Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-7884

Separate "read-filesystem" restricted permission into local file system and HDFS file system permissions

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

      Description

      Currently the read-filesystem value for RequiredPermission is used for both the processors which read directly from the local file system of the machine hosting NiFi (GetFile, ListFile, etc.) and the processors which read from external file systems like HDFS (GetHDFS, PutHDFS, etc.). There are use cases where NiFi users should be able to interact with the HDFS file system without having permissions to access the local file system.

      This will also require introducing a global setting in nifi.properties that an admin can set to allow local file system access via the HDFS processors (default true for backward compatibility), and additional validation logic in the HDFS processors (ideally the abstract shared logic) to ensure that if this setting is disabled, the HDFS processors are not accessing the local file system via the file:/// protocol in their configuration.

        Attachments

          Activity

            People

            • Assignee:
              exceptionfactory David Handermann
              Reporter:
              alopresto Andy LoPresto

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 1h 50m
                1h 50m

                  Issue deployment