[
https://issues.apache.org/jira/browse/NIFI-2266?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15487990#comment-15487990
]
ASF GitHub Bot commented on NIFI-2266:
--------------------------------------
Github user mosermw commented on the issue:
https://github.com/apache/nifi/pull/999
I had the same unit test failure as @pvillard31. Once I resolved that
locally, I confirmed that this change works against the URL listed in
NIFI-2373. contrib-check passes.
This also cherry-picks cleanly into the 0.x branch, but the
testDefaultShouldPreferTLSv1_2() method of TestGetHTTPGroovy.groovy doesn't
work with Java 7. It would need the same mods as the corresponding method in
TestPostHTTPGroovy.groovy.
> GetHTTP and PutHTTP use hard-coded TLS protocol version
> -------------------------------------------------------
>
> Key: NIFI-2266
> URL: https://issues.apache.org/jira/browse/NIFI-2266
> Project: Apache NiFi
> Issue Type: Bug
> Components: Core Framework
> Affects Versions: 0.7.0, 0.6.1
> Reporter: Andy LoPresto
> Assignee: Andy LoPresto
> Labels: https, security, tls
> Original Estimate: 1h
> Remaining Estimate: 1h
>
> As pointed out on the mailing list [1], the {{GetHTTP}} (and likely
> {{PutHTTP}}) processors use a hard-coded TLS protocol version. {{PostHTTP}}
> also did this and was fixed by [NIFI-1688].
> The same fix should apply here and unit tests already exist which can be
> applied to the other processors as well.
> For future notice, {{InvokeHTTP}} is a better processor for generic HTTP
> operations and has supported reading the TLS protocol version from the
> {{SSLContextService}} for some time.
> [1]
> https://lists.apache.org/thread.html/a48e2ebbc2231d685491ae6b856c760620efca5bff2c7249f915b24d@%3Cdev.nifi.apache.org%3E
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
