Github user joewitt commented on the issue:
https://github.com/apache/nifi/pull/2944
On the PR:
- Small things:
1) The message has the wrong JIRA number
2) The default of false is incorrect and should be true to remain
consistent with current usage.
Bigger concern:
The design of NiFi security model as discussed in the previous discussion
thread is important to consider here. Have you tested that a secure NiFi
cluster, cluster replication, and site-to-site capabilities function in this
configuration? Can you elaborate on the testing conducted? It is believed
these would all break under this code change and configuration.
We need to have a more formal feature related discussion on how to get from
where we are to where we need to be to properly support this. Your use case is
a perfectly good one to support but to get there we cannot break what we do
support today.
---
