[
https://issues.apache.org/jira/browse/NIFI-2799?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15555117#comment-15555117
]
ASF GitHub Bot commented on NIFI-2799:
--------------------------------------
Github user ktseytlin commented on the issue:
https://github.com/apache/nifi/pull/1112
This is obviously a pretty awful drawing I threw together... but it shows
what AWS is like in an enterprise. For every single service I ever want to
execute, I need to go through a proxy. Hence why this bug fix is needed. The
only situation in which this wouldn't occur is if the enterprise specifically
opened up the endpoints to each service, which would allow it to avoid going
through the proxy.
@jvwing Hope this is helpful for regarding our previous conversation about
proxy things :)
> AWS Credentials for Assume Role Need Proxy
> ------------------------------------------
>
> Key: NIFI-2799
> URL: https://issues.apache.org/jira/browse/NIFI-2799
> Project: Apache NiFi
> Issue Type: Bug
> Affects Versions: 1.0.0
> Reporter: Keren Tseytlin
> Assignee: James Wing
> Priority: Minor
> Fix For: 1.1.0
>
>
> As a user of Nifi, when I want to enable cross account fetching of S3 objects
> I need the proxy variables to be set in order to generate temporary AWS
> tokens for STS:AssumeRole.
> Within some enterprise environments, it is necessary to set the proxy
> variables prior to running AssumeRole methods. Without this being set, the
> machine in VPC A times out on generating temporary keys and is unable to
> assume a role as a machine in VPC B.
> This ticket arose from this conversation:
> http://apache-nifi-developer-list.39713.n7.nabble.com/Nifi-Cross-Account-Download-With-A-Profile-Flag-td13232.html#a13252
> Goal: There are files stored in an S3 bucket in VPC B. My Nifi machines are
> in VPC A. I want Nifi to be able to get those files from VPC B. VPC A and VPC
> B need to be communicating in the FetchS3Object component.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
