[NIFI-2266] GetHTTP and PutHTTP use hard-coded TLS protocol version - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 0.7.0, 0.6.1
Fix Version/s: 1.1.0, 0.7.1
Component/s: Core Framework
Labels:
- https
- security
- tls

Description

As pointed out on the mailing list [1], the GetHTTP (and likely PutHTTP) processors use a hard-coded TLS protocol version. PostHTTP also did this and was fixed by ~~NIFI-1688~~.

The same fix should apply here and unit tests already exist which can be applied to the other processors as well.

For future notice, InvokeHTTP is a better processor for generic HTTP operations and has supported reading the TLS protocol version from the SSLContextService for some time.

[1] https://lists.apache.org/thread.html/a48e2ebbc2231d685491ae6b856c760620efca5bff2c7249f915b24d@%3Cdev.nifi.apache.org%3E

Attachments

Issue Links

is related to

NIFI-700 GetHTTP, ListenHTTP, and PostHTTP should be migrated to use SSLContextService fully

Resolved

NIFI-1688 PostHTTP does not honor SSLContextService Protocols

Resolved

relates to

NIFI-2373 GetHTTP - not working with sites that only support TLS

Resolved

links to

GitHub Pull Request #999

Activity

People

Assignee:: Andy LoPresto

Reporter:: Andy LoPresto

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 14/Jul/16 21:10

Updated:: 07/Oct/16 19:32

Resolved:: 15/Sep/16 22:12

Time Tracking

Estimated:

Remaining:

Logged:

Not Specified