[jira] [Updated] (NIFI-8230) Remove default Sensitive Properties Key

Mon, 01 Mar 2021 08:00:04 -0800 


     [ 
https://issues.apache.org/jira/browse/NIFI-8230?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

David Handermann updated NIFI-8230:
-----------------------------------
    Status: Patch Available  (was: In Progress)

Submitted PR with the following features:
 * Removed hard-coded default value for Sensitive Properties Key
 * Introduced conditional generation of random 32 character key using Base64 
encoding without padding of 24 bytes from {{java.util.SecureRandom}}
 * Introduced error log and exception when the Sensitive Properties Key is null 
or blank and there is an existing Flow Configuration {{flow.xml.gz}}
 * The exception references the Administration Guide section on Migrating a 
Flow with Sensitive Properties

> Remove default Sensitive Properties Key
> ---------------------------------------
>
>                 Key: NIFI-8230
>                 URL: https://issues.apache.org/jira/browse/NIFI-8230
>             Project: Apache NiFi
>          Issue Type: Sub-task
>          Components: Security
>    Affects Versions: 1.13.0
>            Reporter: David Handermann
>            Assignee: David Handermann
>            Priority: Major
>          Time Spent: 10m
>  Remaining Estimate: 0h
>
> Support for encryption of sensitive properties relies on configuration of the 
> Sensitive Properties Key specified using {{nifi.sensitive.props.key}} in 
> {{nifi.properties}}.  The default behavior of {{StringEncryptor}} allows for 
> the key to be blank and falls back to a default value, logging a verbose 
> error message indicating that an explicit key should be provided.
> The fallback to a default value for the Sensitive Properties Key should be 
> removed and an exception should be thrown indicating that the property value 
> is required.  Deployments that already have an explicit value will not be 
> impacted.  Migration guidance for upgrading should include steps to encrypt 
> the configuration using a new key.
> It may be worthwhile generating a random Sensitive Properties Key for new 
> installations where there is no existing flow.  This would new standalone 
> installations to run with a secure key without the need for manual steps.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to