[
https://issues.apache.org/jira/browse/NIFI-9796?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Joe Witt updated NIFI-9796:
---------------------------
Fix Version/s: 1.16.0
Resolution: Fixed
Status: Resolved (was: Patch Available)
+1 merged to main
> Update Registry Spring Security Configuration to Avoid Warnings
> ---------------------------------------------------------------
>
> Key: NIFI-9796
> URL: https://issues.apache.org/jira/browse/NIFI-9796
> Project: Apache NiFi
> Issue Type: Improvement
> Components: NiFi Registry
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Minor
> Fix For: 1.16.0
>
> Time Spent: 20m
> Remaining Estimate: 0h
>
> NiFi Registry relies on Spring Security to implement authentication and
> authorization. Recent versions of Spring Security added a warning message
> indicating a deprecated use of pattern-based path configuration. The NiFi
> Registry Spring Security configuration should be updated to avoid the
> following warning:
> {noformat}
> WARN [main] o.s.s.c.a.web.builders.WebSecurity You are asking Spring Security
> to ignore Ant [pattern='/access/token/identity-provider']. This is not
> recommended -- please use permitAll via HttpSecurity#authorizeHttpRequests
> instead. {noformat}
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
