[
https://issues.apache.org/jira/browse/NIFI-10284?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17571968#comment-17571968
]
ASF subversion and git services commented on NIFI-10284:
--------------------------------------------------------
Commit 9bb22fcb11d5304610b484fa99dab250aabca1d3 in nifi's branch
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=9bb22fcb11 ]
NIFI-10284 Corrected HTTP Request Authenticated User logging
- Moved RequestAuthenticationFilter before HeaderWriterFilter
This closes #6250
Signed-off-by: Paul Grey <[email protected]>
> HTTP Request Log Missing Authenticated User
> -------------------------------------------
>
> Key: NIFI-10284
> URL: https://issues.apache.org/jira/browse/NIFI-10284
> Project: Apache NiFi
> Issue Type: Bug
> Components: Core Framework
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Major
> Time Spent: 20m
> Remaining Estimate: 0h
>
> The framework HTTP {{nifi-request.log}} records the authenticated username,
> when available, for HTTP request that the Jetty server handles. The
> {{RequestAuthenticationFilter}} in the {{nifi-jetty}} module provides
> authenticated user integration for Jetty Requests based on a request
> attribute that a separate Spring Security filter provides.
> Changes to the Jetty Server filter configuration introduced a different
> Headers Writer filter, which wraps the {{HttpServletRequest}}. As a result of
> request wrapping, the {{RequestAuthenticationFilter}} is unable to set the
> authenticated user on the Jetty Request, which results in a null value being
> logged for all HTTP requests in {{nifi-request.log}}.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
