OceanBase Connector/J supports security features such as logon authentication and Secure Sockets Layer (SSL).
Logon authentication
The client authentication service allows you to add new client authentication plug-ins.
OceanBase Connector/J provides the following authentication plug-ins:
mysql_clear_password
auth_gssapi_client
client_ed25519
mysql_native_password
mysql_old_password
dialog (PAM)
sha256_password
caching_sha2_password
You can call the org.oceanbasedb.jdbc.authentication.AuthenticationPlugin API to create new authentication plug-ins.
SSL
You can use custom SSL to connect to the server. First, a socket is created. After you set the SSL socket, it is layered on the existing socket. org.oceanbasedb.jdbc.tls.TlsSocketPlugin supports custom SSL, for example, allows you to create new HostnameVerifier.
To customize SSL, org.oceanbasedb.jdbc.tls.TlsSocketPlugin is required, and the META-INF/services/org.oceanbasedb.jdbc.tls.TlsSocketPlugin service must be registered.
The tlsSocketType parameter is used to activate customization.