Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-5627

Improve handling of sensitive properties

    XMLWordPrintableJSON

    Details

    • Epic Name:
      Improve handling of sensitive properties
    • Epic Status:
      To Do

      Description

      There are a number of disparate issues around the handling of sensitive properties.

      There should be a clear naming strategy to differentiate:
      1. component properties that are sensitive (InvokeHTTP password, EncryptContent password etc.)
      1. secret framework configuration values (nifi.sensitive.props.key, nifi.security.keystorePasswd, LDAP Manager password, etc.)

      This epic regards the first.

      In addition:

      • Sensitive component properties should be handled in Expression Language
      • Sensitive component properties should be versionable in conjunction with NiFi Registry (this requires distributed key management)
      • Dynamic property descriptors on components should be able to be marked as sensitive

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                alopresto Andy LoPresto
                Reporter:
                alopresto Andy LoPresto
              • Votes:
                1 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated: