Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-8220 Establish a secure by default configuration for NiFi
  3. NIFI-8363

Implement Default Single User LoginIdentityProvider

    XMLWordPrintableJSON

Details

    Description

      Supporting default authenticated access to NiFi requires implementing a new LoginIdentityProvider and related classes to generate and store a random default username and password.

      The provider implementation should have the following features:

      • Support one username and password account record
      • Use java.util.UUID to generate a username when no existing account is found
      • Use java.security.SecureRandom to generate a password when no existing account is found
      • Store the generated password using a secure hashing algorithm
      • Write the generated username and password to the log once after initial generation

      This provider is intended for initial configuration of a standalone NiFi system.  Adjustment of default NiFi properties should be implemented separately following implementation of default HTTPS access.

      Attachments

        Issue Links

          links to

          Web Link GitHub Pull Request #4968

          Activity

            People

              exceptionfactory David Handermann
              exceptionfactory David Handermann
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 2h 10m
                  2h 10m