[
https://issues.apache.org/jira/browse/NIFI-2266?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15494655#comment-15494655
]
ASF subversion and git services commented on NIFI-2266:
-------------------------------------------------------
Commit 639e6d6a76ba92dbefd259861e2efc2ba2247f43 in nifi's branch refs/heads/0.x
from [~alopresto]
[ https://git-wip-us.apache.org/repos/asf?p=nifi.git;h=639e6d6 ]
NIFI-2266 Refactored GetHTTP processor to use SSLContext protocol vs.
hard-coded TLSv1.
This closes #999.
> GetHTTP and PutHTTP use hard-coded TLS protocol version
> -------------------------------------------------------
>
> Key: NIFI-2266
> URL: https://issues.apache.org/jira/browse/NIFI-2266
> Project: Apache NiFi
> Issue Type: Bug
> Components: Core Framework
> Affects Versions: 0.7.0, 0.6.1
> Reporter: Andy LoPresto
> Assignee: Andy LoPresto
> Labels: https, security, tls
> Original Estimate: 1h
> Remaining Estimate: 1h
>
> As pointed out on the mailing list [1], the {{GetHTTP}} (and likely
> {{PutHTTP}}) processors use a hard-coded TLS protocol version. {{PostHTTP}}
> also did this and was fixed by [NIFI-1688].
> The same fix should apply here and unit tests already exist which can be
> applied to the other processors as well.
> For future notice, {{InvokeHTTP}} is a better processor for generic HTTP
> operations and has supported reading the TLS protocol version from the
> {{SSLContextService}} for some time.
> [1]
> https://lists.apache.org/thread.html/a48e2ebbc2231d685491ae6b856c760620efca5bff2c7249f915b24d@%3Cdev.nifi.apache.org%3E
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
