[
https://issues.apache.org/jira/browse/NIFI-1478?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15240402#comment-15240402
]
ASF GitHub Bot commented on NIFI-1478:
--------------------------------------
Github user asfgit closed the pull request at:
https://github.com/apache/nifi/pull/346
> Audit SSLContextFactory and SSLSocketFactory usage throughout application
> -------------------------------------------------------------------------
>
> Key: NIFI-1478
> URL: https://issues.apache.org/jira/browse/NIFI-1478
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Core Framework
> Affects Versions: 0.5.0
> Reporter: Andy LoPresto
> Assignee: Andy LoPresto
> Priority: Critical
> Labels: certificate, security, tls
> Original Estimate: 336h
> Remaining Estimate: 336h
>
> The internal use of {{SSLSocketFactory}} and {{SSLContextFactory}} is
> inconsistent, as the application has grown around the concept of secure
> communications. NiFi can act as both a server and as a client for
> communications, and the default configuration should make it easy for new
> users to quickly secure the application for incoming and outgoing
> connections.
> In addition, {{SSLSocketFactory}} has some inconsistencies and idiosyncrasies
> which may confuse users [1].
> [1] http://stackoverflow.com/a/23365536/70465
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
