[NIFI-5737] Client Auth property no longer used - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Minor
Resolution: Done
Affects Version/s: None
Fix Version/s: 1.8.0
Component/s: Core Framework
Labels:
None

Description

With the introduction of connection based load balancing, cluster communications can no longer be over 1-way SSL. Currently, the client auth property of nifi.properties only applied to these cluster communications. If set to false, a cluster will fail with the following exception:

javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated

This property is not used currently for site-to-site which requires it to be `required` (which is the proposed solution here).

This property is not used currently for Jetty which will `require` or `want` it based on the configured features.

Attachments

Issue Links

links to

GitHub Pull Request #3102

Activity

People

Assignee:: Matt Gilman

Reporter:: Matt Gilman

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 22/Oct/18 16:25

Updated:: 23/Oct/18 00:05

Resolved:: 23/Oct/18 00:05