Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-5627

Improve handling of sensitive properties

Attach filesAttach ScreenshotAdd voteVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Improve handling of sensitive properties
    • To Do

    Description

      There are a number of disparate issues around the handling of sensitive properties.

      There should be a clear naming strategy to differentiate:
      1. component properties that are sensitive (InvokeHTTP password, EncryptContent password etc.)
      1. secret framework configuration values (nifi.sensitive.props.key, nifi.security.keystorePasswd, LDAP Manager password, etc.)

      This epic regards the first.

      In addition:

      • Sensitive component properties should be handled in Expression Language
      • Sensitive component properties should be versionable in conjunction with NiFi Registry (this requires distributed key management)
      • Dynamic property descriptors on components should be able to be marked as sensitive

      Attachments

        Issue Links

        There are no issues.

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            alopresto Andy LoPresto
            alopresto Andy LoPresto

            Dates

              Created:
              Updated:

              Slack

                Issue deployment