ASF GitHub Bot commented on NIFI-5054:

Github user ijokarumawak commented on the issue:

    Thanks @mgroves for confirming that you can use username/password 
authentication, that helps a lot to finish review cycle!
    As for the compatibility against older version of Couchbase Server, I 
tested this updated NiFi component against Couchbase Server 4.5 EE. I confirmed 
    - A bucket without password can be accessed
    - A bucket with password can be accessed with a bucket password using the 
existing user-defined-property configuration.
    - What if a bucket with a password is accessed with a user name and 
password? If the user name is the bucket name and password is a bucket 
password, then it succeeds.
    Couchbase Java SDK provides backward compatibility well, so NiFi can rely 
on that. The updated NiFi can access Couchbase 4.x and 5.x.

> Nifi Couchbase Processors does not support User Authentication
> --------------------------------------------------------------
>                 Key: NIFI-5054
>                 URL: https://issues.apache.org/jira/browse/NIFI-5054
>             Project: Apache NiFi
>          Issue Type: Improvement
>    Affects Versions: 1.5.0, 1.6.0
>            Reporter: Shagun Jaju
>            Assignee: Koji Kawamura
>            Priority: Major
>              Labels: authentication, security
> Issue Description: Nifi Couchbase processors don't work with new couchbase 
> versions 5.0 and 5.1.
> New Couchbase Version 5.x has introduced *Role Based Access Control (RBAC),* 
> a ** new security feature.
>  # All buckets must now be accessed by a *user*/*password* combination that 
> has a *role with access rights* to the bucket.
>  # Buckets no longer use bucket-level passwords
>  # There is no default bucket and no sample buckets with blank passwords.
>  # You cannot create a user without a password.
> *(Ref:* 
> https://developer.couchbase.com/documentation/server/5.0/introduction/whats-new.html
> [https://blog.couchbase.com/new-sdk-authentication/] )
> nifi-couchbase-processors : GetCouchbaseKey and PutCouchbaseKey using 
> Controller Service still uses old authentication mechanism.
>  * org.apache.nifi.processors.couchbase.GetCouchbaseKey
>  * org.apache.nifi.processors.couchbase.PutCouchbaseKey
> Ref: 
> [https://github.com/apache/nifi/blob/master/nifi-nar-bundles/nifi-couchbase-bundle/nifi-couchbase-processors/src/main/java/org/apache/nifi/couchbase/CouchbaseClusterService.java#L116]

This message was sent by Atlassian JIRA

Reply via email to