Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-5627

Improve handling of sensitive properties

    XMLWordPrintableJSON

Details

    • Improve handling of sensitive properties
    • To Do

    Description

      There are a number of disparate issues around the handling of sensitive properties.

      There should be a clear naming strategy to differentiate:
      1. component properties that are sensitive (InvokeHTTP password, EncryptContent password etc.)
      1. secret framework configuration values (nifi.sensitive.props.key, nifi.security.keystorePasswd, LDAP Manager password, etc.)

      This epic regards the first.

      In addition:

      • Sensitive component properties should be handled in Expression Language
      • Sensitive component properties should be versionable in conjunction with NiFi Registry (this requires distributed key management)
      • Dynamic property descriptors on components should be able to be marked as sensitive

      Attachments

        Issue Links

          contains

          New Feature - A new feature of the product, which has yet to be developed. NIFI-5658 Build list of processors with various attributes at startup

          • Major - Major loss of function.
          • Open

          New Feature - A new feature of the product, which has yet to be developed. NIFI-91 Allow the changing of sensitive property properties via the UI

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Reopened

          New Feature - A new feature of the product, which has yet to be developed. NIFI-3110 Allow template export to include variable registry references for sensitive values

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-1140 Allow for attributes to be marked sensitive when being added to FlowFile

          • Major - Major loss of function.
          • Open

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-2424 Allow user to add a user defined sensitive property to processors

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-2653 Encrypted configs should handle variable registry

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-3661 Add Checkbox for custom "Sensitive" properies to the "Add Property" UI

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-863 NiFi "sensitive properties" properties are duplicated/unused

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Activity

            People

              alopresto Andy LoPresto
              alopresto Andy LoPresto
              Votes:
              1 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated: