[jira] [Created] (NIFI-9897) Refactor GRPC SSL Configuration

David Handermann (Jira) Fri, 08 Apr 2022 12:43:07 -0700

David Handermann created NIFI-9897:
--------------------------------------

             Summary: Refactor GRPC SSL Configuration
                 Key: NIFI-9897
                 URL: https://issues.apache.org/jira/browse/NIFI-9897
             Project: Apache NiFi
          Issue Type: Improvement
          Components: Extensions
            Reporter: David Handermann
            Assignee: David Handermann



The {{InvokeGRPC}} and {{ListenGRPC}} Processors leverage Netty for socket 
protocol communication, and Netty requires its own 
[SslContext|https://netty.io/4.1/api/io/netty/handler/ssl/SslContext.html] 
configuration to support TLS communication.

The current component implementations require {{nifi-security-utils}}, which 
includes a dependency on the Bouncy Castle library. Refactoring the Processors 
to use the Netty 
[JdkSslContext|https://netty.io/4.1/api/io/netty/handler/ssl/JdkSslContext.html]
 will enable direct usage of the Java 
[SSLContext|https://docs.oracle.com/javase/8/docs/api/javax/net/ssl/SSLContext.html]
 available through the NiFi {{SSLContextService.createContext()}} method. This 
approach would provide better encapsulation of {{SslContext}} configuration and 
remove the unnecessary dependency on the Bouncy Castle library in 
{{nifi-grpc-nar}}.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Created] (NIFI-9897) Refactor GRPC SSL Configuration

Reply via email to