[jira] [Updated] (NIFI-7657) Lower log severity of expected exception for authentication on unsecured instance

Fri, 17 Jul 2020 10:27:25 -0700 


     [ 
https://issues.apache.org/jira/browse/NIFI-7657?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Andy LoPresto updated NIFI-7657:
--------------------------------
    Description: 
All unsecured instances report an INFO log at startup and on additional 
requests due to the Kerberos authentication mechanism being unavailable. This 
log severity should be lowered and the message suppressed by default as it is 
an expected scenario but causes concern for many users. 

{code}
2020-07-17 11:37:38,023 INFO [NiFi Web Server-18] 
o.a.n.w.m.IllegalStateExceptionMapper java.lang.IllegalStateException: Access 
tokens are only issued over HTTPS. Returning Conflict response.
{code}

A follow-on Jira should address removing the unnecessary request entirely. 

  was:
All unsecured instances report an INFO log at startup and on additional 
requests due to the Kerberos authentication mechanism being unavailable. This 
log severity should be lowered and the message suppressed by default as it is 
an expected scenario but causes concern for many users. 

{code}
2020-07-17 11:37:38,023 INFO [NiFi Web Server-18] 
o.a.n.w.m.IllegalStateExceptionMapper java.lang.IllegalStateException: Access 
tokens are only issued over HTTPS. Returning Conflict response.
{code}


> Lower log severity of expected exception for authentication on unsecured 
> instance
> ---------------------------------------------------------------------------------
>
>                 Key: NIFI-7657
>                 URL: https://issues.apache.org/jira/browse/NIFI-7657
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Core Framework
>    Affects Versions: 1.11.4
>            Reporter: Andy LoPresto
>            Assignee: Andy LoPresto
>            Priority: Major
>              Labels: error, log, security
>
> All unsecured instances report an INFO log at startup and on additional 
> requests due to the Kerberos authentication mechanism being unavailable. This 
> log severity should be lowered and the message suppressed by default as it is 
> an expected scenario but causes concern for many users. 
> {code}
> 2020-07-17 11:37:38,023 INFO [NiFi Web Server-18] 
> o.a.n.w.m.IllegalStateExceptionMapper java.lang.IllegalStateException: Access 
> tokens are only issued over HTTPS. Returning Conflict response.
> {code}
> A follow-on Jira should address removing the unnecessary request entirely. 



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to