[
https://issues.apache.org/jira/browse/NIFI-13476?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17861251#comment-17861251
]
ASF subversion and git services commented on NIFI-13476:
--------------------------------------------------------
Commit 3bb79f1ba65dc7bc4dc5cd96e0e806ba2f9ffe86 in nifi's branch
refs/heads/main from David Handermann
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=3bb79f1ba6 ]
NIFI-13476 Optimized Authorization Checking in Process Group Status (#9021)
- Avoided invoking Authorizer when nested component is not included in Process
Group Status based on depth of recursion
> Improve Process Group Status Authorization Handling
> ---------------------------------------------------
>
> Key: NIFI-13476
> URL: https://issues.apache.org/jira/browse/NIFI-13476
> Project: Apache NiFi
> Issue Type: Improvement
> Reporter: David Handermann
> Assignee: David Handermann
> Priority: Major
>
> The NiFi user interfaces calls the REST API on a recurring basis to retrieve
> Process Group status information for presentation on the canvas. Part of the
> status retrieval process involves recursive component evaluation to present
> aggregate metrics and summary information. The Process Group status retrieval
> method involves a parameter to limit the recursion depth, but that limit does
> not apply to authorization checking for individual components, resulting in
> many unnecessary authorization checks, based on the number of nested
> components. The status retrieval method can be optimized to avoid calling the
> Authorizer when the nested components will not be included in the Process
> Group status.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
