAPI/Kerberos) When using the GSSAPI mechanism, the client_name is used as the name of a Kerberos-enabled login module defined within the security domain subsystem. For a full procedure on how to do this, see Configure Hot Rod Authentication (GSSAPI/Kerberos). Using the Kerberos Login Module <security-domain name="krb-node0" cache-type="default"> <authentication> <login-module code="Kerberos" flag="required"> <module-option name="storeKey" value="true"/> <module-option name="useKeyTab" value="true"/> <module-option name="refreshKrb5Config" value="true"/> <module-option name="principal" value="jgroups/node0/clustered@INFINISPAN.ORG"/> <module-option name="keyTab" value="${jboss.server.config.dir}/keytabs/jgroups_node0_clustered.keytab"/>
<module-option name="doNotPrompt" value="true"/>
</authentication>
</security-domain>

The following property must be set in the <sasl/> element to reference it:

<sasl <!-- Additional configuration information here --> >
<!-- Additional configuration information here -->
</property>
</sasl>

As a result, the authentication section of the security realm is ignored, as the nodes will be validated against the Kerberos Domain Controller. The authorization configuration is still required, as the node principal must belong to the required cluster-role.

In all cases, it is recommended that a shared authorization database, such as LDAP, be used to validate node membership in order to simplify administration.

By default, the principal of the joining node must be in the following format:

jgroups/$NODE_NAME/$CACHE_CONTAINER_NAME@REALM

## 29.2. Configure Node Security in Library Mode

### 29.2.1. Configure Node Security in Library Mode

In Library mode, node authentication is configured directly in the JGroups configuration. JGroups can be configured so that nodes must authenticate each other when joining or merging with a cluster. The authentication uses SASL and is enabled by adding the SASL protocol to your JGroups XML configuration.

SASL relies on JAAS notions, such as CallbackHandlers, to obtain certain information necessary for the authentication handshake. Users must supply their own CallbackHandlers on both client and server sides.

Important

The JAAS API is only available when configuring user authentication and authorization, and is not available for node security.

Note

In the provided example, CallbackHandler classes are examples only, and not contained in the Red Hat JBoss Data Grid release. Users must provide the appropriate CallbackHandler classes for their specific LDAP implementation.

Setting Up SASL Authentication in JGroups

<SASL mech="DIGEST-MD5"
client_name="node_user"
server_callback_handler_class="org.example.infinispan.security.JGroupsSaslServerCallbackHandler"
client_callback_handler_class="org.example.infinispan.security.JGroupsSaslClientCallbackHandler"
sasl_props="com.sun.security.sasl.digest.realm=test_realm" />

The above example uses the DIGEST-MD5 mechanism. Each node must declare the user and password it will use when joining the cluster.

Important

The SASL protocol must be placed before the GMS protocol in order for authentication to take effect.

### 29.2.2. Simple Authorizing Callback Handler

For instances where a more complex Kerberos or LDAP approach is not needed the SimpleAuthorizingCallbackHandler class may be used. To enable this set both the server_callback_handler and the client_callback_handler to org.jgroups.auth.sasl.SimpleAuthorizingCallbackHandler , as seen in the below example:

<SASL mech="DIGEST-MD5"
client_name="node_user"
server_callback_handler_class="org.jgroups.auth.sasl.SimpleAuthorizingCallbackHandler"
client_callback_handler_class="org.jgroups.auth.sasl.SimpleAuthorizingCallbackHandler"
sasl_props="com.sun.security.sasl.digest.realm=test_realm" />

The SimpleAuthorizingCallbackHandler may be configured either programmatically, by passing the constructor an instance of of java.util.Properties , or via standard Java system properties, set on the command line using the -DpropertyName=propertyValue notation. The following properties are available:

• sasl.credentials.properties - the path to a property file which contains principal/credential mappings represented as principal=password .
• sasl.local.principal - the name of the principal that is used to identify the local node. It must exist in the sasl.credentials.properties file.
• sasl.roles.properties - (optional) the path to a property file which contains principal/roles mappings represented as principal=role1,role2,role3 .
• sasl.role - (optional) if present, authorizes joining nodes only if their principal is.
• sasl.realm - (optional) the name of the realm to use for the SASL mechanisms that require it

### 29.2.3. Configure Node Authentication for Library Mode (DIGEST-MD5)

The behavior of a node differs depending on whether it is the coordinator node or any other node. The coordinator acts as the SASL server, with the joining or merging nodes behaving as SASL clients. When using the DIGEST-MD5 mechanism in Library mode, the server and client callback must be specified so that the server and client are aware of how to obtain the credentials. Therefore, two CallbackHandlers are required:

• The server_callback_handler_class is used by the coordinator.
• The client_callback_handler_class is used by other nodes.

The following example demonstrates these CallbackHandlers.

Callback Handlers

<SASL mech="DIGEST-MD5"
client_name="node_name"
client_callback_handler_class="${CLIENT_CALLBACK_HANDLER_IN_CLASSPATH}" server_callback_handler_class="${SERVER_CALLBACK_HANDLER_IN_CLASSPATH}"
sasl_props="com.sun.security.sasl.digest.realm=test_realm"
/>

JGroups is designed so that all nodes are able to act as coordinator or client depending on cluster behavior, so if the current coordinator node goes down, the next node in the succession chain will become the coordinator. Given this behavior, both server and client callback handlers must be identified within SASL for Red Hat JBoss Data Grid implementations.

### 29.2.4. Configure Node Authentication for Library Mode (GSSAPI)

When performing node authentication in Library mode using the GSSAPI mechanism, the login_module_name parameter must be specified instead of callback.

This login module is used to obtain a valid Kerberos ticket, which is used to authenticate a client to the server. The server_name must also be specified, as the client principal is constructed as jgroups/$server_name@REALM . Specifying the login module and server on the coordinator node <SASL mech="GSSAPI" server_name="node0/clustered" login_module_name="krb-node0" server_callback_handler_class="org.infinispan.test.integration.security.utils.SaslPropCallbackHandler" /> On the coordinator node, the server_callback_handler_class must be specified for node authorization. This will determine if the authenticated joining node has permission to join the cluster. Note The server principal is always constructed as jgroups/server_name, therefore the server principal in Kerberos must also be jgroups/server_name. For example, if the server name in Kerberos is jgroups/node1/mycache, then the server name must be node1/mycache. ## 29.3. JGroups Encryption ### 29.3.1. JGroups Encryption JGroups includes the SYM_ENCRYPT and ASYM_ENCRYPT protocols to provide encryption for cluster traffic. Important The ENCRYPT protocol has been deprecated and should not be used in production environments. It is recommended to use either SYM_ENCRYPT or ASYM_ENCRYPT By default, both of these protocols only encrypt the message body; they do not encrypt message headers. To encrypt the entire message, including all headers, as well as destination and source addresses, the property encrypt_entire_message must be true. When defining these protocols they should be placed directly under NAKACK2. Both protocols may be used to encrypt and decrypt communication in JGroups, and are used in the following ways: • SYM_ENCRYPT: Configured with a secret key in a keystore using the JCEKS store type. • ASYM_ENCRYPT: Configured with algorithms and key sizes. In this scenario the secret key is not retrieved from the keystore, but instead generated by the coordinator and distributed to new members. Once a member joins the cluster they send a request for the secret key to the coordinator; the coordinator responds with the secret key back to the new member encrypted with the member’s public key. Each message is identified as encrypted with a specific encryption header identifying the encrypt header and an MD5 digest identifying the version of the key being used to encrypt and decrypt messages. ### 29.3.2. Configuring JGroups Encryption Protocols JGroups encryption protocols are placed in the JGroups configuration file, and there are three methods of including this file depending on how JBoss Data Grid is in use: • Standard Java properties can also be used in the configuration, and it is possible to pass the path to JGroups configuration via the -D option during start up. • The default, pre-configured JGroups files are packaged in infinispan-embedded.jar , alternatively, you can create your own configuration file. See Configure JGroups (Library Mode) for instructions on how to set up JBoss Data Grid to use custom JGroups configurations in library mode. • In Remote Client-Server mode, the JGroups configuration is part of the main server configuration file. When defining both the SYM_ENCRYPT and ASYM_ENCRYPT protocols, place them directly under NAKACK2 in the configuration file. ### 29.3.3. SYM_ENCRYPT: Using a Key Store SYM_ENCRYPT uses store type JCEKS. To generate a keystore compatible with JCEKS, use the following command line options to keytool: $ keytool -genseckey -alias myKey -keypass changeit -storepass changeit -keyalg Blowfish -keysize 56 -keystore defaultStore.keystore -storetype JCEKS

SYM_ENCRYPT can then be configured by adding the following information to the JGroups file used by the application.

<SYM_ENCRYPT sym_algorithm="AES"
encrypt_entire_message="true"
keystore_name="defaultStore.keystore"
alias="myKey"/>
Note

The defaultStore.keystore must be found in the classpath.

### 29.3.4. ASYM_ENCRYPT: Configured with Algorithms and Key Sizes

In this encryption mode, the coordinator selects the secretKey and distributes it to all peers. There is no keystore, and keys are distributed using a public/private key exchange. Instead, encryption occurs as follows:

1. The secret key is generated and distributed by the coordinator.
2. When a view change occurs, a peer requests the secret key by sending a key request with its own public key.
3. The coordinator encrypts the secret key with the public key, and sends it back to the peer.
4. The peer then decrypts and installs the key as its own secret key.
5. Any further communications are encrypted and decrypted using the secret key.

ASYM_ENCRYPT Example

    ...
<VERIFY_SUSPECT/>
<ASYM_ENCRYPT encrypt_entire_message="true"
sym_keylength="128"
asym_keylength="512"
asym_algorithm="RSA"/>

<pbcast.NAKACK2/>
<UNICAST3/>
<pbcast.STABLE/>
<FRAG3/>
<AUTH auth_class="org.jgroups.auth.MD5Token"
auth_value="chris"
token_hash="MD5"/>
<pbcast.GMS join_timeout="2000" />

In the provided example, ASYM_ENCRYPT has been placed immediately below NAKACK2, and encrypt_entire_message has been enabled, indicating that the message headers will be encrypted along with the message body. This means that the NAKACK2 and UNICAST3 protocols are also encrypted. In addition, AUTH has been included as part of the configuration, so that only authenticated nodes may request the secret key from the coordinator.

View changes that identify a new controller result in a new secret key being generated and distributed to all peers. This is a substantial overhead in an application with high peer churn. A new secret key may optionally be generated when a cluster member leaves by setting change_key_on_leave to true.

When encrypting an entire message, the message must be marshalled into a byte buffer before being encrypted, resulting in decreased performance.

### 29.3.5. JGroups Encryption Configuration Parameters

The following table provides configuration parameters for the ENCRYPT JGroups protocol, which both SYM_ENCRYPT and ASYM_ENCRYPT extend:

Table 29.1. ENCRYPT Configuration Parameters

NameDescription

asym_algorithm

Cipher engine transformation for asymmetric algorithm. Default is RSA.

asym_keylength

Initial public/private key length. Default is 512.

asym_provider

Cryptographic Service Provider. Default is Bouncy Castle Provider.

encrypt_entire_message

By default only the message body is encrypted. Enabling encrypt_entire_message ensures that all headers, destination and source addresses, and the message body is encrypted.

sym_algorithm

Cipher engine transformation for symmetric algorithm. Default is AES.

sym_keylength

Initial key length for matching symmetric algorithm. Default is 128.

sym_provider

Cryptographic Service Provider. Default is Bouncy Castle Provider.

The following table provides a list of the SYM_ENCRYPT protocol parameters

Table 29.2. SYM_ENCRYPT Configuration Parameters

NameDescription

alias

Alias used for recovering the key. Change the default.

Password for recovering the key. Change the default.

keystore_name

File on classpath that contains keystore repository.

Password used to check the integrity/unlock the keystore. Change the default.

The following table provides a list of the ASYM_ENCRYPT protocol parameters

Table 29.3. ASYM_ENCRYPT Configuration Parameters

NameDescription

change_key_on_leave

When a member leaves the view, change the secret key, preventing old members from eavesdropping.

# Part XIV. Command Line Tools

## 30.1. Command Line Tools

Red Hat JBoss Data Grid includes two command line tools for interacting with the caches in the data grid:

## 31.1. JBoss Data Grid CLIs

Red Hat JBoss Data Grid includes two Command Line Interfaces: a Library Mode CLI (see Red Hat JBoss Data Grid Library Mode CLI for details) and a Server Mode CLI (see Red Hat JBoss Data Grid Server CLI for details).

## 31.2. Red Hat JBoss Data Grid Library Mode CLI

### 31.2.1. Red Hat JBoss Data Grid Library Mode CLI

Red Hat JBoss Data Grid includes the Red Hat JBoss Data Grid Library Mode Command Line Interface (CLI) that is used to inspect and modify data within caches and internal components (such as transactions, cross-datacenter replication sites, and rolling upgrades). The JBoss Data Grid Library Mode CLI can also be used for more advanced operations such as transactions.

### 31.2.2. Start the Library Mode CLI (Server)

Start the Red Hat JBoss Data Grid CLI’s server-side module with the standalone and domain files. For Linux, use the standalone.sh or domain.sh script and for Windows, use the standalone.bat or domain.bat file.

### 31.2.3. Start the Library Mode CLI (Client)

Start the Red Hat JBoss Data Grid CLI client using the cli files in the bin directory. For Linux, run bin/cli.sh and for Windows, run bin\cli.bat .

When starting up the CLI client, specific command line switches can be used to customize the start up.

### 31.2.4. CLI Client Switches for the Command Line

The listed command line switches are appended to the command line when starting the Red Hat JBoss Data Grid CLI command:

Table 31.1. CLI Client Command Line Switches

Short OptionLong OptionDescription

-c

--connect=${URL} Connects to a running Red Hat JBoss Data Grid instance. For example, for JMX over RMI use jmx://[username[:password]]@host:port[/container[/cache]] and for JMX over JBoss Remoting use remoting://[username[:password]]@host:port[/container[/cache]] -f --file=${FILE}

Read the input from the specified file rather than using interactive mode. If the value is set to - then the stdin is used as the input.

-h

--help

Displays the help information.

-v

--version

Displays the CLI version information.

### 31.2.5. Connect to the Application

Use the following command to connect to the application using the CLI:

[disconnected//]> connect 127.0.0.1:9990
[standalone@127.0.0.1:9990/>
Note

The port value 9990 depends on the value the JVM is started with. This port may be changed by starting the JVM with the -Dcom.sun.management.jmxremote.port=$PORT_NUMBER command line parameter. When the remoting protocol (remoting://localhost:9990) is used, the Red Hat JBoss Data Grid server administration port is used (the default is port 9990). The command line prompt displays the active connection information, along with the current directory. Use the container command to select a cache manager, and then select a cache with the cache command. A cache must be selected before performing cache operations. The CLI supports tab completion, therefore using the cache and pressing the tab button displays a list of active caches. The following example assumes a cache manager, MyCacheManager, defined in the configuration. [standalone@127.0.0.1:9990/> container MyCacheManager [standalone@127.0.0.1:9990/MyCacheManager/> cache default namedCache [standalone@127.0.0.1:9990/MyCacheManager/]> cache default [standalone@127.0.0.1:9990/MyCacheManager/default]> Additionally, pressing tab displays a list of valid commands for the CLI. ## 31.3. Red Hat JBoss Data Grid Server CLI ### 31.3.1. Red Hat Data Grid Server Mode CLI Red Hat JBoss Data Grid includes a new Remote Client-Server mode CLI. This CLI can only be used for specific use cases, such as manipulating the server subsystem for the following: • configuration • management • obtaining metrics ### 31.3.2. Start the Server Mode CLI Use the following commands to run the JBoss Data Grid Server CLI from the command line: For Linux: $ JDG_HOME/bin/cli.sh

For Windows:

C:\>JDG_HOME\bin\cli.bat

## 31.4. CLI Commands

### 31.4.1. CLI Commands

Unless specified otherwise, all listed commands for the JBoss Data Grid CLIs can be used with both the Library Mode and Server Mode CLIs. Specifically, the deny (see The deny Command), grant (see The grant Command), and roles (see The roles command) commands are only available on the Server Mode CLI.

### 31.4.2. The abort Command

The abort command aborts a running batch initiated using the start command. Batching must be enabled for the specified cache. The following is a usage example:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> start
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> abort
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> get a
null

### 31.4.3. The begin Command

The begin command starts a transaction. This command requires transactions enabled for the cache it targets. An example of this command’s usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> begin
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put b b
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> commit

### 31.4.4. The cache Command

The cache command specifies the default cache used for all subsequent operations. If invoked without any parameters, it shows the currently selected cache. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> cache default
[standalone@127.0.0.1:9990/MyCacheManager/default]> cache
default
[standalone@127.0.0.1:9990/MyCacheManager/default]>

### 31.4.5. The clearcache Command

The clearcache command clears all content from the cache. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> clearcache
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> get a
null

### 31.4.6. The commit Command

The commit command commits changes to an ongoing transaction. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> begin
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put b b
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> commit

### 31.4.7. The container Command

The container command selects the default cache container (cache manager). When invoked without any parameters, it lists all available containers. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> container
MyCacheManager OtherCacheManager
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> container OtherCacheManager
[standalone@127.0.0.1:9990/OtherCacheManager/]>

### 31.4.8. The create Command

The create command creates a new cache based on the configuration of an existing cache definition. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> create newCache like namedCache
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> cache newCache
[standalone@127.0.0.1:9990/MyCacheManager/newCache]>

### 31.4.9. The deny Command

When authorization is enabled and the role mapper has been configured to be the ClusterRoleMapper, principal to role mappings are stored within the cluster registry (a replicated cache available to all nodes). The deny command can be used to deny roles previously assigned to a principal:

[standalone@127.0.0.1:9990]> deny supervisor to user1
Note

The deny command is only available to the JBoss Data Grid Server Mode CLI.

### 31.4.10. The disconnect Command

The disconnect command disconnects the currently active connection, which allows the CLI to connect to another instance. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> disconnect
[disconnected//]

### 31.4.11. The encoding Command

The encoding command sets a default codec to use when reading and writing entries to and from a cache. If invoked with no arguments, the currently selected codec is displayed. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> encoding
none
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> encoding --list
memcached
hotrod
none
rest
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> encoding hotrod

### 31.4.12. The end Command

The end command ends a running batch initiated using the start command. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> start
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> end
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> get a
a

### 31.4.13. The evict Command

The evict command evicts an entry associated with a specific key from the cache. An example of it usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> evict a

### 31.4.14. The get Command

The get command shows the value associated with a specified key. For primitive types and Strings, the get command prints the default representation. For other objects, a JSON representation of the object is printed. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a
[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> get a
a

### 31.4.15. The grant Command

When authorization is enabled and the role mapper has been configured to be the ClusterRoleMapper, the principal to role mappings are stored within the cluster registry (a replicated cache available to all nodes). The grant command can be used to grant new roles to a principal as follows:

[standalone@127.0.0.1:9990]> grant supervisor to user1
Note

The grant command is only available to the JBoss Data Grid Server Mode CLI.

### 31.4.16. The info Command

The info command displays the configuration of a selected cache or container. An example of its usage is as follows:

[standalone@127.0.0.1:9990/MyCacheManager/namedCache]> info
GlobalConfiguration{asyncListenerExecutor=ExecutorFactoryConfiguration{factory=org.infinispan.executors.DefaultExecutorFactory@98add58}, asyncTransportExecutor=ExecutorFactoryConfiguration{factory=org.infinispan.executors.DefaultExecutorFactory@7bc9c14c}, evictionScheduledExecutor=ScheduledExecutorFactoryConfiguration{factory=org.infinispan.executors.DefaultScheduledExecutorFactory@7ab1a411}, replicationQueueScheduledExecutor=ScheduledExecutorFactoryConfiguration{factory=org.infinispan.executors.DefaultScheduledExecutorFactory@248a9705}, globalJmxStatistics=GlobalJmxStatisticsConfiguration{allowDuplicateDomains=true, enabled=true, jmxDomain='jboss.infinispan', mBeanServerLookup=org.jboss.as.clustering.infinispan.MBeanServerProvider@6c0dc01, cacheManagerName='local', properties={}}, transport=TransportConfiguration{clusterName='ISPN', machineId='null', rackId='null', siteId='null', strictPeerToPeer=false, distributedSyncTimeout=240000, transport=null, nodeName='null', properties={}}, serialization=SerializationConfiguration{advancedExternalizers={1100=org.infinispan.server.core.CacheValue$Externalizer@5fabc91d, 1101=org.infinispan.server.memcached.MemcachedValue$Externalizer@720bffd, 1104=org.infinispan.server.hotrod.ServerAddress$Externalizer@771c7eb2}, marshaller=org.infinispan.marshall.VersionAwareMarshaller@6fc21535, version=52, classResolver=org.jboss.marshalling.ModularClassResolver@2efe83e5}, shutdown=ShutdownConfiguration{hookBehavior=DONT_REGISTER}, modules={}, site=SiteConfiguration{localSite='null'}} ### 31.4.17. The locate Command The locate command displays the physical location of a specified entry in a distributed cluster. An example of its usage is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> locate a [host/node1,host/node2] ### 31.4.18. The put Command The put command inserts an entry into the cache. If a mapping exists for a key, the put command overwrites the old value. The CLI allows control over the type of data used to store the key and value. An example of its usage is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put b 100 [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put c 4139l [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put d true [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put e { "package.MyClass": {"i": 5, "x": null, "b": true } } Optionally, the put can specify a life span and maximum idle time value as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a expires 10s [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a expires 10m maxidle 1m ### 31.4.19. The replace Command The replace command replaces an existing entry in the cache with a specified new value. An example of its usage is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> replace a b [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> get a b [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> replace a b c [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> get a c [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> replace a b d [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> get a c ### 31.4.20. The roles command When authorization is enabled and the role mapper has been configured to be the ClusterRoleMapper, the principal to role mappings are stored within the cluster registry (a replicated cache available to all nodes). The roles command can be used to list the roles associated to a specific user, or to all users if one is not given: [standalone@127.0.0.1:9990]> roles user1 [supervisor, reader] Note The roles command is only available to the JBoss Data Grid Server Mode CLI. ### 31.4.21. The rollback Command The rollback command rolls back any changes made by an ongoing transaction. An example of its usage is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> begin [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put b b [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> rollback ### 31.4.22. The site Command The site command performs administration tasks related to cross-datacenter replication. This command also retrieves information about the status of a site and toggles the status of a site. An example of its usage is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> site --status NYC online [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> site --offline NYC ok [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> site --status NYC offline [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> site --online NYC ### 31.4.23. The start Command The start command initiates a batch of operations. An example of its usage is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> start [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put a a [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> put b b [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> end ### 31.4.24. The stats Command The stats command displays statistics for the cache. An example of its usage is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> stats Statistics: { averageWriteTime: 143 evictions: 10 misses: 5 hitRatio: 1.0 readWriteRatio: 10.0 removeMisses: 0 timeSinceReset: 2123 statisticsEnabled: true stores: 100 elapsedTime: 93 averageReadTime: 14 removeHits: 0 numberOfEntries: 100 hits: 1000 } LockManager: { concurrencyLevel: 1000 numberOfLocksAvailable: 0 numberOfLocksHeld: 0 } ### 31.4.25. The upgrade Command The upgrade command implements the rolling upgrade procedure. For details about rolling upgrades, refer to Rolling Upgrades. An example of the upgrade command’s use is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> upgrade --synchronize=hotrod --all [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> upgrade --disconnectsource=hotrod --all ### 31.4.26. The version Command The version command displays version information for the CLI client and server. An example of its usage is as follows: [standalone@127.0.0.1:9990/MyCacheManager/namedCache]> version Client Version 5.2.1.Final Server Version 5.2.1.Final # Part XV. Other Red Hat JBoss Data Grid Functions ## Chapter 32. Set Up the L1 Cache ## 32.1. About the L1 Cache The Level 1 (or L1) cache stores remote cache entries after they are initially accessed, preventing unnecessary remote fetch operations for each subsequent use of the same entries. The L1 cache is only available when Red Hat JBoss Data Grid’s cache mode is set to distribution. In other cache modes any configuration related to the L1 cache is ignored. When caches are configured with distributed mode, the entries are evenly distributed between all clustered caches. Each entry is copied to a desired number of owners, which can be less than the total number of caches. As a result, the system’s scalability is improved but also means that some entries are not available on all nodes and must be fetched from their owner node. In this situation, configure the Cache component to use the L1 Cache to temporarily store entries that it does not own to prevent repeated fetching for subsequent uses. Each time a key is updated an invalidation message is generated. This message is multicast to each node that contains data that corresponds to current L1 cache entries. The invalidation message ensures that each of these nodes marks the relevant entry as invalidated. Also, when the location of an entry changes in the cluster, the corresponding L1 cache entry is invalidated to prevent outdated cache entries. ## 32.2. L1 Cache Configuration ### 32.2.1. L1 Cache Configuration (Library Mode) The following sample configuration shows the L1 cache default values in Red Hat JBoss Data Grid’s Library Mode. L1 Cache Configuration in Library Mode <distributed-cache name="distributed_cache" l1-lifespan="0" l1-cleanup-interval="60000"/> The following attributes control the L1 cache behavior: • The l1-lifespan attribute indicates the maximum lifespan in milliseconds of entries placed in the L1 cache, and is not allowed in non-distributed caches. By default L1 this value is 0, indicating that L1 caching is disabled, and is only enabled if a positive value is defined. • The li-cleanup-interval parameter controls how often a cleanup task to prune L1 tracking data is run, in milliseconds, and by default is defined to 10 minutes. ### 32.2.2. L1 Cache Configuration (Remote Client-Server Mode) The following sample configuration shows the L1 cache default value of 0, indicating it is disabled, in Red Hat JBoss Data Grid’s Remote Client-Server mode: L1 Cache Configuration for Remote Client-Server Mode <distributed-cache l1-lifespan="0"> <!-- Additional configuration information here --> </distributed-cache> The l1-lifespan element is added to a distributed-cache element to enable L1 caching and to set the life span of the L1 cache entries for the cache. This element is only valid for distributed caches. If l1-lifespan is set to 0 or a negative number (-1), L1 caching is disabled. L1 caching is enabled when the l1-lifespan value is greater than 0. Important When the cache is accessed remotely via the Hot Rod protocol, the client accesses the owner node directly. Therefore, using L1 Cache via the Hot Rod protocol is not recommended; instead, refer to the Near Caching section in the JBoss Data Grid Developer Guide . Other remote clients (Memcached, REST) cannot target the owner, therefore, using L1 Cache may increase the performance (at the cost of higher memory consumption). Note In Remote Client-Server mode, the L1 cache was enabled by default when distributed cache was used, even if the l1-lifespan attribute is not set. The default lifespan value was 10 minutes. Since JBoss Data Grid 6.3, the default lifespan is 0 which disables the L1 cache. Set a non-zero value for the l1-lifespan parameter to enable the L1 cache. ## Chapter 33. Set Up Transactions ## 33.1. About Transactions ### 33.1.1. About Transactions A transaction consists of a collection of interdependent or related operations or tasks. All operations within a single transaction must succeed for the overall success of the transaction. If any operations within a transaction fail, the transaction as a whole fails and rolls back any changes. Transactions are particularly useful when dealing with a series of changes as part of a larger operation. In Red Hat JBoss Data Grid, transactions are only available in Library mode. ### 33.1.2. About the Transaction Manager In Red Hat JBoss Data Grid, the Transaction Manager coordinates transactions across a single or multiple resources. The responsibilities of a Transaction Manager include: • initiating and concluding transactions • managing information about each transaction • coordinating transactions as they operate over multiple resources • recovering from a failed transaction by rolling back changes ### 33.1.3. XA Resources and Synchronizations XA Resources are fully fledged transaction participants. In the prepare phase (see About Two Phase Commit (2PC) for details), the XA Resource returns a vote with either the value OK or ABORT. If the Transaction Manager receives OK votes from all XA Resources, the transaction is committed, otherwise it is rolled back. Synchronizations are a type of listener that receive notifications about events leading to the transaction life cycle. Synchronizations receive an event before and after the operation completes. Unless recovery is required, it is not necessary to register as a full XA resource. An advantage of synchronizations is that they allow the Transaction Manager to optimize 2PC (Two Phase Commit) with a 1PC (One Phase Commit) where only one other resource is enlisted with that transaction (last resource commit optimization). This makes registering a synchronization more efficient. However, if the operation fails in the prepare phase within Red Hat JBoss Data Grid, the transaction is not rolled back and if there are more participants in the transaction, they can ignore this failure and commit. Additionally, errors encountered in the commit phase are not propagated to the application code that commits the transaction. By default JBoss Data Grid registers to the transaction as a synchronization. ### 33.1.4. Optimistic and Pessimistic Transactions Pessimistic transactions acquire the locks when the first write operation on the key executes. After the key is locked, no other transaction can modify the key until this transaction is committed or rolled back. It is up to the application code to acquire the locks in correct order to prevent deadlocks. With optimistic transactions locks are acquired at transaction prepare time and are held until the transaction commits (or rolls back). Also, Red Hat JBoss Data Grid sorts keys for all entries modified within a transaction automatically, preventing any deadlocks occurring due to the incorrect order of keys being locked. This results in: • less messages being sent during the transaction execution • locks held for shorter periods • improved throughput Note Read operations never acquire any locks. Acquiring the lock for a read operation on demand is possible only with pessimistic transactions, using the FORCE_WRITE_LOCK flag with the operation. ### 33.1.5. Write Skew Checks A common use case for entries is that they are read and subsequently written in a transaction. However, a third transaction can modify the entry between these two operations. In order to detect such a situation and roll back a transaction Red Hat JBoss Data Grid offers entry versioning and write skew checks. If the modified version is not the same as when it was last read during the transaction, the write skew checks throws an exception and the transaction is rolled back. Enabling write skew check requires the REPEATABLE_READ isolation level. Also, in clustered mode (distributed or replicated modes), set up entry versioning. For local mode, entry versioning is not required. Important With optimistic transactions, write skew checks are required for (atomic) conditional operations. ### 33.1.6. Transactions Spanning Multiple Cache Instances Each cache operates as a separate, standalone Java Transaction API (JTA) resource. However, components can be internally shared by Red Hat JBoss Data Grid for optimization, but this sharing does not affect how caches interact with a Java Transaction API (JTA) Manager. ## 33.2. Configure Transactions ### 33.2.1. Configure Transactions (Library Mode) In Red Hat JBoss Data Grid, transactions in Library mode can be configured with synchronization and transaction recovery. Transactions in their entirety (which includes synchronization and transaction recovery) are not available in Remote Client-Server mode. In order to execute a cache operation, the cache requires a reference to the environment’s Transaction Manager. Configure the cache with the class name that belongs to an implementation of the TransactionManagerLookup interface. When initialized, the cache creates an instance of the specified class and invokes its getTransactionManager() method to locate and return a reference to the Transaction Manager. In Library mode, transactions are configured as follows: Configure Transactions in Library Mode (XML Configuration) <local-cache name="default" <!-- Additional configuration information here -->> <transaction mode="BATCH" stop-timeout="60000" auto-commit="true" protocol="DEFAULT" recovery-cache="recoveryCache"> <locking <!-- Additional configuration information here --> > <versioning versioningScheme="SIMPLE"/> <!-- Additional configuration information here --> </local-cache> 1. Enable transactions by defining a mode. By default the mode is NONE, therefore disabling transactions. Valid transaction modes are BATCH, NON_XA, NON_DURABLE_XA, FULL_XA. 2. Define a stop-timeout, so that if there are any ongoing transactions when a cache is stopped the instance will wait for ongoing transactions to finish. Defaults to 30000 milliseconds. 3. Enable auto-commit, so that single operation transactions do not need to be manually initiated. Defaults to true. 4. Define the commit protocol in use. Valid commit protocols are DEFAULT and TOTAL_ORDER. 5. Define the name of the recovery-cache, where recovery related information is kept. Defaults to _recoveryInfoCacheName_. 6. Enable versioning of entries by defining the versioningScheme attribute as SIMPLE. Defaults to NONE, indicating that versioning is disabled. ### 33.2.2. Configure Transactions (Remote Client-Server Mode) Red Hat JBoss Data Grid does not offer transactions in Remote Client-Server mode. The default configuration is non-transactional, which is set as follows: Default Transaction Configuration in Remote Client-Server Mode <cache> <!-- Additional configuration elements here --> <transaction mode="NONE" /> <!-- Additional configuration elements here --> </cache> Important JBoss Data Grid in Remote Client-Server mode does not support transactions directly. However, if you use conditional operators such as replaceWithVersion, putIfAbsent, or removeWithVersion you should enable transactions. To enable transactions for the use of conditional operators use the following configuration: Transaction Configuration for Conditional Operators in Remote Client-Server Mode <cache> <!-- Additional configuration elements here --> <transaction mode="NON_XA" /> <!-- Additional configuration elements here --> </cache> ## 33.3. Transaction Recovery ### 33.3.1. Transaction Recovery The Transaction Manager coordinates the recovery process and works with Red Hat JBoss Data Grid to determine which transactions require manual intervention to complete operations. This process is known as transaction recovery. JBoss Data Grid uses JMX for operations that explicitly force transactions to commit or roll back. These methods receive byte arrays that describe the XID instead of the number associated with the relevant transactions. The System Administrator can use such JMX operations to facilitate automatic job completion for transactions that require manual intervention. This process uses the Transaction Manager’s transaction recovery process and has access to the Transaction Manager’s XID objects. ### 33.3.2. Transaction Recovery Process The following process outlines the transaction recovery process in Red Hat JBoss Data Grid. The Transaction Recovery Process 1. The Transaction Manager creates a list of transactions that require intervention. 2. The system administrator, connected to JBoss Data Grid using JMX, is presented with the list of transactions (including transaction IDs) using email or logs. The status of each transaction is either COMMITTED or PREPARED. If some transactions are in both COMMITTED and PREPARED states, it indicates that the transaction was committed on some nodes while in the preparation state on others. 3. The System Administrator visually maps the XID received from the Transaction Manager to a JBoss Data Grid internal ID. This step is necessary because the XID (a byte array) cannot be conveniently passed to the JMX tool and then reassembled by JBoss Data Grid without this mapping. 4. The system administrator forces the commit or rollback process for a transaction based on the mapped internal ID. ### 33.3.3. Transaction Recovery Example The following example describes how transactions are used in a situation where money is transferred from an account stored in a database to an account stored in Red Hat JBoss Data Grid. Money Transfer from an Account Stored in a Database to an Account in JBoss Data Grid 1. The TransactionManager.commit() method is invoked to run the two phase commit protocol between the source (the database) and the destination (JBoss Data Grid) resources. 2. The TransactionManager tells the database and JBoss Data Grid to initiate the prepare phase (the first phase of a Two Phase Commit). During the commit phase, the database applies the changes but JBoss Data Grid fails before receiving the Transaction Manager’s commit request. As a result, the system is in an inconsistent state due to an incomplete transaction. Specifically, the amount to be transferred has been subtracted from the database but is not yet visible in JBoss Data Grid because the prepared changes could not be applied. Transaction recovery is used here to reconcile the inconsistency between the database and JBoss Data Grid entries. Note To use JMX to manage transaction recoveries, JMX support must be explicitly enabled. ## 33.4. Deadlock Detection ### 33.4.1. Deadlock Detection A deadlock occurs when multiple processes or tasks wait for the other to release a mutually required resource. Deadlocks can significantly reduce the throughput of a system, particularly when multiple transactions operate against one key set. Red Hat JBoss Data Grid provides deadlock detection to identify such deadlocks. Deadlock detection is enabled by default. ### 33.4.2. Enable Deadlock Detection Deadlock detection in Red Hat JBoss Data Grid is enabled by default, and may be configured by adjusting the deadlock-detection-spin attribute of the cache configuration element, as seen below: <local-cache [...] deadlock-detection-spin="1000"/> The deadlock-detection-spin attribute defines how often lock acquisition is attempted within the maximum time allowed to acquire a particular lock (in milliseconds). This value defaults to 100 milliseconds, and negative values disable deadlock detection. Deadlock detection can only be applied to individual caches. Deadlocks that are applied on more than one cache cannot be detected by JBoss Data Grid. ## Chapter 34. Configure JGroups ## 34.1. About JGroups JGroups is the underlying group communication library used to connect Red Hat JBoss Data Grid instances. For a full list of JGroups protocols supported in JBoss Data Grid, see Supported JGroups Protocols. ## 34.2. Configure Red Hat JBoss Data Grid Interface Binding (Remote Client-Server Mode) ### 34.2.1. Interfaces Red Hat JBoss Data Grid allows users to specify an interface type rather than a specific (unknown) IP address. • link-local: Uses a 169.x.x.x or 254.x.x.x address. This suits the traffic within one box. <interfaces> <interface name="link-local"> <link-local-address/> </interface> <!-- Additional configuration elements here --> </interfaces> • site-local: Uses a private IP address, for example 192.168.[replaceable]x.[replaceable]x. This prevents extra bandwidth charged from GoGrid, and similar providers. <interfaces> <interface name="site-local"> <site-local-address/> </interface> <!-- Additional configuration elements here --> </interfaces> • global: Picks a public IP address. This should be avoided for replication traffic. <interfaces> <interface name="global"> <any-address/> </interface> <!-- Additional configuration elements here --> </interfaces> • non-loopback: Uses the first address found on an active interface that is not a 127.x.x.x address. <interfaces> <interface name="non-loopback"> <not> <loopback /> </not> </interface> </interfaces> ### 34.2.2. Binding Sockets #### 34.2.2.1. Binding Sockets Socket bindings provide a method of associating a name with networking details, such as an interface, a port, a multicast-address, or other details. Sockets may be bound to the interface either individually or using a socket binding group. #### 34.2.2.2. Binding a Single Socket Example The following is an example depicting the use of JGroups interface socket binding to bind an individual socket using the socket-binding element. Socket Binding <socket-binding name="jgroups-udp" <!-- Additional configuration elements here --> interface="site-local"/> #### 34.2.2.3. Binding a Group of Sockets Example The following is an example depicting the use of Groups interface socket bindings to bind a group, using the socket-binding-group element: Bind a Group <socket-binding-group name="ha-sockets" default-interface="global"> <!-- Additional configuration elements here --> <socket-binding name="jgroups-tcp" port="7600"/> <socket-binding name="jgroups-tcp-fd" port="57600"/> <!-- Additional configuration elements here --> </socket-binding-group> The two sample socket bindings in the example are bound to the same default-interface (global), therefore the interface attribute does not need to be specified. ### 34.2.3. Configure JGroups Socket Binding Each JGroups stack, configured in the JGroups subsystem, uses a specific socket binding. Set up the socket binding as follows: JGroups UDP Socket Binding Configuration The following example utilizes UDP automatically form the cluster. In this example the jgroups-udp socket binding is defined for the transport: <subsystem xmlns="urn:jboss:domain:jgroups:3.0" default-stack="udp"> <stack name="udp"> <transport type="UDP" socket-binding="jgroups-udp"> <!-- Additional configuration elements here --> </transport> <protocol type="PING"/> <protocol type="MERGE3"/> <protocol type="FD_SOCK" socket-binding="jgroups-udp-fd"/> <protocol type="FD_ALL"/> <protocol type="VERIFY_SUSPECT"/> <protocol type="pbcast.NAKACK2"/> <protocol type="UNICAST3"/> <protocol type="pbcast.STABLE"/> <protocol type="pbcast.GMS"/> <protocol type="UFC"/> <protocol type="MFC"/> <protocol type="FRAG3"/> </stack> </subsystem> JGroups TCP Socket Binding Configuration The following example uses TCP to establish direct communication between two clusters nodes. In the example below node1 is located at 192.168.1.2:7600, and node2 is located at 192.168.1.3:7600. The port in use will be defined by the jgroups-tcp property in the socket-binding section. <subsystem xmlns="urn:infinispan:server:jgroups:8.0" default-stack="tcp"> <stack name="tcp"> <transport type="TCP" socket-binding="jgroups-tcp"/> <protocol type="TCPPING"> <property name="initial_hosts">192.168.1.2[7600],192.168.1.3[7600]</property> <property name="num_initial_members">2</property> <property name="port_range">0</property> <property name="timeout">2000</property> </protocol> <protocol type="MERGE3"/> <protocol type="FD_SOCK" socket-binding="jgroups-tcp-fd"/> <protocol type="FD_ALL"/> <protocol type="VERIFY_SUSPECT"/> <protocol type="pbcast.NAKACK2"> <property name="use_mcast_xmit">false</property> </protocol> <protocol type="UNICAST3"/> <protocol type="pbcast.STABLE"/> <protocol type="pbcast.GMS"/> <protocol type="MFC"/> <protocol type="FRAG3"/> </stack> </subsystem> The decision of UDP vs TCP must be made in each environment. By default JGroups uses UDP, as it allows for dynamic detection of clustered members and scales better in larger clusters due to a smaller network footprint. In addition, when using UDP only one packet per cluster is required, as multicast packets are received by all subscribers to the multicast address; however, in environments where multicast traffic is prohibited, or if UDP traffic can not reach the remote cluster nodes, such as when cluster members are on separate VLANs, TCP traffic can be used to create a cluster. Important When using UDP as the JGroups transport, the socket binding has to specify the regular (unicast) port, multicast address, and multicast port. ## 34.3. Configure JGroups (Library Mode) ### 34.3.1. Configure JGroups for Clustered Modes Red Hat JBoss Data Grid must have an appropriate JGroups configuration in order to operate in clustered mode. JGroups XML Configuration <infinispan xmlns="urn:infinispan:config:8.4"> <jgroups> <stack-file name="jgroupsStack" path="/path/to/jgroups/xml/jgroups.xml}"/> </jgroups> <cache-container name="default" default-cache="default"> <transport stack="jgroupsStack" lock-timeout="600000" cluster="default" /> </cache-container> </infinispan> JBoss Data Grid will first search for jgroups.xml in the classpath; if no instances are found in the classpath it will then search for an absolute path name. ### 34.3.2. JGroups Transport Protocols #### 34.3.2.1. JGroups Transport Protocols A transport protocol is the protocol at the bottom of a protocol stack. Transport Protocols are responsible for sending and receiving messages from the network. Red Hat JBoss Data Grid ships with both UDP and TCP transport protocols. #### 34.3.2.2. The UDP Transport Protocol UDP is a transport protocol that uses: • IP multicasting to send messages to all members of a cluster. • UDP datagrams for unicast messages, which are sent to a single member. When the UDP transport is started, it opens a unicast socket and a multicast socket. The unicast socket is used to send and receive unicast messages, the multicast socket sends and receives multicast sockets. The physical address of the channel will be the same as the address and port number of the unicast socket. UDP is the default transport protocol used in JBoss Data Grid as it allows for dynamic discovery of additional cluster nodes, and scales well with cluster sizes. #### 34.3.2.3. The TCP Transport Protocol TCP/IP is a replacement transport for UDP in situations where IP multicast cannot be used, such as operations over a WAN where routers may discard IP multicast packets. TCP is a transport protocol used to send unicast and multicast messages. • When sending multicast messages, TCP sends multiple unicast messages. As IP multicasting cannot be used to discover initial members, another mechanism must be used to find initial membership. #### 34.3.2.4. Using the TCPPing Protocol Some networks only allow TCP to be used. The pre-configured default-configs/default-jgroups-tcp.xml includes the MPING protocol, which uses UDP multicast for discovery. When UDP multicast is not available, the MPING protocol, has to be replaced by a different mechanism. The recommended alternative is the TCPPING protocol. The TCPPING configuration contains a static list of IP addresses which are contacted for node discovery. Configure the JGroups Subsystem to Use TCPPING <TCP bind_port="7800" /> <TCPPING initial_hosts="${jgroups.tcpping.initial_hosts:HostA[7800],HostB[7801]}"
port_range="1" />

### 34.3.3. Pre-Configured JGroups Files

#### 34.3.3.1. Pre-Configured JGroups Files

Red Hat JBoss Data Grid ships with a number of pre-configured JGroups files packaged in infinispan-embedded.jar , and are available on the classpath by default. In order to use one of these files, specify one of these file names instead of using jgroups.xml .

The JGroups configuration files shipped with JBoss Data Grid are intended to be used as a starting point for a working project. JGroups will usually require fine-tuning for optimal network performance.

The available configurations are:

• default-configs/default-jgroups-udp.xml
• default-configs/default-jgroups-tcp.xml
• default-configs/default-jgroups-ec2.xml

#### 34.3.3.2. default-jgroups-udp.xml

The default-configs/default-jgroups-udp.xml file is a pre-configured JGroups configuration in Red Hat JBoss Data Grid. The default-jgroups-udp.xml configuration

• uses UDP as a transport and UDP multicast for discovery, allowing for dynamic discovery of nodes.
• is suitable for larger clusters, as it requires less resources than TCP.
• is recommended for clusters that send the same information to all nodes, such as when using Invalidation or Replication modes.

The behavior of some of these settings can be altered by adding certain system properties to the JVM at startup. The settings that can be configured are shown in the following table.

Table 34.1. default-jgroups-udp.xml System Properties

System PropertyDescriptionDefaultRequired?

IP address to use for multicast (both for communications and discovery). Must be a valid Class D IP address, suitable for IP multicast

228.6.7.8

No

jgroups.udp.mcast_port

Port to use for multicast socket

46655

No

jgroups.ip_ttl

Specifies the time-to-live (TTL) for IP multicast packets. The value here refers to the number of network hops a packet is allowed to make before it is dropped

2

No

0

No

200

No

jgroups.join_timeout

The maximum number of milliseconds to wait for a new node JOIN request to succeed

5000

No

#### 34.3.3.3. default-jgroups-tcp.xml

The default-configs/default-jgroups-tcp.xml file is a pre-configured JGroups configuration in Red Hat JBoss Data Grid. The default-jgroups-tcp.xml configuration

• uses TCP as a transport and UDP multicast for discovery.
• is typically used where multicast UDP is not an option.
• is recommended for point-to-point (unicast) communication, such as when using Distribution mode, as it has a more refined method of flow control.

As with other pre-configured JGroups files, the behavior of some of these settings can be altered by adding certain system properties to the JVM at startup. The settings that can be configured are shown in the following table.

Table 34.2. default-jgroups-tcp.xml System Properties

System PropertyDescriptionDefaultRequired?

IP address to use for the TCP transport.

127.0.0.1

Not required, but should be changed for clustering servers located on different systems

jgroups.tcp.port

Port to use for TCP socket

7800

No

0

No

200

No

IP address to use for multicast (for discovery). Must be a valid Class D IP address, suitable for IP multicast.

228.2.4.6

No

jgroups.mping.mcast_port

Port to use for multicast socket

43366

No

jgroups.udp.ip_ttl

Specifies the time-to-live (TTL) for IP multicast packets. The value here refers to the number of network hops a packet is allowed to make before it is dropped

2

No

jgroups.join_timeout

The maximum number of milliseconds to wait for a new node JOIN request to succeed

5000

No

#### 34.3.3.4. default-jgroups-ec2.xml

The default-configs/default-jgroups-ec2.xml file is a pre-configured JGroups configuration in Red Hat JBoss Data Grid. The default-jgroups-ec2.xml configuration

• uses TCP as a transport and S3_PING for discovery.
• is suitable on EC2 nodes, as UDP multicast is not available.

As with other pre-configured JGroups files, the behavior of some of these settings can be altered by adding certain system properties to the JVM at startup. The settings that can be configured are shown in the following table.

Table 34.3. default-jgroups-ec2.xml System Properties

System PropertyDescriptionDefaultRequired?

IP address to use for the TCP transport.

127.0.0.1

Not required, but should be changed for clustering servers located on different EC2 nodes

jgroups.tcp.port

Port to use for TCP socket

7800

No

0

No

200

No

jgroups.s3.access_key

The Amazon S3 access key used to access an S3 bucket

Yes

jgroups.s3.secret_access_key

The Amazon S3 secret key used to access an S3 bucket

Yes

jgroups.s3.bucket

Name of the Amazon S3 bucket to use. Must be unique and must already exist

Yes

jgroups.s3.pre_signed_delete_url

The pre-signed URL to be used for the DELETE operation.

Yes

jgroups.s3.pre_signed_put_url

The pre-signed URL to be used for the PUT operation.

Yes

jgroups.s3.prefix

If set, S3_PING searches for a bucket with a name that starts with the prefix value.

No

jgroups.join_timeout

The maximum number of milliseconds to wait for a new node JOIN request to succeed

5000

No

The default-configs/default-jgroups-google.xml file is a pre-configured JGroups configuration in Red Hat JBoss Data Grid. The default-jgroups-google.xml configuration

• uses TCP as a transport and GOOGLE_PING for discovery.
• is suitable on Google Compute Engine nodes, as UDP multicast is not available.

As with other pre-configured JGroups files, the behavior of some of these settings can be altered by adding certain system properties to the JVM at startup. The settings that can be configured are shown in the following table.

System PropertyDescriptionDefaultRequired?

IP address to use for the TCP transport.

127.0.0.1

Not required, but should be changed for clustering systems located on different nodes

jgroups.tcp.port

Port to use for TCP socket

7800

No

0

No

200

No

The Google Compute Engine User’s access key used to access the bucket

Yes

The Google Compute Engine User’s secret access key used to access the bucket

Yes

Name of the Google Compute Engine bucket to use. Must be unique and already exist

Yes

jgroups.join_timeout

The maximum number of milliseconds to wait for a new node JOIN request to succeed

5000

No

## 34.4. Test Multicast Using JGroups

### 34.4.1. Test Multicast Using JGroups

Learn how to ensure that the system has correctly configured multicasting within the cluster.

### 34.4.2. Testing With Different Red Hat JBoss Data Grid Versions

The following table details which Red Hat JBoss Data Grid versions are compatible with this multicast test:

Note

${infinispan.version} corresponds to the version of Infinispan included in the specific release of JBoss Data Grid. This will appear in a x.y.z format, with the major version, minor version, and revision being included. Table 34.5. Testing with Different JBoss Data Grid Versions VersionTest CaseDetails JBoss Data Grid 7.1.0 Available The location of the test classes depends on the distribution: • For library mode, they are inside the infinispan-embedded-${infinispan.version}.Final-redhat-# JAR file
• For Remote Client-Server mode, they are in the JGroups JAR file in the ${JDG_HOME}/modules/system/layers/base/org/jgroups/main/ directory." JBoss Data Grid 7.0.0 Available The location of the test classes depends on the distribution: • For library mode, they are inside the infinispan-embedded-${infinispan.version}.Final-redhat-# JAR file
• For Remote Client-Server mode, they are in the JGroups JAR file in the ${JDG_HOME}/modules/system/layers/base/org/jgroups/main/ directory." JBoss Data Grid 6.6.0 Available The location of the test classes depends on the distribution: • For library mode, they are inside the infinispan-embedded-${infinispan.version}.Final-redhat-# JAR file
• For Remote Client-Server mode, they are in the JGroups JAR file in the ${JDG_HOME}/modules/system/layers/base/org/jgroups/main/ directory." JBoss Data Grid 6.5.1 Available The location of the test classes depends on the distribution: • For library mode, they are inside the infinispan-embedded-${infinispan.version}.Final-redhat-# JAR file
• For Remote Client-Server mode, they are in the JGroups JAR file in the ${JDG_HOME}/modules/system/layers/base/org/jgroups/main/ directory." JBoss Data Grid 6.5.0 Available The location of the test classes depends on the distribution: • For library mode, they are inside the infinispan-embedded-${infinispan.version}.Final-redhat-# JAR file
• For Remote Client-Server mode, they are in the JGroups JAR file in the ${JDG_HOME}/modules/system/layers/base/org/jgroups/main/ directory." JBoss Data Grid 6.4.0 Available The location of the test classes depends on the distribution: • For library mode, they are inside the infinispan-embedded-${infinispan.version}.Final-redhat-# JAR file
• For Remote Client-Server mode, they are in the JGroups JAR file in the ${JDG_HOME}/modules/system/layers/base/org/jgroups/main/ directory." JBoss Data Grid 6.3.0 Available The location of the test classes depends on the distribution: • In Library mode, they are in the JGroups JAR file in the lib directory. • In Remote Client-Server mode, they are in the JGroups JAR file in the${JDG_HOME}/modules/system/layers/base/org/jgroups/main .

JBoss Data Grid 6.2.1

Available

The location of the test classes depends on the distribution:

• In Library mode, they are in the JGroups JAR file in the lib directory.
• In Remote Client-Server mode, they are in the JGroups JAR file in the ${JDG_HOME}/modules/system/layers/base/org/jgroups/main JBoss Data Grid 6.2.0 Available The location of the test classes depends on the distribution: • In Library mode, they are in the JGroups JAR file in the lib directory. • In Remote Client-Server mode, they are in the JGroups JAR file in the${JDG_HOME}/modules/system/layers/base/org/jgroups/main .

JBoss Data Grid 6.1.0

Available

The location of the test classes depends on the distribution:

• In Library mode, they are in the JGroups JAR file in the lib directory.
• In Remote Client-Server mode, they are in the JGroups JAR file in the ${JDG_HOME}/modules/org/jgroups/main/ directory. JBoss Data Grid 6.0.1 Not Available This version of JBoss Data Grid is based on JBoss Enterprise Application Platform 6.0, which does not include the test classes used for this test. JBoss Data Grid 6.0.0 Not Available This version of JBoss Data Grid is based on JBoss Enterprise Application Server 6.0, which does not include the test classes used for this test. ### 34.4.3. Testing Multicast Using JGroups The following procedure details the steps to test multicast using JGroups if you are using Red Hat JBoss Data Grid: Prerequisites Ensure that the following prerequisites are met before starting the testing procedure. 1. Set the bind_addr value to the appropriate IP address for the instance. 2. For added accuracy, set mcast_addr and port values that are the same as the cluster communication values. 3. Start two command line terminal windows. Navigate to the location of the JGroups JAR file for one of the two nodes in the first terminal and the same location for the second node in the second terminal. Test Multicast Using JGroups 1. Run the Multicast Server on Node One Run the following command on the command line terminal for the first node (replace jgroups.jar with the infinispan-embedded.jar for Library mode): java -cp jgroups.jar org.jgroups.tests.McastReceiverTest -mcast_addr 230.1.2.3 -port 5555 -bind_addr$YOUR_BIND_ADDRESS
2. Run the Multicast Server on Node Two

Run the following command on the command line terminal for the second node (replace jgroups.jar with the infinispan-embedded.jar for Library mode):

java -cp jgroups.jar org.jgroups.tests.McastSenderTest -mcast_addr  230.1.2.3 -port 5555 -bind_addr \$YOUR_BIND_ADDRESS
3. Transmit Information Packets

Enter information on instance for node two (the node sending packets) and press enter to send the information.

View the information received on the node one instance. The information entered in the previous step should appear here.

5. Confirm Information Transfer

Repeat steps 3 and 4 to confirm all transmitted information is received without dropped packets.

6. Repeat Test for Other Instances

Repeat steps 1 to 4 for each combination of sender and receiver. Repeating the test identifies other instances that are incorrectly configured.

Result

All information packets transmitted from the sender node must appear on the receiver node. If the sent information does not appear as expected, multicast is incorrectly configured in the operating system or the network.

## 35.1. The S3_PING JGroups Discovery Protocol

S3_PING is a discovery protocol that is ideal for use with Amazon’s Elastic Compute Cloud (EC2) because EC2 does not allow multicast and therefore MPING is not allowed.

Each EC2 instance adds a small file to an S3 data container, known as a bucket. Each instance then reads the files in the bucket to discover the other members of the cluster.

## 35.2. S3_PING Configuration Options

### 35.2.1. S3_PING Configuration Options

Red Hat JBoss Data Grid works with Amazon Web Services in two ways:

• In Library mode, use JGroups' default-configs/default-jgroups-ec2.xml file (see default-jgroups-ec2.xml for details) or use the S3_PING protocol.
• In Remote Client-Server mode, use JGroups' S3_PING protocol.

In Library and Remote Client-Server mode, there are three ways to configure the S3_PING protocol for clustering to work in Amazon AWS:

• Use Private S3 Buckets. These buckets use Amazon AWS credentials.
• Use Pre-Signed URLs. These pre-assigned URLs are assigned to buckets with private write and public read rights.
• Use Public S3 Buckets. These buckets do not have any credentials.

### 35.2.2. Using Private S3 Buckets

This configuration requires access to a private bucket that can only be accessed with the appropriate AWS credentials. To confirm that the appropriate permissions are available, confirm that the user has the following permissions for the bucket:

• List
• View Permissions
• Edit Permissions

Ensure that the S3_PING configuration includes the following properties:

• the location where the bucket is found.
• the access_key and secret_access_key properties for the AWS user.
Note

If a 403 error displays when using this configuration, verify that the properties have the correct values. If the problem persists, confirm that the system time in the EC2 node is correct. Amazon S3 rejects requests with a time stamp that is more than 15 minutes old compared to their server’s times for security purposes.

Start the Red Hat JBoss Data Grid Server with a Private Bucket

Run the following command from the top level of the server directory to start the Red Hat JBoss Data Grid server using a private S3 bucket:

bin/standalone.sh
-c cloud.xml
-Djboss.node.name={node_name}
-Djboss.socket.binding.port-offset={port_offset}
-Djboss.default.jgroups.stack=s3-private
-Djgroups.s3.bucket={s3_bucket_name}
-Djgroups.s3.access_key={access_key}
-Djgroups.s3.secret_access_key={secret_access_key}
1. Replace {node_name} with the server’s desired node name.
2. Replace {port_offset} with the port offset. To use the default ports specify this as 0.
3. Replace {s3_bucket_name} with the appropriate bucket name.
4. Replace {access_key} with the user’s access key.
5. Replace {secret_access_key} with the user’s secret access key.

### 35.2.3. Using Pre-Signed URLs

#### 35.2.3.1. Using Pre-Signed URLs

For this configuration, create a publically readable bucket in S3 by setting the