[jira] [Commented] (NIFI-10667) Add Private Key Controller Service

Thu, 20 Oct 2022 15:11:04 -0700 


    [ 
https://issues.apache.org/jira/browse/NIFI-10667?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17621384#comment-17621384
 ] 

ASF subversion and git services commented on NIFI-10667:
--------------------------------------------------------

Commit 9f2ad260bd0de2b3d2be10030bfe8f8eb4101b4e in nifi's branch 
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=9f2ad260bd ]

NIFI-10667 Added Private Key Service interface and implementation

- Defined PrivateKeyService in nifi-key-service-api
- Implemented StandardPrivateKeyService using Bouncy Castle library

NIFI-10667 Improved custom validation to avoid repetitive reads

NIFI-10667 Added onPropertyModified() to clear Key Reference for validation

Signed-off-by: Nathan Gough <[email protected]>

This closes #6553.


> Add Private Key Controller Service
> ----------------------------------
>
>                 Key: NIFI-10667
>                 URL: https://issues.apache.org/jira/browse/NIFI-10667
>             Project: Apache NiFi
>          Issue Type: New Feature
>          Components: Extensions
>            Reporter: David Handermann
>            Assignee: David Handermann
>            Priority: Minor
>          Time Spent: 1h 20m
>  Remaining Estimate: 0h
>
> A new Controller Service enabling abstracted access to Private Keys should be 
> implemented to support Processors and Services that require cryptographic 
> Private Keys.
> The service should support returning instances of 
> {{{}java.security.PrivateKey{}}}. The service should be capable of reading 
> encrypted or unencrypted private keys encoded using the 
> [PEM|https://en.wikipedia.org/wiki/Privacy-Enhanced_Mail] format and 
> structured using [PKCS 8|https://en.wikipedia.org/wiki/PKCS_8]. The PEM 
> format represents encoded key material using Base64, so the service should be 
> configurable using either a file path or a sensitive property where the key 
> can be specified as a property value.
> With {{java.security.PrivateKey}} being part as the standard JDK, this 
> service interface is suitable for inclusion in the 
> {{{}nifi-standard-services-api-nar{}}}, which will also enable future custom 
> implementations from other sources.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to