exceptionfactory commented on code in PR #11273:
URL: https://github.com/apache/nifi/pull/11273#discussion_r3289180307
##########
nifi-framework-bundle/nifi-framework/nifi-web/nifi-jetty/src/main/java/org/apache/nifi/web/server/connector/ProxyHeaderValidatorCustomizer.java:
##########
@@ -85,7 +109,24 @@ private Request customizeSecureRequest(final Request
request) {
throw new
HttpException.RuntimeException(HttpStatus.MISDIRECTED_REQUEST_421,
MISDIRECTED_REQUEST_REASON);
}
+ }
- return request;
+ private X509Certificate findPeerCertificate(final Request request) {
+ final X509Certificate peerCertificate;
+ final ConnectionMetaData connectionMetaData =
request.getConnectionMetaData();
+ final Connection connection = connectionMetaData.getConnection();
+ final EndPoint endPoint = connection.getEndPoint();
+ final EndPoint.SslSessionData sslSessionData =
endPoint.getSslSessionData();
Review Comment:
Good question, but no, at this point in the Connection handling, the
`SslSessionData` can never be `null`.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
