Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-9060

HTTP Cookie Paths ignore Proxy Context Path Headers

    XMLWordPrintableJSON

Details

    Description

      HTTP cookies that NiFi uses for authentication have hard-coded paths set to forward-slash.  This is acceptable for deployments where clients have direct access to NiFi, or when a reverse proxy does not rewrite the context path. In deployments where a reverse proxy performs URL rewriting, NiFi should set cookie path based on proxy HTTP headers. NiFi WebUtils includes methods to determine the context path based on supported proxy headers, which should be used to set the paths for HTTP cookies.

      Attachments

        Issue Links

          fixes

          Bug - A problem which impairs or prevents the functions of the product. NIFI-7033 wrong redirect from login/logout page when behind a custom url prefix/context

          • Major - Major loss of function.
          • Resolved
          links to

          Web Link GitHub Pull Request #5329

          Activity

            People

              exceptionfactory David Handermann
              exceptionfactory David Handermann
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 1.5h
                  1.5h