Curtis Ruck created NIFI-5493:
---------------------------------
Summary: Reverse Proxy & OIDC
Key: NIFI-5493
URL: https://issues.apache.org/jira/browse/NIFI-5493
Project: Apache NiFi
Issue Type: Bug
Components: Security
Affects Versions: 1.7.1, 1.7.0
Environment: Reverse Proxy w/ SSL Client Auth between Nifi and Reverse
Proxy
Reporter: Curtis Ruck
In my environment we have a reverse proxy that (httpd) that does SSL Client
Auth to authenticate the TLS session between reverse proxy and application
servers.
When trying to configure OIDC authentication, the reverse proxy's SSL Client
Auth certificate is "authenticated" prior to triggering the OIDC redirect for
authentication.
Ideally, I believe there should be a mechanism to disable NiFi Client Auth, or
enabling a priority between authentication mechanisms.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
