Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-7333

OIDC provider should use NiFi keystore & truststore

    XMLWordPrintableJSON

    Details

      Description

      The OIDC provider uses generic HTTPS requests to the OIDC IdP, but does not configure these requests to use the NiFi keystore or truststore. Rather, it uses the default JVM keystore and truststore, which leads to difficulty debugging PKIX and other TLS negotiation errors. It should be switched to use the NiFi keystore and truststore as other NiFi framework services do.

        Attachments

          Activity

            People

            • Assignee:
              mtien M Tien
              Reporter:
              alopresto Andy LoPresto
            • Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated: