[NIFI-6019] Remove Trusted Hostname property from InvokeHTTP processor - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.8.0
Fix Version/s: 1.10.0
Component/s: Extensions
Labels:
- InvokeHTTP
- certificate
- hostname
- http
- security
- tls

Description

The Trusted Hostname property in the InvokeHTTP processor is a legacy property created for a specific use in constrained environments. It now causes more problems than it solves (mailing list questions) and should not be provided as it is a security risk. Removing this property and encouraging users to correctly deploy TLS certificates when necessary is the correct path forward.

Attachments

Issue Links

is related to

NIFI-6238 Escape HTTP header names in InvokeHTTP processor

Resolved

NIFI-7786 Bring back Trusted Hostname property from InvokeHTTP processor

Resolved

relates to

NIFI-7064 Add Custom TLS Hostname Validation to InvokeHTTP

Resolved

supercedes

NIFI-3435 Allow Expression Language for "Trusted Hostname" attribute in the InvokeHTTP processor

Resolved

NIFI-5559 Allow usage of Trusted Hostname on all HTTP-accessing processors

Resolved

links to

GitHub Pull Request #3436

GitHub Pull Request #3452

(2 links to)

Activity

People

Assignee:: Troy Melhase

Reporter:: Andy LoPresto

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Dates

Created:: 12/Feb/19 20:53

Updated:: 23/Mar/22 18:09

Resolved:: 04/May/19 03:49

Time Tracking

Estimated:

Not Specified

Remaining:

Logged:

1h 20m