[
https://issues.apache.org/jira/browse/NIFI-4211?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Yolanda M. Davis updated NIFI-4211:
-----------------------------------
Description: The introduction of the new UserGroup and Policy provider
interfaces highlight an opportunity to allow configuration information for
connecting to source systems, such as LDAP/Kerberos, to be shared between
authentication and authorization providers. For example, when using a single
LDAP source for authentication and for user/group lookup to correlate with
policy, currently users need to setup the source's config information (which
includes connection, authentication strategy, Manager DN and password, etc) in
both the login-identity-providers.xml and the authorizers.xml files. Having a
way to share this information between these two features I think would help
simplify setup. (was: With the introduction of the new UserGroup and Policy
provider interfaces there appears to be an opportunity to allow users to share
UserGroup provider config information for login identity (authentication). For
example, when using a single LDAP source for authentication and to pull
user/group information to correlate with policy, currently users would need to
setup configuration in both the login-identity-providers.xml and the
authorizers.xml files with essentially the same information. Having a way to
share this provider information between these two features I think would help
simplify setup.)
> Support shared provider configuration information for authentication and
> authorization
> --------------------------------------------------------------------------------------
>
> Key: NIFI-4211
> URL: https://issues.apache.org/jira/browse/NIFI-4211
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Core Framework
> Affects Versions: 1.4.0
> Reporter: Yolanda M. Davis
>
> The introduction of the new UserGroup and Policy provider interfaces
> highlight an opportunity to allow configuration information for connecting to
> source systems, such as LDAP/Kerberos, to be shared between authentication
> and authorization providers. For example, when using a single LDAP source
> for authentication and for user/group lookup to correlate with policy,
> currently users need to setup the source's config information (which includes
> connection, authentication strategy, Manager DN and password, etc) in both
> the login-identity-providers.xml and the authorizers.xml files. Having a way
> to share this information between these two features I think would help
> simplify setup.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
