Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-1478

Audit SSLContextFactory and SSLSocketFactory usage throughout application

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Critical
    • Resolution: Unresolved
    • Affects Version/s: 0.5.0
    • Fix Version/s: None
    • Component/s: Core Framework

      Description

      The internal use of SSLSocketFactory and SSLContextFactory is inconsistent, as the application has grown around the concept of secure communications. NiFi can act as both a server and as a client for communications, and the default configuration should make it easy for new users to quickly secure the application for incoming and outgoing connections.

      In addition, SSLSocketFactory has some inconsistencies and idiosyncrasies which may confuse users [1].

      [1] http://stackoverflow.com/a/23365536/70465

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                alopresto Andy LoPresto
                Reporter:
                alopresto Andy LoPresto
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:

                  Time Tracking

                  Estimated:
                  Original Estimate - 336h
                  336h
                  Remaining:
                  Remaining Estimate - 336h
                  336h
                  Logged:
                  Time Spent - Not Specified
                  Not Specified