/**
* Tulio Alberton Ribeiro
* LaSIGE - Large-Scale Informatics Systems Laboratory
*/
First thing that you need is generate the key used in challenge response authentication as follow:
# keytool -genkey -alias AliasChallengeResponse -keystore myKey.jceks -keypass "YourPassWord" -storepass "YourPassWord" -storetype JCEKS
Currently the alias option from keytool is hard coded and it is used in CryptoUtil class located at: floodlight/src/main/java/org/sdnplatform/sync/internal/util/CryptoUtil.java
public static final String CHALLENGE_RESPONSE_SECRET = "AliasChallengeResponse";
Which means that it is necessary to use alias option value as defined above.
The value set in CHALLENGE_RESPONSE_SECRET var will be used to recover the key from the key store.
As you can see the alias option needs to be "AliasChallengeResponse", unless you change it in both places (keytool generation and CHALLENGE_RESPONSE_SECRET var).
After key generation you can test it:
# keytool -list -alias AliasChallengeResponse -keystore myKey.jceks -storetype JCEKS Enter keystore password: AliasChallengeResponse, 24/Mar/2016, PrivateKeyEntry, Certificate fingerprint (SHA1): A2:1B:49:1B:18:D8:DC:95:CC:9F:C3:33:94:04:39:EE:44:DD:CF:BE
org.sdnplatform.sync.internal.SyncManager.authScheme=CHALLENGE_RESPONSE
org.sdnplatform.sync.internal.SyncManager.keyStorePath=/etc/floodlight/myKey.jceks
org.sdnplatform.sync.internal.SyncManager.dbPath=/var/lib/floodlight/
org.sdnplatform.sync.internal.SyncManager.keyStorePassword=YourPassWord
org.sdnplatform.sync.internal.SyncManager.port=6642
org.sdnplatform.sync.internal.SyncManager.thisNodeId=1
org.sdnplatform.sync.internal.SyncManager.persistenceEnabled=FALSE
org.sdnplatform.sync.internal.SyncManager.nodes=[\
{"nodeId": 1, "domainId": 1, "hostname": "192.168.1.100", "port": 6642},\
{"nodeId": 2, "domainId": 1, "hostname": "192.168.1.100", "port": 6643}\
]
To use the sync service, you need create two vars ISyncService and IStoreClient and initiate the syncService:
private ISyncService syncService; private IStoreClient<String, String> storeFT; this.syncService = context.getServiceImpl(ISyncService.class);
And as well as start your store with global scope (which means syncing remote updates):
try {
this.syncService.registerStore("NameOfMyStore", Scope.GLOBAL);
this.storeFT = this.syncService.getStoreClient("NameOfMyStore",
String.class,
String.class);
this.storeFT.addStoreListener(this);
} catch (SyncException e) {
throw new FloodlightModuleException("Error while setting up sync service", e);
}
To add data in your store:
try {
this.storeFT.put("Key Y", "Data X");
} catch (SyncException e) {
e.printStackTrace();
}
To retrieve data from your store:
try {
this.storeFT.get("Key Y").getValue().toString();
} catch (SyncException e) {
e.printStackTrace();
}
And finally, if you want monitor your store, it is necessary implement interface IStoreListener<String>.
In this case our store has the String type.
In the example below we are just showing the remote sync events.
But you can uncomment the code and see local and remote updates from your sync store.
@Override
public void keysModified(Iterator<String> keys, org.sdnplatform.sync.IStoreListener.UpdateType type) {
while(keys.hasNext()){
String k = keys.next();
try {
/*
logger.debug("keysModified: Key:{}, Value:{}, Type: {}",
new Object[] {
k,
storeFT.get(k).getValue().toString(),
type.name()
}
);
*/
if(type.name().equals("REMOTE")){
String info = storeFT.get(k).getValue();
logger.debug("REMOTE: Key:{}, Value:{}", k, value);
}
} catch (SyncException e) {
e.printStackTrace();
}
}
}
Follow the complete code. The code below is part of FT class from simpleFT package.
The class uses an RPCListener to monitor RPC connections among the cluster and inform all synced nodes
from connections and disconnections from nodes.