[
https://issues.apache.org/jira/browse/NIFI-7170?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17096908#comment-17096908
]
ASF subversion and git services commented on NIFI-7170:
-------------------------------------------------------
Commit e81960f8e8a6bd446bb766a5fb2e00c7e2e973f8 in nifi's branch
refs/heads/master from Matt Gilman
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=e81960f ]
NIFI-7170:
- Adding a flag to nifi.properties to disable anonymous authentication.
NIFI-7170:
- Fixing checkstyle issues.
NIFI-7170:
- Adding missing license header.
NIFI-7170:
- Initial PR feedback.
NIFI-7170:
- Fixing broken integration tests.
- Creating new integration tests for verifying allowing and preventing
anonymous access.
NIFI-7170:
- Ensuring the new anonymous authentication property is considered for proxied
requests.
NIFI-7170 - Fixed comment.
Signed-off-by: Nathan Gough <[email protected]>
This closes #4099.
> Restrict anonymous authentication to require explicit override in
> nifi.properties
> ---------------------------------------------------------------------------------
>
> Key: NIFI-7170
> URL: https://issues.apache.org/jira/browse/NIFI-7170
> Project: Apache NiFi
> Issue Type: Improvement
> Components: Configuration Management, Core Framework, Security
> Affects Versions: 1.11.2
> Reporter: Andy LoPresto
> Assignee: Matt Gilman
> Priority: Major
> Labels: anonymous, authentication, documentation, security
> Time Spent: 3h 40m
> Remaining Estimate: 0h
>
> The anonymous authentication feature is enabled by default, and the
> description in the Admin Guide may no longer be accurate or clear due to
> additional feature deliveries.
> The anonymous authentication feature should be changed to require an explicit
> override in {{nifi.properties}}, and the documentation should be enhanced to
> explain the details of this feature.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
