[MINIFICPP-607] Remove host and peer verification bypass configuration option - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Critical
Resolution: Fixed
Affects Version/s: 0.5.0
Fix Version/s: 0.6.0
Labels:

Description

There is a section of the MiNiFi C++ documentation which instructs the user on how to bypass host and peer verification when making secure connections. These configuration options should be removed, and users should configure the certificates correctly.

If during testing you have a need to disable host or peer verification, you may use the following options:

in minifi.properties
nifi.security.client.disable.host.verification=true
nifi.security.client.disable.peer.verification=true

Spoke to Marc Parisi off list and he asked me to assign to him.

Attachments

Issue Links

links to

GitHub Pull Request #398

Activity

People

Assignee:: Marc Parisi

Reporter:: Andy LoPresto

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 14/Sep/18 18:14

Updated:: 15/Sep/18 16:01

Resolved:: 15/Sep/18 16:01