Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
None
Description
Since the addition of LdapUserGroupProvider (see NIFI-4059) in v1.4.0, authorizers.xml can now contain properties for LDAP Server credentials.
This ticket is to enable properties in authorizers.xml to be encrypted, so that the LDAP Server Manager credentials can be protected similar to LdapProvider which is configured via login-identity-providers.xml.
The main changes are in nifi-authorizers are:
- authorizers.xsd to add an encryption attribute to Property
- to PropertyAuthorizerFactoryBean to check for that attribute and decrypt the property value if necessary when creating the the configuration context
Additionally, support for creating an encrypted authorizers.xml, protected by the NiFi master key, should be added to the Encrypt Tool in NiFi Toolkit.
Attachments
Issue Links
- relates to
-
NIFI-6402 Update Login Identity Provider and Authorizers to use SSPP
- Resolved
- links to