[
https://issues.apache.org/jira/browse/NIFI-1444?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15120236#comment-15120236
]
Andy LoPresto commented on NIFI-1444:
-------------------------------------
Hi Jeroen,
The keystore is a container for all your certificates to present as a client
making a connection. The truststore is a container for the certificate
authorities (CA) certificates and server certificates to trust when making
connections.
If you are trying to post to an endpoint that requires only one-way TLS
connections (i.e. the server has a certificate but the client does not), you
must add the server certificate or the CA certificate used to sign that server
certificate to your truststore.
We are considering a mechanism whereby NiFi can automatically import the Java
cacerts truststore into a local truststore to help users unfamiliar with these
processes.
> PostHTTP cannot work with public HTTPS sites
> --------------------------------------------
>
> Key: NIFI-1444
> URL: https://issues.apache.org/jira/browse/NIFI-1444
> Project: Apache NiFi
> Issue Type: Bug
> Affects Versions: 0.4.1
> Reporter: Jeroen Jacobs
>
> Hi,
> I created a workflow in Apache NiFi, and the final processor needs to do a
> HTTP POST request to HipChat (it posts a message in a chat room). HipChat
> requires HTTPS, and it can't figure out why NiFi refuses to do this.
> I created a "StandardSSLContext" under "Controller Services", however, it
> says it requires that "TrustStore" or "KeyStore" needs to be populated.
> I have no clue what filenames I need to enter here. The documentation doesn't
> give you a clue either. I cannot imagine that I need to add every file under
> my /etc/ssl/certs folder, just be able to talk to public SSL-protected sites.
> What do I need to do to make the StandardSSLContext work with any public SSL
> site which has a valid SSL certificate? This should work out of the box IMHO.
> NiFi is installed on Ubuntu 14 btw.
>
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
