Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-5545

Add an Origin/Referer header Jetty filter

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Minor
    • Resolution: Invalid
    • None
    • None
    • Security

    Description

      Create a new Jetty filter that allows a NiFi administrator to enable Origin/Referer HTTP header filtering.

      • If the source origin header does not match the target origin, check the referer header.
      • If the referer header does not match the target origin, deny the request.
      • The filter should enabled or disabled using a property in the NiFiProperties configuration file.
      • The filter will only be required when NiFi is configured to use HTTPS.

      Attachments

        Activity
          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            thenatog Nathan Gough
            thenatog Nathan Gough
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Slack

                Issue deployment