Github user mcgilman commented on the issue:
https://github.com/apache/nifi/pull/2177
Thanks again @alopresto for the review. I had observed the same behavior
where the user is redirected back to the login page when the token could not be
validated. I think a good path forward here may be to support multiple login
mechanisms concurrently (ldap, oidc, and knox for instance). When this is the
case, the NiFi login page would likely offer buttons for the user to initiate
the desired SSO login sequence. The reason this is awkward currently is because
the redirection happens automatically. This could also give us an opportunity
to provide some sort of error message to the end user. Let's consider this
option and the logout concern is separate follow on JIRAs.
---
