Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-4761

Allow whitelisting expected Host values

    XMLWordPrintableJSON

Details

    Description

      NiFi has been updated to only accept requests where the Host header contains an expected value. Currently, the expected values are driven by the .host properties in nifi.properties. When running behind a proxy, the value may be the proxy host if the headers simply pass through. In this scenario, we should offer the ability to whitelist values in case updating the proxy configuration isn't possible.

      Also, the proxy documentation in the admin guide should be updated to include details regarding the Host name whitelisting. Also, should verify the context path whitelisting is documented there.

      Attachments

        Issue Links

          Activity

            People

              alopresto Andy LoPresto
              mcgilman Matt Gilman
              Votes:
              0 Vote for this issue
              Watchers:
              14 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: