Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-1478

Audit SSLContextFactory and SSLSocketFactory usage throughout application

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Critical
    • Resolution: Implemented
    • 0.5.0
    • None
    • Core Framework

    Description

      The internal use of SSLSocketFactory and SSLContextFactory is inconsistent, as the application has grown around the concept of secure communications. NiFi can act as both a server and as a client for communications, and the default configuration should make it easy for new users to quickly secure the application for incoming and outgoing connections.

      In addition, SSLSocketFactory has some inconsistencies and idiosyncrasies which may confuse users [1].

      [1] http://stackoverflow.com/a/23365536/70465

      Attachments

        Issue Links

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            alopresto Andy LoPresto
            alopresto Andy LoPresto
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - 336h
                336h
                Remaining:
                Remaining Estimate - 336h
                336h
                Logged:
                Time Spent - Not Specified
                Not Specified

                Slack

                  Issue deployment