Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-4761

Allow whitelisting expected Host values

    XMLWordPrintableJSON

    Details

      Description

      NiFi has been updated to only accept requests where the Host header contains an expected value. Currently, the expected values are driven by the .host properties in nifi.properties. When running behind a proxy, the value may be the proxy host if the headers simply pass through. In this scenario, we should offer the ability to whitelist values in case updating the proxy configuration isn't possible.

      Also, the proxy documentation in the admin guide should be updated to include details regarding the Host name whitelisting. Also, should verify the context path whitelisting is documented there.

        Attachments

          Issue Links

          There are no Sub-Tasks for this issue.

            Activity

              People

              • Assignee:
                alopresto Andy LoPresto
                Reporter:
                mcgilman Matt Gilman
              • Votes:
                0 Vote for this issue
                Watchers:
                14 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: