[jira] [Commented] (NIFI-1614) Simple Username/Password Authentication

[ASF GitHub Bot (JIRA)]

    [ 
https://issues.apache.org/jira/browse/NIFI-1614?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15191291#comment-15191291
 ] 

ASF GitHub Bot commented on NIFI-1614:
--------------------------------------

Github user jvwing commented on a diff in the pull request:

    https://github.com/apache/nifi/pull/267#discussion_r55863700
  
    --- Diff: 
nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-resources/src/main/resources/conf/login-identity-providers.xml
 ---
    @@ -89,4 +89,28 @@
             <property name="Authentication Expiration">12 hours</property>
         </provider>
         To enable the ldap-provider remove 2 lines. This is 2 of 2. -->
    +
    +    <!--
    +        Identity provider for username/password authentication backed by a 
local credentials file with the following
    +        format:
    +
    +        <?xml version='1.0' encoding='utf-8'?>
    +        <credentials>
    +            <user name="user1" 
passwordHash="$2a$10$24wB0UAUsRbOXz4KRZ5KlenzcEddnhIyXMyPkpTnS/29Tt12jfJJW" />
    +            <user name="user2" 
passwordHash="$2a$10$dM0d7CBH3ifNZAPKV3EDNOcljMB80y97on6I8wixH4irMw18DYEi6" />
    +        </credentials>
    +
    +        Password hashes may be generated by any tool capable of bcrypt 
type "2a" hashes with 10 rounds.
    +        This provider authenticates, but does not authorize user access 
levels. Users may be separately authorized
    +        through authorized-users.xml.
    +    -->
    +    <!-- To enable the file-identity-provider remove 2 lines. This is 1 of 
2.
    +    <provider>
    +        <identifier>file-identity-provider</identifier>
    +        
<class>org.apache.nifi.authentication.file.FileIdentityProvider</class>
    +        <property name="Credentials File">credentials.xml</property>
    +        <property name="Authentication Expiration">12 hours</property>
    +    </provider>
    +    To enable the file-identity-provider remove 2 lines. This is 1 of 2. 
-->
    --- End diff --
    
    Yes, thanks, it should say 2 of 2.  I will change that.


> Simple Username/Password Authentication
> ---------------------------------------
>
>                 Key: NIFI-1614
>                 URL: https://issues.apache.org/jira/browse/NIFI-1614
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Extensions
>            Reporter: James Wing
>            Priority: Minor
>
> NiFi should include a simple option for username/password authentication 
> backed by a local file store.  NiFi's existing certificate and LDAP 
> authentication schemes are very secure.  However, the configuration and setup 
> is complex, making them more suitable for long-lived corporate and government 
> installations, but less accessible for casual or short-term use.  Simple 
> username/password authentication would help more users secure more NiFi 
> installations beyond anonymous admin access.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)