[jira] [Commented] (NIFI-7322) Add SignContentPGP and VerifyContentPGP Processors

Tue, 19 Oct 2021 03:49:06 -0700 


    [ 
https://issues.apache.org/jira/browse/NIFI-7322?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17430468#comment-17430468
 ] 

ASF subversion and git services commented on NIFI-7322:
-------------------------------------------------------

Commit da1b1dfd4be1e7e2ac5096eedbc954da95f713a8 in nifi's branch 
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=da1b1df ]

NIFI-7322 Added SignContentPGP and VerifyContentPGP

- Added Decryption Strategy property to DecryptContentPGP
- Added OpenPGP Packet detection to EncryptContentPGP to avoid unnecessary 
packaging
- Refactored shared processing to EncodingStreamCallback

Signed-off-by: Joe Gresock <[email protected]>

This closes #5457.


> Add SignContentPGP and VerifyContentPGP Processors
> --------------------------------------------------
>
>                 Key: NIFI-7322
>                 URL: https://issues.apache.org/jira/browse/NIFI-7322
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Extensions, Security
>            Reporter: David Margolis
>            Assignee: David Handermann
>            Priority: Major
>              Labels: encryption, pgp, signing
>          Time Spent: 2h 20m
>  Remaining Estimate: 0h
>
> Users have requested the capability to 
> [sign|https://www.gnupg.org/gph/en/manual/r606.html] content directly with 
> pgp in addition to storing the signature in an attribute 
> (SignContentAttributePGP). There should be options to 
> [clearsign|https://www.gnupg.org/gph/en/manual/r684.html] and 
> [armor|https://www.gnupg.org/gph/en/manual/r1290.html] the content. There 
> should be an option to produce the 
> [detached|https://www.gnupg.org/gph/en/manual/r622.html] signature as it's 
> own flowfile.
> Pairing with this processor, users have requested the capability to 
> [verify|https://www.gnupg.org/gph/en/manual/r697.html] signed content with 
> pgp in addition to verifying the signature in an attribute 
> (VerifyContentAttributePGP). There should be options to verify clearsigned 
> and armored content also.
> Finally, the DecryptContentPGP processor should be able to 
> [decrypt|https://www.gnupg.org/gph/en/manual/r669.html] the signed content, 
> so that just the unsigned content remains.
> These processors should use the PGPKeyMaterialService.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Reply via email to