Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-4701

Support encrypted properties in authorizers.xml

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.5.0
    • Component/s: Configuration
    • Labels:
      None

      Description

      Since the addition of LdapUserGroupProvider (see NIFI-4059) in v1.4.0, authorizers.xml can now contain properties for LDAP Server credentials.

      This ticket is to enable properties in authorizers.xml to be encrypted, so that the LDAP Server Manager credentials can be protected similar to LdapProvider which is configured via login-identity-providers.xml.

      The main changes are in nifi-authorizers are:

      • authorizers.xsd to add an encryption attribute to Property
      • to PropertyAuthorizerFactoryBean to check for that attribute and decrypt the property value if necessary when creating the the configuration context

      Additionally, support for creating an encrypted authorizers.xml, protected by the NiFi master key, should be added to the Encrypt Tool in NiFi Toolkit.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                kdoran Kevin Doran
                Reporter:
                kdoran Kevin Doran
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: