svn commit: r1873874 - /nifi/site/trunk/security.html
Author: alopresto Date: Mon Feb 10 20:38:10 2020 New Revision: 1873874 URL: http://svn.apache.org/viewvc?rev=1873874=rev Log: Reconciled severity levels and fixed row formatting. Modified: nifi/site/trunk/security.html Modified: nifi/site/trunk/security.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/security.html?rev=1873874=1873873=1873874=diff == --- nifi/site/trunk/security.html (original) +++ nifi/site/trunk/security.html Mon Feb 10 20:38:10 2020 @@ -192,14 +192,14 @@ -CVE-2020-1928: Apache NiFi information disclosure by debug logging +CVE-2020-1928: Apache NiFi information disclosure in logs Severity: Moderate Versions Affected: Apache NiFi 1.10.0 -Description: The sensitive parameter parser would log parsed values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present. +Description: The sensitive parameter parser would log parsed property descriptor values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present. Mitigation: Removed debug logging from the class. Users running the 1.10.0 release should upgrade to the latest release. Credit: This issue was discovered by Andy LoPresto. CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1928; target="_blank">Mitre Database: CVE-2020-1928 @@ -211,7 +211,7 @@ CVE-2020-1933: Apache NiFi XSS attack -Severity: High +Severity: Important Versions Affected: Apache NiFi 1.0.0 - 1.10.0 @@ -232,10 +232,10 @@ Dependency Vulnerabilities - + CVE-2019-10768: Apache NiFi's AngularJS usage -Severity: High +Severity: Important Versions Affected: Apache NiFi 1.8.0 - 1.10.0 @@ -325,7 +325,7 @@ CVE-2017-5637, CVE-2016-5017, CVE-2018-8012: Apache NiFi's Zookeeper usage -Severity: High +Severity: Important Versions Affected: Apache NiFi 1.0.0 - 1.9.2 @@ -473,13 +473,13 @@ CVE-2018-17195: Apache NiFi CSRF vulnerability in template upload API -Severity: Severe +Severity: Critical Versions Affected: Apache NiFi 1.0.0 - 1.7.1 -Description: The template upload API endpoint accepted requests from different domain when sent in conjunction with ARP spoofing + meddler in the middle (MITM) attack, resulting in a CSRF attack. The required attack vector is complex, requiring a scenario with client certificate authentication, same subnet access, and injecting malicious code into an unprotected (plaintext HTTP) website which the targeted user later visits, but the possible damage warranted a Severe severity level. +Description: The template upload API endpoint accepted requests from different domain when sent in conjunction with ARP spoofing + meddler in the middle (MITM) attack, resulting in a CSRF attack. The required attack vector is complex, requiring a scenario with client certificate authentication, same subnet access, and injecting malicious code into an unprotected (plaintext HTTP) website which the targeted user later visits, but the possible damage warranted a Critical severity level. Mitigation: The fix to apply Cross-Origin Resource Sharing (CORS) policy request filtering was applied on the Apache NiFi 1.8.0 release. Users running a prior 1.x release should upgrade to the appropriate release. Credit: This issue was discovered by Mike Cole. CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17195; target="_blank">Mitre Database: CVE-2018-17195 @@ -599,7 +599,7 @@ CVE-2018-7489, CVE-2017-7525, and CVE-2017-15095: Apache NiFi dependency vulnerability in FasterXML Jackson -Severity: Severe +Severity: Critical Versions Affected: Apache NiFi 0.1.0 - 1.6.0 @@ -691,7 +691,7 @@ CVE-2017-8028: Apache NiFi LDAP TLS issue because of Spring Security LDAP vulnerability -Severity: Severe +Severity: Critical Versions Affected: Apache NiFi 0.1.0 - 1.5.0
[nifi-site] branch master updated: Reconciled differing severity levels and fixed row formatting.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi-site.git The following commit(s) were added to refs/heads/master by this push: new 351d43a Reconciled differing severity levels and fixed row formatting. 351d43a is described below commit 351d43abc780e2ff02b02a1e32bf15e4f88bfdb5 Author: Andy LoPresto AuthorDate: Mon Feb 10 12:37:24 2020 -0800 Reconciled differing severity levels and fixed row formatting. --- src/pages/html/security.hbs | 20 ++-- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/src/pages/html/security.hbs b/src/pages/html/security.hbs index 8132837..c4c4705 100644 --- a/src/pages/html/security.hbs +++ b/src/pages/html/security.hbs @@ -88,14 +88,14 @@ title: Apache NiFi Security Reports -CVE-2020-1928: Apache NiFi information disclosure by debug logging +CVE-2020-1928: Apache NiFi information disclosure in logs Severity: Moderate Versions Affected: Apache NiFi 1.10.0 -Description: The sensitive parameter parser would log parsed values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present. +Description: The sensitive parameter parser would log parsed property descriptor values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present. Mitigation: Removed debug logging from the class. Users running the 1.10.0 release should upgrade to the latest release. Credit: This issue was discovered by Andy LoPresto. CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1928; target="_blank">Mitre Database: CVE-2020-1928 @@ -107,7 +107,7 @@ title: Apache NiFi Security Reports CVE-2020-1933: Apache NiFi XSS attack -Severity: High +Severity: Important Versions Affected: Apache NiFi 1.0.0 - 1.10.0 @@ -128,10 +128,10 @@ title: Apache NiFi Security Reports Dependency Vulnerabilities - + CVE-2019-10768: Apache NiFi's AngularJS usage -Severity: High +Severity: Important Versions Affected: Apache NiFi 1.8.0 - 1.10.0 @@ -221,7 +221,7 @@ title: Apache NiFi Security Reports CVE-2017-5637, CVE-2016-5017, CVE-2018-8012: Apache NiFi's Zookeeper usage -Severity: High +Severity: Important Versions Affected: Apache NiFi 1.0.0 - 1.9.2 @@ -369,13 +369,13 @@ title: Apache NiFi Security Reports CVE-2018-17195: Apache NiFi CSRF vulnerability in template upload API -Severity: Severe +Severity: Critical Versions Affected: Apache NiFi 1.0.0 - 1.7.1 -Description: The template upload API endpoint accepted requests from different domain when sent in conjunction with ARP spoofing + meddler in the middle (MITM) attack, resulting in a CSRF attack. The required attack vector is complex, requiring a scenario with client certificate authentication, same subnet access, and injecting malicious code into an unprotected (plaintext HTTP) website which the targeted user later visits, but the possible damage warranted a SevereDescription: The template upload API endpoint accepted requests from different domain when sent in conjunction with ARP spoofing + meddler in the middle (MITM) attack, resulting in a CSRF attack. The required attack vector is complex, requiring a scenario with client certificate authentication, same subnet access, and injecting malicious code into an unprotected (plaintext HTTP) website which the targeted user later visits, but the possible damage warranted a Critical< [...] Mitigation: The fix to apply Cross-Origin Resource Sharing (CORS) policy request filtering was applied on the Apache NiFi 1.8.0 release. Users running a prior 1.x release should upgrade to the appropriate release. Credit: This issue was discovered by Mike Cole. CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17195; target="_blank">Mitre Database: CVE-2018-17195 @@ -495,7 +495,7 @@ title: Apache NiFi Security Reports CVE-2018-7489, CVE-2017-7525, and CVE-2017-15095: Apache NiFi dependency vulnerability in FasterXML Jackson -Severity: Severe +Severity: Critical Versions Affected: Apache NiFi 0.1.0 - 1.6.0 @@ -587,7 +587,7 @@ title: Apache NiFi Security Reports CVE-2017-8028: Apache NiFi LDAP TLS issue because of Spring Security LDAP vulnerability -Severity: Severe +Severity: Critical Versions Affected: Apache NiFi 0.1.0 - 1.5.0
svn commit: r1873872 - /nifi/site/trunk/security.html
Author: alopresto Date: Mon Feb 10 20:32:51 2020 New Revision: 1873872 URL: http://svn.apache.org/viewvc?rev=1873872=rev Log: Added 1.11.1 CVE updates to security page. Modified: nifi/site/trunk/security.html Modified: nifi/site/trunk/security.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/security.html?rev=1873872=1873871=1873872=diff == --- nifi/site/trunk/security.html (original) +++ nifi/site/trunk/security.html Mon Feb 10 20:32:51 2020 @@ -151,6 +151,36 @@ +Fixed in Apache NiFi 1.11.1 + + + + + +Vulnerabilities + + + + +CVE-2020-1942: Apache NiFi information disclosure in logs +Severity: Important +Versions Affected: + +Apache NiFi 0.0.1 - 1.11.0 + + +Description: The flow fingerprint factory generated flow fingerprints which included sensitive property descriptor values. In the event a node attempted to join a cluster and the cluster flow was not inheritable, the flow fingerprint of both the cluster and local flow was printed, potentially containing sensitive values in plaintext. +Mitigation: Implemented Argon2 secure hashing to provide a deterministic loggable value which does not reveal the sensitive value. Users running any previous NiFi release should upgrade to the latest release. +Credit: This issue was discovered by Andy LoPresto. +CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1942; target="_blank">Mitre Database: CVE-2020-1942 +NiFi Jira: https://issues.apache.org/jira/browse/NIFI-7079; target="_blank">NIFI-7079 +NiFi PR: https://github.com/apache/nifi/pull/4028; target="_blank">PR 4208 +Released: February 4, 2020 + + + + + Fixed in Apache NiFi 1.11.0
[nifi-site] branch master updated: Added 1.11.1 CVE updates to security page.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi-site.git The following commit(s) were added to refs/heads/master by this push: new 66adafb Added 1.11.1 CVE updates to security page. 66adafb is described below commit 66adafbcbac511fd072ed0b73e3bb548ac9c8025 Author: Andy LoPresto AuthorDate: Mon Feb 10 12:30:29 2020 -0800 Added 1.11.1 CVE updates to security page. --- src/pages/html/security.hbs | 30 ++ 1 file changed, 30 insertions(+) diff --git a/src/pages/html/security.hbs b/src/pages/html/security.hbs index a75d640..8132837 100644 --- a/src/pages/html/security.hbs +++ b/src/pages/html/security.hbs @@ -47,6 +47,36 @@ title: Apache NiFi Security Reports +Fixed in Apache NiFi 1.11.1 + + + + + +Vulnerabilities + + + + +CVE-2020-1942: Apache NiFi information disclosure in logs +Severity: Important +Versions Affected: + +Apache NiFi 0.0.1 - 1.11.0 + + +Description: The flow fingerprint factory generated flow fingerprints which included sensitive property descriptor values. In the event a node attempted to join a cluster and the cluster flow was not inheritable, the flow fingerprint of both the cluster and local flow was printed, potentially containing sensitive values in plaintext. +Mitigation: Implemented Argon2 secure hashing to provide a deterministic loggable value which does not reveal the sensitive value. Users running any previous NiFi release should upgrade to the latest release. +Credit: This issue was discovered by Andy LoPresto. +CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1942; target="_blank">Mitre Database: CVE-2020-1942 +NiFi Jira: https://issues.apache.org/jira/browse/NIFI-7079; target="_blank">NIFI-7079 +NiFi PR: https://github.com/apache/nifi/pull/4028; target="_blank">PR 4208 +Released: February 4, 2020 + + + + + Fixed in Apache NiFi 1.11.0
[nifi] branch master updated: NIFI-6491 Improve installation instructions in Admin Guide and Getting Starting Guide Clarified homebrew install instructions.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git The following commit(s) were added to refs/heads/master by this push: new 6283012 NIFI-6491 Improve installation instructions in Admin Guide and Getting Starting Guide Clarified homebrew install instructions. 6283012 is described below commit 62830122cb72b0b0f5b083786d4c1294ebae6976 Author: Andrew Lim AuthorDate: Fri Jan 31 12:12:29 2020 -0500 NIFI-6491 Improve installation instructions in Admin Guide and Getting Starting Guide Clarified homebrew install instructions. This closes #4029. Signed-off-by: Andy LoPresto --- .../src/main/asciidoc/administration-guide.adoc | 15 --- nifi-docs/src/main/asciidoc/getting-started.adoc | 20 +--- 2 files changed, 21 insertions(+), 14 deletions(-) diff --git a/nifi-docs/src/main/asciidoc/administration-guide.adoc b/nifi-docs/src/main/asciidoc/administration-guide.adoc index 54f0d1c..7093fbd 100644 --- a/nifi-docs/src/main/asciidoc/administration-guide.adoc +++ b/nifi-docs/src/main/asciidoc/administration-guide.adoc @@ -19,10 +19,11 @@ Apache NiFi Team :homepage: http://nifi.apache.org :linkattrs: +[[system_requirements]] == System Requirements Apache NiFi can run on something as simple as a laptop, but it can also be clustered across many enterprise-class servers. Therefore, the amount of hardware and memory needed will depend on the size and nature of the dataflow involved. The data is stored on disk while NiFi is processing it. So NiFi needs to have sufficient disk space allocated for its various repositories, particularly the content repository, flowfile repository, and provenance repository (see the <> s [...] -* Requires Java 8 or newer +* Requires Java 8 or Java 11 * Supported Operating Systems: ** Linux ** Unix @@ -34,7 +35,7 @@ Apache NiFi can run on something as simple as a laptop, but it can also be clust ** Google Chrome: Current & (Current - 1) ** Safari: Current & (Current - 1) -**Note** Under sustained and extremely high throughput the CodeCache settings may need to be tuned to avoid sudden performance loss. See the <> section for more information. +NOTE: Under sustained and extremely high throughput the CodeCache settings may need to be tuned to avoid sudden performance loss. See the <> section for more information. == How to install and start NiFi @@ -43,11 +44,11 @@ Apache NiFi can run on something as simple as a laptop, but it can also be clust ** Make any desired edits in files found under `/conf` *** At a minimum, we recommend editing the _nifi.properties_ file and entering a password for the `nifi.sensitive.props.key` (see <> below) ** From the `/bin` directory, execute the following commands by typing `./nifi.sh `: -*** start: starts NiFi in the background -*** stop: stops NiFi that is running in the background -*** status: provides the current status of NiFi -*** run: runs NiFi in the foreground and waits for a Ctrl-C to initiate shutdown of NiFi -*** install: installs NiFi as a service that can then be controlled via +*** `start`: starts NiFi in the background +*** `stop`: stops NiFi that is running in the background +*** `status`: provides the current status of NiFi +*** `run`: runs NiFi in the foreground and waits for a Ctrl-C to initiate shutdown of NiFi +*** `install`: installs NiFi as a service that can then be controlled via `service nifi start` `service nifi stop` `service nifi status` diff --git a/nifi-docs/src/main/asciidoc/getting-started.adoc b/nifi-docs/src/main/asciidoc/getting-started.adoc index bcb0d5e..c5ce13a 100644 --- a/nifi-docs/src/main/asciidoc/getting-started.adoc +++ b/nifi-docs/src/main/asciidoc/getting-started.adoc @@ -58,14 +58,20 @@ dataflows. == Downloading and Installing NiFi -NiFi can be downloaded from the link:http://nifi.apache.org/download.html[NiFi Downloads Page^]. There are two packaging options -available: a "tarball" that is tailored more to Linux and a zip file that is more applicable for Windows users. Mac OS X users -may also use the tarball or can install via Homebrew. +WARNING: Before proceeding, check the Admin Guide to confirm you have the <> to install and run NiFi. -To install via Homebrew, simply run the command `brew install nifi`. +NiFi can be downloaded from the link:http://nifi.apache.org/download.html[NiFi Downloads page^]. There are two packaging options +available: + +- a "tarball" (tar.gz) that is tailored more to Linux +- a zip file that is more applicable for Windows users + +Mac OS X users may also use the tarball or can install via link:https://brew.sh[Homebrew^] by simply running the command `brew install nifi` from the command line terminal. + +NOTE: NiFi requires Java 8 or 11. It is recommended
[nifi] branch master updated: NIFI-7075 Add missing FlowFile core attributes to Developer Guide (#4030)
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new ac0382c NIFI-7075 Add missing FlowFile core attributes to Developer
Guide (#4030)
ac0382c is described below
commit ac0382c7aea5d921ede5cc7008a72e349eb2d39d
Author: Andrew Lim
AuthorDate: Thu Feb 6 14:17:39 2020 -0500
NIFI-7075 Add missing FlowFile core attributes to Developer Guide (#4030)
Signed-off-by: Andy LoPresto
---
nifi-docs/src/main/asciidoc/developer-guide.adoc | 6 ++
1 file changed, 6 insertions(+)
diff --git a/nifi-docs/src/main/asciidoc/developer-guide.adoc
b/nifi-docs/src/main/asciidoc/developer-guide.adoc
index c0c98df..2a2c93c 100644
--- a/nifi-docs/src/main/asciidoc/developer-guide.adoc
+++ b/nifi-docs/src/main/asciidoc/developer-guide.adoc
@@ -132,12 +132,18 @@ attribute within the `CoreAttributes` enum.
- Filename ("filename"): The filename of the FlowFile. The filename should not
contain any directory structure.
+- File Size ("fileSize"): The file size of the FlowFile in bytes.
+
- UUID ("uuid"): A Universally Unique Identifier assigned to this FlowFile
that distinguishes the FlowFile from other FlowFiles in the system.
- Path ("path"): The FlowFile's path indicates the relative directory to which
a FlowFile belongs and does not contain the filename.
- Absolute Path ("absolute.path"): The FlowFile's absolute path indicates the
absolute directory to which a FlowFile belongs and does not contain the
filename.
+- Entry Date ("entryDate"): The date and time at which the FlowFile entered
the system (i.e., was created). The value of this attribute is a number that
represents the number of milliseconds since midnight, Jan. 1, 1970 (UTC).
+
+- Lineage Start Date ("lineageStartDate"): Any time that a FlowFile is cloned,
merged, or split, this results in a "child" FlowFile being created. As those
children are then cloned, merged, or split, a chain of ancestors is built. This
value represents the date and time at which the oldest ancestor entered the
system. Another way to think about this is that this attribute represents the
latency of the FlowFile through the system. The value is a number that
represents the number of millis [...]
+
- Priority ("priority"): A numeric value indicating the FlowFile priority.
- MIME Type ("mime.type"): The MIME Type of this FlowFile.
[nifi] branch master updated: NIFI-7105 - fix NPE for counters in SiteToSiteStatusReportingTask (#4038)
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 089013a NIFI-7105 - fix NPE for counters in
SiteToSiteStatusReportingTask (#4038)
089013a is described below
commit 089013aa596216024c1870e6941b8037654ca000
Author: Pierre Villard
AuthorDate: Thu Feb 6 14:10:48 2020 -0500
NIFI-7105 - fix NPE for counters in SiteToSiteStatusReportingTask (#4038)
Signed-off-by: Andy LoPresto
---
.../additionalDetails.html | 2 +-
.../src/main/resources/schema-status.avsc | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-site-to-site-reporting-bundle/nifi-site-to-site-reporting-task/src/main/resources/docs/org.apache.nifi.reporting.SiteToSiteStatusReportingTask/additionalDetails.html
b/nifi-nar-bundles/nifi-site-to-site-reporting-bundle/nifi-site-to-site-reporting-task/src/main/resources/docs/org.apache.nifi.reporting.SiteToSiteStatusReportingTask/additionalDetails.html
index ab32bad..dad5656 100644
---
a/nifi-nar-bundles/nifi-site-to-site-reporting-bundle/nifi-site-to-site-reporting-task/src/main/resources/docs/org.apache.nifi.reporting.SiteToSiteStatusReportingTask/additionalDetails.html
+++
b/nifi-nar-bundles/nifi-site-to-site-reporting-bundle/nifi-site-to-site-reporting-task/src/main/resources/docs/org.apache.nifi.reporting.SiteToSiteStatusReportingTask/additionalDetails.html
@@ -123,7 +123,7 @@
{ "name" : "invocations", "type" : ["long", "null"]},
{ "name" : "processingNanos", "type" : ["long", "null"]},
{ "name" : "executionNode", "type" : ["string", "null"]},
- { "name" : "counters", "type": { "type": "map", "values": "string" }}
+ { "name" : "counters", "type": ["null", { "type": "map", "values":
"string" }]}
]
}
diff --git
a/nifi-nar-bundles/nifi-site-to-site-reporting-bundle/nifi-site-to-site-reporting-task/src/main/resources/schema-status.avsc
b/nifi-nar-bundles/nifi-site-to-site-reporting-bundle/nifi-site-to-site-reporting-task/src/main/resources/schema-status.avsc
index 4190015..1932c7e 100644
---
a/nifi-nar-bundles/nifi-site-to-site-reporting-bundle/nifi-site-to-site-reporting-task/src/main/resources/schema-status.avsc
+++
b/nifi-nar-bundles/nifi-site-to-site-reporting-bundle/nifi-site-to-site-reporting-task/src/main/resources/schema-status.avsc
@@ -84,6 +84,6 @@
{ "name" : "invocations", "type" : ["long", "null"]},
{ "name" : "processingNanos", "type" : ["long", "null"]},
{ "name" : "executionNode", "type" : ["string", "null"]},
- { "name" : "counters", "type": { "type": "map", "values": "string" }}
+ { "name" : "counters", "type": ["null", { "type": "map", "values":
"string" }]}
]
}
[nifi] branch master updated: NIFI-6968 Create Connection Model Allows Multiple Adds
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 425ba63 NIFI-6968 Create Connection Model Allows Multiple Adds
425ba63 is described below
commit 425ba63e6693967f545d409b9b4ccefe6485cee5
Author: nagasivanath
AuthorDate: Thu Jan 23 23:08:18 2020 +0530
NIFI-6968 Create Connection Model Allows Multiple Adds
This closes #4013.
Signed-off-by: Andy LoPresto
---
.../js/nf/canvas/nf-connection-configuration.js| 74 --
1 file changed, 68 insertions(+), 6 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-connection-configuration.js
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-connection-configuration.js
index 3a4ad97..486d2d3 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-connection-configuration.js
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-connection-configuration.js
@@ -65,6 +65,8 @@
var CONNECTION_OFFSET_Y_INCREMENT = 75;
var CONNECTION_OFFSET_X_INCREMENT = 200;
+var connectionUpsertionInProgress = false;
+
var config = {
urls: {
api: '../nifi-api',
@@ -123,8 +125,8 @@
text: '#ff'
},
disabled: function () {
-// ensure some relationships were selected
-return getSelectedRelationships().length === 0;
+// ensure some relationships were selected,
also check create or updation in progress
+return getSelectedRelationships().length === 0
|| isConnectionUpsertionInProgess();
},
handler: {
click: function () {
@@ -139,6 +141,10 @@
hover: '#C7D2D7',
text: '#004849'
},
+disabled: function() {
+// when add button is clicked, should
disable until the addition action is completed
+return isConnectionUpsertionInProgess();
+},
handler: {
click: function () {
$('#connection-configuration').modal('hide');
@@ -188,6 +194,10 @@
hover: '#004849',
text: '#ff'
},
+disabled : function(){
+// when network is slow, should disable the button
+return isConnectionUpsertionInProgess();
+},
handler: {
click: function () {
// add the connection
@@ -202,6 +212,9 @@
hover: '#C7D2D7',
text: '#004849'
},
+disabled : function(){
+return isConnectionUpsertionInProgess();
+},
handler: {
click: function () {
$('#connection-configuration').modal('hide');
@@ -783,11 +796,36 @@
};
/**
+ * To set or reset the connection addition/update in progress
+ * @param {boolean} status the status of connection addition/update
+ */
+var setConnectionUpsertionInProgess = function(status)
+{
+var needToUpdateDOM = (connectionUpsertionInProgress !== status) ;
+connectionUpsertionInProgress = status;
+if(needToUpdateDOM){
+$('#connection-configuration').modal('refreshButtons');
+}
+}
+
+/**
+ * returns whether the connection addition/update in progress
+ */
+var isConnectionUpsertionInProgess = function()
+{
+return connectionUpsertionInProgress;
+}
+
+/**
* Adds a new connection.
*
* @argument {array} selectedRelationships The selected relationships
*/
var addConnection = function (selectedRelationships) {
+// to handle the case of slow network
+//the add/cancel buttons should be disabled
+setConnectionUpsertionInProgess(true);
+
// get the connection details
var sourceId
[nifi] branch master updated (b1b06bf -> 7503e5f)
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git. from b1b06bf NIFI-6958: - Addressing issue causing errors preventing version changes when there is a processor to enable or disable in a sub process group. add 7503e5f NIFI-7108 - Upgrade com.puppycrawl.tools:checkstyle (#4041) No new revisions were added by this update. Summary of changes: pom.xml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
[nifi] branch master updated (d7c29f4 -> d80875e)
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git. from d7c29f4 NIFI-7079 Cleaned up formatting and comments. add d80875e NIFI-7053 Update Toolkit Guide with macOS 10.15 requirements for trus… (#4018) No new revisions were added by this update. Summary of changes: nifi-docs/src/main/asciidoc/toolkit-guide.adoc | 2 ++ 1 file changed, 2 insertions(+)
svn propchange: r1873119 - svn:log
Author: alopresto Revision: 1873119 Modified property: svn:log Modified: svn:log at Fri Jan 24 22:20:37 2020 -- --- svn:log (original) +++ svn:log Fri Jan 24 22:20:37 2020 @@ -1 +1 @@ -Modified working in security fixes for 1.11.0. +Modified wording in security fixes for 1.11.0.
svn commit: r1873119 - /nifi/site/trunk/security.html
Author: alopresto Date: Fri Jan 24 22:19:30 2020 New Revision: 1873119 URL: http://svn.apache.org/viewvc?rev=1873119=rev Log: Modified working in security fixes for 1.11.0. Modified: nifi/site/trunk/security.html Modified: nifi/site/trunk/security.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/security.html?rev=1873119=1873118=1873119=diff == --- nifi/site/trunk/security.html (original) +++ nifi/site/trunk/security.html Fri Jan 24 22:19:30 2020 @@ -166,10 +166,10 @@ Severity: Moderate Versions Affected: -Apache NiFi 1.10.0 - 1.10.0 +Apache NiFi 1.10.0 -Description: The sensitive parameter parser would log parsed values for debugging purposes. If the parameter was sensitive, it would be logged in plaintext. +Description: The sensitive parameter parser would log parsed values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present. Mitigation: Removed debug logging from the class. Users running the 1.10.0 release should upgrade to the latest release. Credit: This issue was discovered by Andy LoPresto. CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1928; target="_blank">Mitre Database: CVE-2020-1928 @@ -189,7 +189,7 @@ Description: Malicious scripts could be injected to the UI through action by an unaware authenticated user in Firefox. Did not appear to occur in other browsers. Mitigation: Sanitization of the error response ensures the XSS would not be executed. Users running a prior 1.x release should upgrade to the latest release. -Credit: This issue was discovered by Jakub Palaczynski. +Credit: This issue was discovered by Jakub Palaczynski (ING Tech Poland). CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1933; target="_blank">Mitre Database: CVE-2020-1933 NiFi Jira: https://issues.apache.org/jira/browse/NIFI-7023; target="_blank">NIFI-7023 NiFi PR: https://github.com/apache/nifi/pull/3991; target="_blank">PR 3991
[nifi-site] branch master updated: Modified wording in security fixes for 1.11.0.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi-site.git The following commit(s) were added to refs/heads/master by this push: new 1c13d1d Modified wording in security fixes for 1.11.0. 1c13d1d is described below commit 1c13d1de3aa2959661007d2cf29fd56dd2a7b246 Author: Andy LoPresto AuthorDate: Fri Jan 24 14:17:13 2020 -0800 Modified wording in security fixes for 1.11.0. --- src/pages/html/security.hbs | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/src/pages/html/security.hbs b/src/pages/html/security.hbs index 757fac2..a75d640 100644 --- a/src/pages/html/security.hbs +++ b/src/pages/html/security.hbs @@ -62,10 +62,10 @@ title: Apache NiFi Security Reports Severity: Moderate Versions Affected: -Apache NiFi 1.10.0 - 1.10.0 +Apache NiFi 1.10.0 -Description: The sensitive parameter parser would log parsed values for debugging purposes. If the parameter was sensitive, it would be logged in plaintext. +Description: The sensitive parameter parser would log parsed values for debugging purposes. This would expose literal values entered in a sensitive property when no parameter was present. Mitigation: Removed debug logging from the class. Users running the 1.10.0 release should upgrade to the latest release. Credit: This issue was discovered by Andy LoPresto. CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1928; target="_blank">Mitre Database: CVE-2020-1928 @@ -85,7 +85,7 @@ title: Apache NiFi Security Reports Description: Malicious scripts could be injected to the UI through action by an unaware authenticated user in Firefox. Did not appear to occur in other browsers. Mitigation: Sanitization of the error response ensures the XSS would not be executed. Users running a prior 1.x release should upgrade to the latest release. -Credit: This issue was discovered by Jakub Palaczynski. +Credit: This issue was discovered by Jakub Palaczynski (ING Tech Poland). CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1933; target="_blank">Mitre Database: CVE-2020-1933 NiFi Jira: https://issues.apache.org/jira/browse/NIFI-7023; target="_blank">NIFI-7023 NiFi PR: https://github.com/apache/nifi/pull/3991; target="_blank">PR 3991
[nifi] branch master updated: NIFI-6770 - Set validator to Validator.VALID to allow empty password for truststores. Added no-password keystore for tests System NiFi truststore now allows a passwordles
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git The following commit(s) were added to refs/heads/master by this push: new 4ec9155 NIFI-6770 - Set validator to Validator.VALID to allow empty password for truststores. Added no-password keystore for tests System NiFi truststore now allows a passwordless truststore. Added a unit test to prove this. Forgot no-password-truststore.jks file for the unit test. Refactored utility method from CertificateUtils to KeyStoreUtils. Added utility methods to verify keystore and key passwords. Added unit tests. Implemented different keystore and truststore validation [...] 4ec9155 is described below commit 4ec9155cbc1796c0fc31893cdd91733b7f9cec45 Author: Nathan Gough AuthorDate: Thu Oct 17 13:09:08 2019 -0400 NIFI-6770 - Set validator to Validator.VALID to allow empty password for truststores. Added no-password keystore for tests System NiFi truststore now allows a passwordless truststore. Added a unit test to prove this. Forgot no-password-truststore.jks file for the unit test. Refactored utility method from CertificateUtils to KeyStoreUtils. Added utility methods to verify keystore and key passwords. Added unit tests. Implemented different keystore and truststore validation logic. Refactored internal custom validation in StandardSSLContextService. Added unit test resource for keystore with different key and keystore passwords. Added unit test to generate passwordless truststore for https://nifi.apache.org for live testing. Resolved NPE in SSLContext generation in StandardSSLContextService Added unit test to generate passwordless truststore for localhost for InvokeHTTP testing. Resolved TrustManagerFactoryImpl initialization error. Fixed unit test without proper cleanup which caused RAT failures. Co-authored-by: Andy LoPresto This closes #3823. Signed-off-by: Andy LoPresto --- .../nifi/security/util/CertificateUtils.java | 223 + .../apache/nifi/security/util/KeyStoreUtils.java | 105 +- .../security/util/KeyStoreUtilsGroovyTest.groovy | 144 .../framework/security/util/SslContextFactory.java | 1 - .../security/util/SslContextFactoryTest.java | 22 +- .../src/test/resources/no-password-truststore.jks | Bin 0 -> 911 bytes .../nifi/processors/standard/InvokeHTTP.java | 95 +++--- .../processors/standard/TestInvokeHttpSSL.java | 16 +- .../nifi/processors/standard/TestListenHTTP.java | 3 +- .../src/test/resources/truststore.no-password.jks | Bin 0 -> 917 bytes .../ssl/StandardRestrictedSSLContextService.java | 6 - .../apache/nifi/ssl/StandardSSLContextService.java | 362 + .../nifi/ssl/StandardSSLContextServiceTest.groovy | 105 +- .../org/apache/nifi/ssl/SSLContextServiceTest.java | 36 +- .../test/resources/keystore-with-key-password.jks | Bin 0 -> 2012 bytes .../src/test/resources/no-password-truststore.jks | Bin 0 -> 911 bytes 16 files changed, 748 insertions(+), 370 deletions(-) diff --git a/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/util/CertificateUtils.java b/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/util/CertificateUtils.java index 4d80336..d51e951 100644 --- a/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/util/CertificateUtils.java +++ b/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/util/CertificateUtils.java @@ -16,6 +16,33 @@ */ package org.apache.nifi.security.util; +import java.io.ByteArrayInputStream; +import java.math.BigInteger; +import java.net.Socket; +import java.security.KeyPair; +import java.security.NoSuchAlgorithmException; +import java.security.PublicKey; +import java.security.Security; +import java.security.cert.Certificate; +import java.security.cert.CertificateException; +import java.security.cert.CertificateFactory; +import java.security.cert.CertificateParsingException; +import java.security.cert.X509Certificate; +import java.util.ArrayList; +import java.util.Arrays; +import java.util.Collection; +import java.util.Collections; +import java.util.Comparator; +import java.util.Date; +import java.util.HashMap; +import java.util.List; +import java.util.Map; +import java.util.concurrent.TimeUnit; +import javax.naming.InvalidNameException; +import javax.naming.ldap.LdapName; +import javax.naming.ldap.Rdn; +import javax.net.ssl.SSLPeerUnverifiedException; +import javax.net.ssl.SSLSocket; import org.apache.commons.lang3.StringUtils; import org.bouncycastle.asn1.ASN1Encodable; import org.bouncycastle.asn1.ASN1ObjectIdentifier; @@ -47,38 +74,6 @@ import org.bouncycastle.pkcs.jcajce.JcaPKCS10CertificationRequest; import org.slf4j.Logger; import org.slf4j.LoggerFactor
[nifi] branch master updated: NIFI-6652 UI Fix overflowing text in variables dialog
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 4e2b61e NIFI-6652 UI Fix overflowing text in variables dialog
4e2b61e is described below
commit 4e2b61efe417da643d5fa234a4bf1abd286b7fb7
Author: nagasivanath
AuthorDate: Fri Jan 10 11:00:27 2020 +0530
NIFI-6652 UI Fix overflowing text in variables dialog
This closes #3982.
Signed-off-by: Andy LoPresto
---
.../nifi-web/nifi-web-ui/src/main/webapp/css/dialog.css | 4
.../src/main/webapp/js/nf/canvas/nf-variable-registry.js | 8 +---
2 files changed, 9 insertions(+), 3 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/css/dialog.css
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/css/dialog.css
index 676956f..cae4932 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/css/dialog.css
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/css/dialog.css
@@ -319,6 +319,10 @@ li.affected-component-container {
height: 16px;
}
+span.affected-component-setting-width {
+max-width: 90%;
+}
+
div.slick-cell div.overridden {
text-decoration: line-through;
}
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-variable-registry.js
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-variable-registry.js
index a4e0f4b..68a322e 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-variable-registry.js
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-ui/src/main/webapp/js/nf/canvas/nf-variable-registry.js
@@ -737,7 +737,8 @@
// processor name
-$('').text(affectedProcessor.name).on('click', function () {
+$('').text(affectedProcessor.name)
+.prop('title', affectedProcessor.name).on('click', function () {
// check if there are outstanding changes
handleOutstandingChanges().done(function () {
// show the component in question
@@ -797,7 +798,8 @@
$('').addClass(affectedControllerService.id
+ '-affected-bulletins').appendTo(affectedControllerServiceContainer);
// controller service name
-$('').text(affectedControllerService.name).on('click', function () {
+$('')
+.prop('title',
affectedControllerService.name).text(affectedControllerService.name).on('click',
function () {
// check if there are outstanding changes
handleOutstandingChanges().done(function () {
// show the component in question
@@ -923,7 +925,7 @@
}
} else {
var affectedUnauthorizedComponentContainer = $('').appendTo(unauthorizedComponentsContainer);
-$('')
+$('')
.prop('title',
unauthorizedAffectedComponentEntity.id)
.text(unauthorizedAffectedComponentEntity.id)
.on('click', function () {
[nifi] branch master updated (0ae2002 -> fc2e6b3)
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a change to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git.
from 0ae2002 NIFI-6978 added code and unit test to throw
IllegalArgumentException when improper value given
add fc2e6b3 NIFI-7006 Changed the Kudu controller service test to an
integration test since it starts a server and is not portable across build
environments (#3976)
No new revisions were added by this update.
Summary of changes:
.../kudu/{TestKuduLookupService.java => ITestKuduLookupService.java}| 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
rename
nifi-nar-bundles/nifi-kudu-bundle/nifi-kudu-controller-service/src/test/java/org/apache/nifi/controller/kudu/{TestKuduLookupService.java
=> ITestKuduLookupService.java} (99%)
[nifi] branch master updated: NIFI-6978 added code and unit test to throw IllegalArgumentException when improper value given
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 0ae2002 NIFI-6978 added code and unit test to throw
IllegalArgumentException when improper value given
0ae2002 is described below
commit 0ae200252fb3f02b7659b189eaa6868ac67e0069
Author: mtien
AuthorDate: Mon Jan 6 15:30:18 2020 -0800
NIFI-6978 added code and unit test to throw IllegalArgumentException when
improper value given
This closes #3960.
Signed-off-by: Andy LoPresto
---
.../nifi/properties/ProtectedNiFiProperties.java | 2 +
.../ProtectedNiFiPropertiesGroovyTest.groovy | 19
...otected_aes_improper_delimiter_value.properties | 126 +
3 files changed, 147 insertions(+)
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/main/java/org/apache/nifi/properties/ProtectedNiFiProperties.java
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/main/java/org/apache/nifi/properties/ProtectedNiFiProperties.java
index fc1d722..16fb463 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/main/java/org/apache/nifi/properties/ProtectedNiFiProperties.java
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/main/java/org/apache/nifi/properties/ProtectedNiFiProperties.java
@@ -524,6 +524,8 @@ class ProtectedNiFiProperties extends
StandardNiFiProperties {
return sensitivePropertyProvider.unprotect(retrievedValue);
} catch (SensitivePropertyProtectionException e) {
throw new SensitivePropertyProtectionException("Error
unprotecting value for " + key, e.getCause());
+} catch (IllegalArgumentException e) {
+throw new SensitivePropertyProtectionException("Error
unprotecting value for " + key, e);
}
}
return retrievedValue;
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/test/groovy/org/apache/nifi/properties/ProtectedNiFiPropertiesGroovyTest.groovy
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/test/groovy/org/apache/nifi/properties/ProtectedNiFiPropertiesGroovyTest.groovy
index 6656867..6be470f 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/test/groovy/org/apache/nifi/properties/ProtectedNiFiPropertiesGroovyTest.groovy
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/test/groovy/org/apache/nifi/properties/ProtectedNiFiPropertiesGroovyTest.groovy
@@ -857,5 +857,24 @@ class ProtectedNiFiPropertiesGroovyTest extends
GroovyTestCase {
assert allKeys == rawProperties.keySet()
}
+@Test
+void testShouldThrowExceptionWhenImproperValueGiven() throws Exception {
+// Arrange
+final String KEYSTORE_PASSWORD_KEY = "nifi.security.keystorePasswd"
+
+ProtectedNiFiProperties properties =
loadFromFile("/conf/nifi_with_sensitive_properties_protected_aes_improper_delimiter_value.properties")
+
+// Act
+def msg = shouldFail(SensitivePropertyProtectionException) {
+NiFiProperties unprotectedProperties =
properties.getUnprotectedProperties()
+String retrievedKeystorePassword =
unprotectedProperties.getProperty(KEYSTORE_PASSWORD_KEY)
+}
+logger.expected(msg)
+
+// Assert
+assert msg =~ "Failed to unprotect key ${KEYSTORE_PASSWORD_KEY}"
+assert msg =~ "The cipher text does not contain the delimiter ||"
+}
+
// TODO: Add tests for protectPlainProperties
}
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/test/resources/conf/nifi_with_sensitive_properties_protected_aes_improper_delimiter_value.properties
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/test/resources/conf/nifi_with_sensitive_properties_protected_aes_improper_delimiter_value.properties
new file mode 100644
index 000..fc90355
--- /dev/null
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-properties-loader/src/test/resources/conf/nifi_with_sensitive_properties_protected_aes_improper_delimiter_value.properties
@@ -0,0 +1,126 @@
+# Licensed to the Apache Software Foundation (ASF) under one or more
+# contributor license agreements. See the NOTICE file distributed with
+# this work for additional information regarding copyright ownership.
+# The ASF licenses this file to You under the Apache License, Version 2.0
+# (the "License"); you may not use this file except in compliance with
+# the License. You may obtain a copy of the Licens
[nifi] branch master updated (cc74534 -> ebd3345)
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a change to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git.
from cc74534 NIFI-6939: Upgrade Atlas client dependency to 2.0.0
NIFI-6939: Review changes
add ebd3345 NIFI-6962 - moved HashAlgorithm and HashService to
nifi-security-utils (#3947)
No new revisions were added by this update.
Summary of changes:
.../java/org/apache/nifi/security/util/crypto/HashAlgorithm.java | 7 ++-
.../java/org/apache/nifi/security/util/crypto/HashService.java| 8 +---
.../org/apache/nifi/security/util/crypto/HashAlgorithmTest.groovy | 0
.../org/apache/nifi/security/util/crypto/HashServiceTest.groovy | 0
4 files changed, 3 insertions(+), 12 deletions(-)
rename {nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors =>
nifi-commons/nifi-security-utils}/src/main/java/org/apache/nifi/security/util/crypto/HashAlgorithm.java
(95%)
rename {nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors =>
nifi-commons/nifi-security-utils}/src/main/java/org/apache/nifi/security/util/crypto/HashService.java
(96%)
rename {nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors =>
nifi-commons/nifi-security-utils}/src/test/groovy/org/apache/nifi/security/util/crypto/HashAlgorithmTest.groovy
(100%)
rename {nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors =>
nifi-commons/nifi-security-utils}/src/test/groovy/org/apache/nifi/security/util/crypto/HashServiceTest.groovy
(100%)
[nifi] branch master updated: NIFI-6948 - Removing some debug logging.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 42cb6e8 NIFI-6948 - Removing some debug logging.
42cb6e8 is described below
commit 42cb6e84898e66672878f61f99543d6af3c0a567
Author: Nathan Gough
AuthorDate: Fri Dec 13 12:31:43 2019 -0500
NIFI-6948 - Removing some debug logging.
This closes #3935.
Signed-off-by: Andy LoPresto
---
.../apache/nifi/parameter/ExpressionLanguageAgnosticParameterParser.java | 1 -
.../apache/nifi/parameter/ExpressionLanguageAwareParameterParser.java| 1 -
2 files changed, 2 deletions(-)
diff --git
a/nifi-commons/nifi-parameter/src/main/java/org/apache/nifi/parameter/ExpressionLanguageAgnosticParameterParser.java
b/nifi-commons/nifi-parameter/src/main/java/org/apache/nifi/parameter/ExpressionLanguageAgnosticParameterParser.java
index 2f28086..0122d08 100644
---
a/nifi-commons/nifi-parameter/src/main/java/org/apache/nifi/parameter/ExpressionLanguageAgnosticParameterParser.java
+++
b/nifi-commons/nifi-parameter/src/main/java/org/apache/nifi/parameter/ExpressionLanguageAgnosticParameterParser.java
@@ -65,7 +65,6 @@ public class ExpressionLanguageAgnosticParameterParser
extends AbstractParameter
}
}
-logger.debug("For input {} found {} Parameter references: {}", input,
references.size(), references);
return new StandardParameterTokenList(input, references);
}
}
diff --git
a/nifi-commons/nifi-parameter/src/main/java/org/apache/nifi/parameter/ExpressionLanguageAwareParameterParser.java
b/nifi-commons/nifi-parameter/src/main/java/org/apache/nifi/parameter/ExpressionLanguageAwareParameterParser.java
index 79dddcf..9857628 100644
---
a/nifi-commons/nifi-parameter/src/main/java/org/apache/nifi/parameter/ExpressionLanguageAwareParameterParser.java
+++
b/nifi-commons/nifi-parameter/src/main/java/org/apache/nifi/parameter/ExpressionLanguageAwareParameterParser.java
@@ -103,7 +103,6 @@ public class ExpressionLanguageAwareParameterParser extends
AbstractParameterPar
lastChar = c;
}
-logger.debug("For input {} found {} Parameter references: {}", input,
tokens.size(), tokens);
return new StandardParameterTokenList(input, tokens);
}
svn commit: r1869773 - /nifi/site/trunk/security.html
Author: alopresto Date: Thu Nov 14 00:28:13 2019 New Revision: 1869773 URL: http://svn.apache.org/viewvc?rev=1869773=rev Log: Updated security page with 1.10.0 information. Modified: nifi/site/trunk/security.html Modified: nifi/site/trunk/security.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/security.html?rev=1869773=1869772=1869773=diff == --- nifi/site/trunk/security.html (original) +++ nifi/site/trunk/security.html Thu Nov 14 00:28:13 2019 @@ -151,13 +151,167 @@ +Fixed in Apache NiFi 1.10.0 + + + + + +Vulnerabilities + + + + +CVE-2019-10080: Apache NiFi information disclosure by XXE +Severity: Low +Versions Affected: + +Apache NiFi 1.3.0 - 1.9.2 + + +Description: The XMLFileLookupService allowed trusted users to inadvertently configure a potentially malicious XML file. The XML file has the ability to make external calls to services (via XXE) and reveal information such as the versions of Java, Jersey, and Apache that the NiFI instance uses. +Mitigation: A validator to ensure the XML file is not malicious was applied on the Apache NiFi 1.10.0 release. Users running a prior 1.x release should upgrade to the appropriate release. +Credit: This issue was discovered by RunningSnail. +CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10080; target="_blank">Mitre Database: CVE-2019-10080 +NiFi Jira: https://issues.apache.org/jira/browse/NIFI-6301; target="_blank">NIFI-6301 +NiFi PR: https://github.com/apache/nifi/pull/3507; target="_blank">PR 3507 +Released: November 4, 2019 + + + + +CVE-2019-12421: Apache NiFi user log out issue +Severity: Moderate +Versions Affected: + +Apache NiFi 1.0.0 - 1.9.2 + + +Description: If NiFi uses an authentication mechanism other than PKI, when the user clicks Log Out, NiFi invalidates the authentication token on the client side but not on the server side. This permits the user's client-side token to be used for up to 12 hours after logging out to make API requests to NiFi. +Mitigation: The fix to invalidate the server-side authentication token immediately after the user clicks 'Log Out' was applied on the Apache NiFi 1.10.0 release. Users running a prior 1.x release should upgrade to the appropriate release. +Credit: This issue was discovered by Abdu Sahin. +CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12421; target="_blank">Mitre Database: CVE-2019-12421 +NiFi Jira: https://issues.apache.org/jira/browse/NIFI-6085; target="_blank">NIFI-6085 +NiFi PR: https://github.com/apache/nifi/pull/3362; target="_blank">PR 3362 +Released: November 4, 2019 + + + + +CVE-2019-10083: Apache NiFi process group information disclosure +Severity: Low +Versions Affected: + +Apache NiFi 1.3.0 - 1.9.2 + + +Description: When updating a Process Group via the API, the response to the request includes all of its contents (at the top most level, not recursively). The response included details about processors and controller services which the user may not have had read access to. +Mitigation: Requests to update or remove the process group will no longer return the contents of the process group in the response in Apache NiFi 1.10.0. Users running a prior 1.x release should upgrade to the appropriate release. +Credit: This issue was discovered by Mark Payne. +CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10083; target="_blank">Mitre Database: CVE-2019-100833 +NiFi Jira: https://issues.apache.org/jira/browse/NIFI-6302; target="_blank">NIFI-6302 +NiFi PR: https://github.com/apache/nifi/pull/3477; target="_blank">PR 3477, https://github.com/apache/nifi/pull/3487; target="_blank">PR 3487 +Released: November 4, 2019 + + + + + +Dependency Vulnerabilities + + + + +CVE-2017-5637, CVE-2016-5017, CVE-2018-8012: Apache NiFi's Zookeeper usage +Severity: High +Versions Affected: + +Apache NiFi 1.0.0 - 1.9.2 + + +Description: Various vulnerabilities existed within the Zookeeper dependency used by NiFi. See https://nvd.nist.gov/vuln/detail/CVE-2018-8012; target="_blank">NIST NVD CVE-2018-8012, https://nvd.nist.gov/vuln/detail/CVE-2017-5637; target="_blank">NIST NVD CVE-2017-5637, https://nvd.nist.gov/vuln/detail/CVE-2016-5017; target="_blank">NIST NVD CVE-2016-5017 for more
[nifi-site] branch master updated: Corrected credit for security vulnerability discovery.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi-site.git The following commit(s) were added to refs/heads/master by this push: new f934c5a Corrected credit for security vulnerability discovery. f934c5a is described below commit f934c5accaa6ef0a2cb8bfae60ec3e32662485ab Author: Andy LoPresto AuthorDate: Thu Nov 14 09:22:09 2019 +0900 Corrected credit for security vulnerability discovery. --- src/pages/html/security.hbs | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/src/pages/html/security.hbs b/src/pages/html/security.hbs index 24dd684..eb74c72 100644 --- a/src/pages/html/security.hbs +++ b/src/pages/html/security.hbs @@ -58,7 +58,7 @@ title: Apache NiFi Security Reports -CVE-2019-10080: Apache NiFi information disclosure by XXE +CVE-2019-10080: Apache NiFi information disclosure by XXE Severity: Low Versions Affected: @@ -67,7 +67,7 @@ title: Apache NiFi Security Reports Description: The XMLFileLookupService allowed trusted users to inadvertently configure a potentially malicious XML file. The XML file has the ability to make external calls to services (via XXE) and reveal information such as the versions of Java, Jersey, and Apache that the NiFI instance uses. Mitigation: A validator to ensure the XML file is not malicious was applied on the Apache NiFi 1.10.0 release. Users running a prior 1.x release should upgrade to the appropriate release. -Credit: This issue was discovered by Shuibo Ye. +Credit: This issue was discovered by RunningSnail. CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10080; target="_blank">Mitre Database: CVE-2019-10080 NiFi Jira: https://issues.apache.org/jira/browse/NIFI-6301; target="_blank">NIFI-6301 NiFi PR: https://github.com/apache/nifi/pull/3507; target="_blank">PR 3507
[nifi] branch master updated: NIFI-6830 Added regression test. Added failing unit test. Added Test Resources. Implemented KeyPassword detection in the SSLContextFactory. Resolved Java 8/11 unit test i
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 36bdb47 NIFI-6830 Added regression test. Added failing unit test.
Added Test Resources. Implemented KeyPassword detection in the
SSLContextFactory. Resolved Java 8/11 unit test issue. Fixed unit test wildcard
imports and added Javadoc to test helper methods.
36bdb47 is described below
commit 36bdb474c30c8a88530cee1d220e9d3c1e0dc888
Author: mtien
AuthorDate: Mon Nov 4 16:08:07 2019 -0800
NIFI-6830 Added regression test. Added failing unit test. Added Test
Resources.
Implemented KeyPassword detection in the SSLContextFactory.
Resolved Java 8/11 unit test issue.
Fixed unit test wildcard imports and added Javadoc to test helper methods.
This closes #3873.
Signed-off-by: Andy LoPresto
---
.../apache/nifi/io/socket/SSLContextFactory.java | 18 ++-
.../nifi/io/socket/SSLContextFactoryTest.groovy| 150 +
.../src/test/resources/differentpassword.jks | Bin 0 -> 1988 bytes
.../src/test/resources/samepassword.jks| Bin 0 -> 1956 bytes
4 files changed, 162 insertions(+), 6 deletions(-)
diff --git
a/nifi-commons/nifi-socket-utils/src/main/java/org/apache/nifi/io/socket/SSLContextFactory.java
b/nifi-commons/nifi-socket-utils/src/main/java/org/apache/nifi/io/socket/SSLContextFactory.java
index 06a299f..ce07106 100644
---
a/nifi-commons/nifi-socket-utils/src/main/java/org/apache/nifi/io/socket/SSLContextFactory.java
+++
b/nifi-commons/nifi-socket-utils/src/main/java/org/apache/nifi/io/socket/SSLContextFactory.java
@@ -26,6 +26,7 @@ import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;
import java.security.UnrecoverableKeyException;
import java.security.cert.CertificateException;
+import java.util.Arrays;
import javax.net.ssl.KeyManager;
import javax.net.ssl.KeyManagerFactory;
@@ -42,6 +43,7 @@ public class SSLContextFactory {
private final String keystore;
private final char[] keystorePass;
private final String keystoreType;
+private final char[] keyPassword;
private final String truststore;
private final char[] truststorePass;
private final String truststoreType;
@@ -53,6 +55,7 @@ public class SSLContextFactory {
keystore = properties.getProperty(NiFiProperties.SECURITY_KEYSTORE);
keystorePass =
getPass(properties.getProperty(NiFiProperties.SECURITY_KEYSTORE_PASSWD));
keystoreType =
properties.getProperty(NiFiProperties.SECURITY_KEYSTORE_TYPE);
+keyPassword =
getPass(properties.getProperty(NiFiProperties.SECURITY_KEY_PASSWD));
truststore =
properties.getProperty(NiFiProperties.SECURITY_TRUSTSTORE);
truststorePass =
getPass(properties.getProperty(NiFiProperties.SECURITY_TRUSTSTORE_PASSWD));
@@ -67,7 +70,11 @@ public class SSLContextFactory {
FileUtils.closeQuietly(keyStoreStream);
}
final KeyManagerFactory keyManagerFactory =
KeyManagerFactory.getInstance(KeyManagerFactory.getDefaultAlgorithm());
-keyManagerFactory.init(keyStore, keystorePass);
+if (keyPassword != null && !Arrays.equals(keyPassword, keystorePass)) {
+keyManagerFactory.init(keyStore, keyPassword);
+} else {
+keyManagerFactory.init(keyStore, keystorePass);
+}
// prepare the truststore
final KeyStore trustStore =
KeyStoreUtils.getTrustStore(truststoreType);
@@ -91,14 +98,13 @@ public class SSLContextFactory {
/**
* Creates a SSLContext instance using the given information.
*
- *
* @return a SSLContext instance
- * @throws java.security.KeyStoreException if problem with keystore
- * @throws java.io.IOException if unable to create context
- * @throws java.security.NoSuchAlgorithmException if algorithm isn't known
+ * @throws java.security.KeyStoreException if problem with keystore
+ * @throws java.io.IOException if unable to create
context
+ * @throws java.security.NoSuchAlgorithmException if algorithm isn't known
* @throws java.security.cert.CertificateException if certificate is
invalid
* @throws java.security.UnrecoverableKeyException if the key cannot be
recovered
- * @throws java.security.KeyManagementException if the key is improper
+ * @throws java.security.KeyManagementExceptionif the key is improper
*/
public SSLContext createSslContext() throws KeyStoreException,
IOException, NoSuchAlgorithmException, CertificateException,
UnrecoverableKeyException, KeyManagementException {
diff --git
a/nifi-commons/nifi-socket-utils/src/test/groovy/org/apache/nifi/io/socket/SSLContextFactoryTest.groovy
b/nifi-commons/nifi-socket-utils/src/t
[nifi] branch master updated: NIFI-6841 Fixed checkstyle error introduced in a9db5a8.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 12bb284 NIFI-6841 Fixed checkstyle error introduced in a9db5a8.
12bb284 is described below
commit 12bb284453a19c24d87aca460e89f06b7928d119
Author: Andy LoPresto
AuthorDate: Tue Nov 5 13:12:40 2019 -0800
NIFI-6841 Fixed checkstyle error introduced in a9db5a8.
---
.../apache/nifi/controller/repository/TestStandardProcessSession.java | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-core/src/test/java/org/apache/nifi/controller/repository/TestStandardProcessSession.java
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-core/src/test/java/org/apache/nifi/controller/repository/TestStandardProcessSession.java
index e347c15..9675613 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-core/src/test/java/org/apache/nifi/controller/repository/TestStandardProcessSession.java
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-core/src/test/java/org/apache/nifi/controller/repository/TestStandardProcessSession.java
@@ -394,7 +394,7 @@ public class TestStandardProcessSession {
assertEquals(5, in.skip(5L));
assertEquals('n', (char) in.read());
in.reset();
-};
+}
session.transfer(flowFile);
session.commit();
[nifi] branch master updated (a9db5a8 -> 481f9f6)
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git. from a9db5a8 NIFI-6841: Fixed bug that resulted in the wrong number of 'Bytes Read' being reported by ByteCountingInputStream in the event that #skip was called between calls to #mark and #reset add 481f9f6 NIFI-6847 - fixed NPE in TLS toolkit when used in client mode with SANs (#3871) No new revisions were added by this update. Summary of changes: .../nifi/toolkit/tls/configuration/InstanceDefinition.java | 13 +++-- .../TlsCertificateAuthorityClientCommandLineTest.java | 7 +++ 2 files changed, 18 insertions(+), 2 deletions(-)
[nifi] branch master updated: NIFI-1474 Added method to check p boundary. Added a unit test. NIFI-1474 Added unit test for constructor p boundaries. Added p boundary conditions. NIFI-1474 Updated docu
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 4d25b63 NIFI-1474 Added method to check p boundary. Added a unit
test. NIFI-1474 Added unit test for constructor p boundaries. Added p boundary
conditions. NIFI-1474 Updated documentation regarding p boundary. NIFI-1474
Added r validation and unit tests. Added Javadoc for new methods.
4d25b63 is described below
commit 4d25b6341ccba0ee24da15198d030d8132972e7c
Author: mtien
AuthorDate: Wed Oct 23 17:34:37 2019 -0700
NIFI-1474 Added method to check p boundary. Added a unit test.
NIFI-1474 Added unit test for constructor p boundaries. Added p boundary
conditions.
NIFI-1474 Updated documentation regarding p boundary.
NIFI-1474 Added r validation and unit tests. Added Javadoc for new methods.
This closes #3844.
Signed-off-by: Andy LoPresto
---
.../security/util/crypto/ScryptCipherProvider.java | 33 ++-
.../crypto/ScryptCipherProviderGroovyTest.groovy | 105 +
.../src/main/asciidoc/administration-guide.adoc| 2 +-
3 files changed, 138 insertions(+), 2 deletions(-)
diff --git
a/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/util/crypto/ScryptCipherProvider.java
b/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/util/crypto/ScryptCipherProvider.java
index b532d8e..7bc1882 100644
---
a/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/util/crypto/ScryptCipherProvider.java
+++
b/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/util/crypto/ScryptCipherProvider.java
@@ -25,6 +25,7 @@ import java.util.regex.Pattern;
import javax.crypto.Cipher;
import javax.crypto.SecretKey;
import javax.crypto.spec.SecretKeySpec;
+
import org.apache.commons.codec.DecoderException;
import org.apache.commons.codec.binary.Base64;
import org.apache.commons.codec.binary.Hex;
@@ -78,6 +79,36 @@ public class ScryptCipherProvider extends
RandomIVPBECipherProvider {
if (p < DEFAULT_P) {
logger.warn("The provided parallelization factor {} is below the
recommended minimum {}", p, DEFAULT_P);
}
+if (!isPValid(r, p)) {
+logger.warn("Based on the provided block size {}, the provided
parallelization factor {} is out of bounds", r, p);
+throw new IllegalArgumentException("Invalid p value exceeds p
boundary");
+}
+}
+
+/**
+ * Returns whether the provided parallelization factor (p value) is within
boundaries. The lower bound > 0 and the
+ * upper bound is calculated based on the provided block size (r value).
+ * @param r the block size in bytes
+ * @param p the parallelization factor
+ * @return true if p is within boundaries
+ */
+public static boolean isPValid(int r, int p) {
+if (!isRValid(r)){
+logger.warn("The provided block size {} must be greater than 0",
r);
+throw new IllegalArgumentException("Invalid r value; must be
greater than 0");
+}
+// Calculate p boundary
+double pBoundary = ((Math.pow(2, 32)) - 1) * (32.0 / (r * 128));
+return p <= pBoundary && p > 0;
+}
+
+/**
+ * Returns whether the provided block size (r value) is a positive integer
or not.
+ * @param r the block size in bytes
+ * @return true if r is a positive integer
+ */
+public static boolean isRValid(int r) {
+return r > 0;
}
/**
@@ -112,7 +143,7 @@ public class ScryptCipherProvider extends
RandomIVPBECipherProvider {
/**
* Returns an initialized cipher for the specified algorithm. The key (and
IV if necessary) are derived by the KDF of the implementation.
- *
+ *
* The IV can be retrieved by the calling method using {@link
Cipher#getIV()}.
*
* @param encryptionMethod the {@link EncryptionMethod}
diff --git
a/nifi-commons/nifi-security-utils/src/test/groovy/org/apache/nifi/security/util/crypto/ScryptCipherProviderGroovyTest.groovy
b/nifi-commons/nifi-security-utils/src/test/groovy/org/apache/nifi/security/util/crypto/ScryptCipherProviderGroovyTest.groovy
index 0e469ab..7b912da 100644
---
a/nifi-commons/nifi-security-utils/src/test/groovy/org/apache/nifi/security/util/crypto/ScryptCipherProviderGroovyTest.groovy
+++
b/nifi-commons/nifi-security-utils/src/test/groovy/org/apache/nifi/security/util/crypto/ScryptCipherProviderGroovyTest.groovy
@@ -513,6 +513,111 @@ class ScryptCipherProviderGroovyTest {
assert params[2] == EXPECTED_P
}
+@Test
+void testShouldVerifyPBoundary() throws Exception {
+// Arrange
+final int r = 8;
+final int p = 1;
+
+
[nifi] branch master updated (ea1beca -> a30eb3a)
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git. from ea1beca NIFI-6703: Add Stateless NiFi to CLI NIFI-6703: Fixed extracted nar directory and marked api as experimental NIFI-6703: Moving nifi-stateless into nifi-framework NIFI-6703: Refactored to fix jetty/spring issues NIFI-6703: checkstyle fix NIFI-6703: updated to mirror traditional NiFi's bootstrap process and java11 dependency management NIFI-6703: minor changes NIFI-6703: Documentation fixes add a30eb3a NIFI-6457 Add Upgrading NiFi section to Admin Guide (#3818) No new revisions were added by this update. Summary of changes: .../src/main/asciidoc/administration-guide.adoc| 212 +++-- 1 file changed, 199 insertions(+), 13 deletions(-)
svn commit: r1868487 - in /nifi/site/trunk: faq.html people.html
Author: alopresto Date: Tue Oct 15 18:25:48 2019 New Revision: 1868487 URL: http://svn.apache.org/viewvc?rev=1868487=rev Log: Added Peter Wicks to PMC. Added Rob Fellows to Committers. Added FAQ entry about mailing list subscription. Modified: nifi/site/trunk/faq.html nifi/site/trunk/people.html Modified: nifi/site/trunk/faq.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/faq.html?rev=1868487=1868486=1868487=diff == --- nifi/site/trunk/faq.html (original) +++ nifi/site/trunk/faq.html Tue Oct 15 18:25:48 2019 @@ -123,17 +123,21 @@ How do you pronounce NiFi? "nye fye" (nī fī) is the preferred pronunciation. - - Where can I find a more detailed and up to date FAQ? - https://cwiki.apache.org/confluence/display/NIFI/FAQs;>NiFi FAQ Wiki - + +Why is no one replying to my mailing list question? +The community makes every effort to respond to all mailing list questions. While there are contributors across the world, some timezones are more active than others, so you should allow at least 24 hours (longer on weekends) to get a response. In addition, make sure you are subscribed to the mailing list you're contacting, as replies go back to the list. If you do not subscribe, t can appear as if no one is answering, when in fact there has been a response. Additional information on Apache mailing lists is available http://apache.org/foundation/mailinglists.html; target="_blank">here. + + + Where can I find a more detailed and up to date FAQ? + https://cwiki.apache.org/confluence/display/NIFI/FAQs;>NiFi FAQ Wiki + Where can I find documentation on how to understand and configure NiFi? Documentation is available under the NiFi Docs link within the Documentation dropdown. -A Developer Guide is also available under the Development dropdown. -View the https://cwiki.apache.org/confluence/display/NIFI;>Apache NiFi Wiki for additional information related to the project as well as how to contribute. -For more information on presently outstanding documentation work https://issues.apache.org/jira/browse/NIFI-162?jql=project%20%3D%20NIFI%20AND%20resolution%20%3D%20Unresolved%20AND%20component%20%3D%20%22Documentation%20%26%20Website%22%20ORDER%20BY%20priority%20DESC;>please click here. +A Developer Guide is also available under the Development dropdown. +View the https://cwiki.apache.org/confluence/display/NIFI;>Apache NiFi Wiki for additional information related to the project as well as how to contribute. +For more information on presently outstanding documentation work https://issues.apache.org/jira/browse/NIFI-162?jql=project%20%3D%20NIFI%20AND%20resolution%20%3D%20Unresolved%20AND%20component%20%3D %20%22Documentation%20%26%20Website%22%20ORDER%20BY%20priority%20DESC">please click here. Modified: nifi/site/trunk/people.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/people.html?rev=1868487=1868486=1868487=diff == --- nifi/site/trunk/people.html (original) +++ nifi/site/trunk/people.html Tue Oct 15 18:25:48 2019 @@ -277,6 +277,11 @@ kdoran Kevin Doran + + +pwicks +Peter Wicks + @@ -339,11 +344,6 @@ -pwicks -Peter Wicks - - - aichrist Andrew Christianson @@ -368,6 +368,11 @@ Nathan Gough + +rfellows +Rob Fellows + +
[nifi-site] branch master updated: Added FAQ entry about mailing list subscription.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi-site.git The following commit(s) were added to refs/heads/master by this push: new 41afb62 Added FAQ entry about mailing list subscription. 41afb62 is described below commit 41afb6233800ffdba2ed0062143d02c302a35d8e Author: Andy LoPresto AuthorDate: Tue Oct 15 11:26:04 2019 -0700 Added FAQ entry about mailing list subscription. --- src/pages/html/faq.hbs | 18 +++--- 1 file changed, 11 insertions(+), 7 deletions(-) diff --git a/src/pages/html/faq.hbs b/src/pages/html/faq.hbs index 2d725b7..2ebcfe4 100644 --- a/src/pages/html/faq.hbs +++ b/src/pages/html/faq.hbs @@ -19,17 +19,21 @@ title: Apache NiFi FAQs How do you pronounce NiFi? "nye fye" (nī fī) is the preferred pronunciation. - - Where can I find a more detailed and up to date FAQ? - https://cwiki.apache.org/confluence/display/NIFI/FAQs;>NiFi FAQ Wiki - + +Why is no one replying to my mailing list question? +The community makes every effort to respond to all mailing list questions. While there are contributors across the world, some timezones are more active than others, so you should allow at least 24 hours (longer on weekends) to get a response. In addition, make sure you are subscribed to the mailing list you're contacting, as replies go back to the list. If you do not subscribe, t can appear as if no [...] + + + Where can I find a more detailed and up to date FAQ? + https://cwiki.apache.org/confluence/display/NIFI/FAQs;>NiFi FAQ Wiki + Where can I find documentation on how to understand and configure NiFi? Documentation is available under the NiFi Docs link within the Documentation dropdown. -A Developer Guide is also available under the Development dropdown. -View the https://cwiki.apache.org/confluence/display/NIFI;>Apache NiFi Wiki for additional information related to the project as well as how to contribute. -For more information on presently outstanding documentation work https://issues.apache.org/jira/browse/NIFI-162?jql=project%20%3D%20NIFI%20AND%20resolution%20%3D%20Unresolved%20AND%20component%20%3D%20%22Documentation%20%26%20Website%22%20ORDER%20BY%20priority%20DESC;>please click here. +A Developer Guide is also available under the Development dropdown. +View the https://cwiki.apache.org/confluence/display/NIFI;>Apache NiFi Wiki for additional information related to the project as well as how to contribute. +For more information on presently outstanding documentation work https://issues.apache.org/jira/browse/NIFI-162?jql=project%20%3D%20NIFI%20AND%20resolution%20%3D%20Unresolved%20AND%20component%20%3D %20%22Documentation%20%26%20Website%22%20ORDER%20BY%20priority%20DESC">please click here.
[nifi] branch master updated: NIFI-6741: Add RecordPath support to scripting components
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new b588073 NIFI-6741: Add RecordPath support to scripting components
b588073 is described below
commit b588073cbbb9655f43b26d854262f449d7de6607
Author: Matthew Burgess
AuthorDate: Fri Oct 4 18:15:16 2019 -0400
NIFI-6741: Add RecordPath support to scripting components
This closes #3790.
Signed-off-by: Andy LoPresto
---
.../nifi-scripting-processors/pom.xml | 11 +++
.../nifi/processors/script/TestInvokeGroovy.java | 37 +++
.../test/resources/groovy/test_record_path.groovy | 110 +
3 files changed, 158 insertions(+)
diff --git
a/nifi-nar-bundles/nifi-scripting-bundle/nifi-scripting-processors/pom.xml
b/nifi-nar-bundles/nifi-scripting-bundle/nifi-scripting-processors/pom.xml
index c69cee5..0483968 100644
--- a/nifi-nar-bundles/nifi-scripting-bundle/nifi-scripting-processors/pom.xml
+++ b/nifi-nar-bundles/nifi-scripting-bundle/nifi-scripting-processors/pom.xml
@@ -53,6 +53,11 @@
org.apache.nifi
+nifi-record-path
+1.10.0-SNAPSHOT
+
+
+org.apache.nifi
nifi-lookup-service-api
@@ -108,6 +113,12 @@
test
+org.apache.nifi
+nifi-mock-record-utils
+1.10.0-SNAPSHOT
+test
+
+
org.codehaus.groovy
groovy-json
${scripting.groovy.version}
diff --git
a/nifi-nar-bundles/nifi-scripting-bundle/nifi-scripting-processors/src/test/java/org/apache/nifi/processors/script/TestInvokeGroovy.java
b/nifi-nar-bundles/nifi-scripting-bundle/nifi-scripting-processors/src/test/java/org/apache/nifi/processors/script/TestInvokeGroovy.java
index 64047ae..4e8c58d 100644
---
a/nifi-nar-bundles/nifi-scripting-bundle/nifi-scripting-processors/src/test/java/org/apache/nifi/processors/script/TestInvokeGroovy.java
+++
b/nifi-nar-bundles/nifi-scripting-bundle/nifi-scripting-processors/src/test/java/org/apache/nifi/processors/script/TestInvokeGroovy.java
@@ -21,6 +21,8 @@ import org.apache.commons.codec.binary.Hex;
import org.apache.nifi.components.PropertyDescriptor;
import org.apache.nifi.processor.Relationship;
import org.apache.nifi.script.ScriptingComponentUtils;
+import org.apache.nifi.serialization.record.MockRecordParser;
+import org.apache.nifi.serialization.record.RecordFieldType;
import org.apache.nifi.util.MockFlowFile;
import org.apache.nifi.util.MockProcessContext;
import org.apache.nifi.util.MockProcessorInitializationContext;
@@ -35,6 +37,7 @@ import java.security.MessageDigest;
import java.util.List;
import java.util.Set;
+import static org.junit.Assert.assertEquals;
import static org.junit.Assert.assertFalse;
import static org.junit.Assert.assertNotNull;
import static org.junit.Assert.assertTrue;
@@ -209,4 +212,38 @@ public class TestInvokeGroovy extends BaseScriptTest {
outputFlowFile.assertContentEquals(expectedOutput);
outputFlowFile.assertAttributeEquals("outAttr", expectedOutput);
}
+
+/**
+ * Tests a script that has a Groovy Processor that reads records and
outputs a comma-delimited list of fields selected by a given RecordPath
expression
+ *
+ * @throws Exception Any error encountered while testing
+ */
+@Test
+public void testReadRecordsWithRecordPath() throws Exception {
+
runner.setProperty(scriptingComponent.getScriptingComponentHelper().SCRIPT_ENGINE,
"Groovy");
+runner.setProperty(ScriptingComponentUtils.SCRIPT_FILE,
"target/test/resources/groovy/test_record_path.groovy");
+runner.setProperty(ScriptingComponentUtils.MODULES,
"target/test/resources/groovy");
+
+final MockRecordParser readerService = new MockRecordParser();
+runner.addControllerService("reader", readerService);
+runner.enableControllerService(readerService);
+runner.setProperty("record-reader", "reader");
+runner.setProperty("record-path", "/age");
+readerService.addSchemaField("name", RecordFieldType.STRING);
+readerService.addSchemaField("age", RecordFieldType.INT);
+
+readerService.addRecord("John Doe", 48);
+readerService.addRecord("Jane Doe", 47);
+readerService.addRecord("Jimmy Doe", 14);
+
+runner.assertValid();
+runner.enqueue("".getBytes(StandardCharsets.UTF_8));
+runner.run();
+
+runner.assertAllFlowFilesTransferred("success", 1);
+final List result =
runner.getFlowFilesForRelationship("success");
+
[nifi] branch master updated: NIFI-6734: Fixed S3 multipart upload in case of SSE S3 and CSE* encryptions. Removed unnecessary code from S3 CSE* encryptions. S3 Encryption Service documentation fixes
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new ba14169 NIFI-6734: Fixed S3 multipart upload in case of SSE S3 and
CSE* encryptions. Removed unnecessary code from S3 CSE* encryptions. S3
Encryption Service documentation fixes and improvements. Renamed region
property of StandardS3EncryptionService to kms-region. Renamed Client-side
Customer Master Key in StandardS3EncryptionService. Use Client-side Customer
Key on the GUI / documentation (similar to Server-side Customer Key). Use C
suffix in constants and class names (similar [...]
ba14169 is described below
commit ba141690c50a019939cb12af17b3bcbecf577b36
Author: Peter Turcsanyi
AuthorDate: Tue Oct 1 12:08:57 2019 +0200
NIFI-6734: Fixed S3 multipart upload in case of SSE S3 and CSE* encryptions.
Removed unnecessary code from S3 CSE* encryptions.
S3 Encryption Service documentation fixes and improvements.
Renamed region property of StandardS3EncryptionService to kms-region.
Renamed Client-side Customer Master Key in StandardS3EncryptionService.
Use Client-side Customer Key on the GUI / documentation (similar to
Server-side Customer Key).
Use C suffix in constants and class names (similar to SSE_C).
Fixed / extended StandardS3EncryptionService validation.
FetchS3Object encryption strategy changes.
Disable SSE S3 and SSE KMS for FetchS3Object. In case of fetching the
S3 object, these strategies are handled implicitly / automatically.
Set the encryption strategy on the fetched FF that was used to store
the S3 object, instead of the one that is used to read the object (eg.
non-encrypted or SSE S3 encrypted objects can be fetched with a CSE client).
Typo fix.
This closes #3787.
Signed-off-by: Andy LoPresto
---
.../processors/aws/s3/AbstractS3Processor.java | 5 +-
.../nifi/processors/aws/s3/FetchS3Object.java | 36 ++-
.../apache/nifi/processors/aws/s3/PutS3Object.java | 13 +-
...egy.java => ClientSideCEncryptionStrategy.java} | 60 ++--
.../ClientSideKMSEncryptionStrategy.java | 14 +-
.../aws/s3/encryption/S3EncryptionStrategy.java| 2 +-
...egy.java => ServerSideCEncryptionStrategy.java} | 39 ++-
.../encryption/ServerSideS3EncryptionStrategy.java | 6 +
.../s3/encryption/StandardS3EncryptionService.java | 120 +---
.../additionalDetails.html | 21 +-
.../nifi/processors/aws/s3/ITPutS3Object.java | 168 +++
.../aws/s3/encryption/S3EncryptionTestUtil.java} | 30 +-
...ClientSideCEncryptionStrategyKeyValidation.java | 98 +++
.../s3/encryption/TestS3EncryptionStrategies.java | 26 +-
...ServerSideCEncryptionStrategyKeyValidation.java | 80 ++
.../TestStandardS3EncryptionService.java | 13 +-
.../TestStandardS3EncryptionServiceValidation.java | 307 +
.../aws/s3/AmazonS3EncryptionService.java | 16 +-
18 files changed, 878 insertions(+), 176 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/s3/AbstractS3Processor.java
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/s3/AbstractS3Processor.java
index 5e8ff32..3f01543 100644
---
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/s3/AbstractS3Processor.java
+++
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/s3/AbstractS3Processor.java
@@ -130,8 +130,9 @@ public abstract class AbstractS3Processor extends
AbstractAWSCredentialsProvider
public static final PropertyDescriptor ENCRYPTION_SERVICE = new
PropertyDescriptor.Builder()
.name("encryption-service")
.displayName("Encryption Service")
-.description("Specifies the Encryption Service Controller used
configure requests. "
-+ "For backward compatibility, this value is ignored when
'Server Side Encryption' is set.")
+.description("Specifies the Encryption Service Controller used to
configure requests. " +
+"PutS3Object: For backward compatibility, this value is
ignored when 'Server Side Encryption' is set. " +
+"FetchS3Object: Only needs to be configured in case of
Server-side Customer Key, Client-side KMS and Client-side Customer Key
encryptions.")
.required(false)
.identifiesControllerService(AmazonS3EncryptionService.class)
.build();
diff --git
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/main/java/org/apache/nifi/proces
[nifi] branch master updated: NIFI-6727 Fixed the MockProcessContext decrypt bug and added unit test.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 39a258d NIFI-6727 Fixed the MockProcessContext decrypt bug and added
unit test.
39a258d is described below
commit 39a258dc38f9b037bb0ee75c8f9a3da2b12b0946
Author: Alessandro D'Armiento
AuthorDate: Sat Sep 28 10:11:23 2019 +0200
NIFI-6727 Fixed the MockProcessContext decrypt bug and added unit test.
This closes #3773.
Signed-off-by: Andy LoPresto
---
.../main/java/org/apache/nifi/util/MockProcessContext.java| 2 +-
.../java/org/apache/nifi/util/TestMockProcessContext.java | 11 +++
.../nifi-resources/src/main/resources/conf/logback.xml| 2 +-
3 files changed, 13 insertions(+), 2 deletions(-)
diff --git
a/nifi-mock/src/main/java/org/apache/nifi/util/MockProcessContext.java
b/nifi-mock/src/main/java/org/apache/nifi/util/MockProcessContext.java
index 3e9b7e0..e850bc8 100644
--- a/nifi-mock/src/main/java/org/apache/nifi/util/MockProcessContext.java
+++ b/nifi-mock/src/main/java/org/apache/nifi/util/MockProcessContext.java
@@ -399,7 +399,7 @@ public class MockProcessContext extends
MockControllerServiceLookup implements P
@Override
public String decrypt(final String encrypted) {
if (encrypted.startsWith("enc{") && encrypted.endsWith("}")) {
-return encrypted.substring(4, encrypted.length() - 2);
+return encrypted.substring(4, encrypted.length() - 1);
}
return encrypted;
}
diff --git
a/nifi-mock/src/test/java/org/apache/nifi/util/TestMockProcessContext.java
b/nifi-mock/src/test/java/org/apache/nifi/util/TestMockProcessContext.java
index d48af63..f1137ed 100644
--- a/nifi-mock/src/test/java/org/apache/nifi/util/TestMockProcessContext.java
+++ b/nifi-mock/src/test/java/org/apache/nifi/util/TestMockProcessContext.java
@@ -75,6 +75,17 @@ public class TestMockProcessContext {
assertEquals(2, proc.getUpdateCount(DummyProcessor.DEFAULTED_PROP));
}
+@Test
+public void testFakeEncryptionAndDecryption() {
+final DummyProcessor proc = new DummyProcessor();
+final MockProcessContext context = new MockProcessContext(proc);
+String subject = "foo";
+String encrypted = context.encrypt(subject);
+assertEquals(encrypted, "enc{foo}");
+String decrypted = context.decrypt(encrypted);
+assertEquals(decrypted, subject);
+}
+
private static class DummyProcessor extends AbstractProcessor {
static final PropertyDescriptor REQUIRED_PROP = new
PropertyDescriptor.Builder()
.name("required")
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-resources/src/main/resources/conf/logback.xml
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-resources/src/main/resources/conf/logback.xml
index 03d401a..cc53093 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-resources/src/main/resources/conf/logback.xml
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-resources/src/main/resources/conf/logback.xml
@@ -172,7 +172,7 @@
-
+MockProcessContext
[nifi] branch master updated: NIFI-6653 Change bootstrap port command handling
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 3686ee2 NIFI-6653 Change bootstrap port command handling
3686ee2 is described below
commit 3686ee2a164266543daea7395c211a1bdb31afb9
Author: Kevin Doran
AuthorDate: Wed Sep 11 15:40:40 2019 -0400
NIFI-6653 Change bootstrap port command handling
This closes #3722.
Signed-off-by: Andy LoPresto
---
.../src/main/java/org/apache/nifi/bootstrap/RunNiFi.java | 10 +-
1 file changed, 9 insertions(+), 1 deletion(-)
diff --git
a/nifi-bootstrap/src/main/java/org/apache/nifi/bootstrap/RunNiFi.java
b/nifi-bootstrap/src/main/java/org/apache/nifi/bootstrap/RunNiFi.java
index 5b1334c..50a0e32 100644
--- a/nifi-bootstrap/src/main/java/org/apache/nifi/bootstrap/RunNiFi.java
+++ b/nifi-bootstrap/src/main/java/org/apache/nifi/bootstrap/RunNiFi.java
@@ -116,8 +116,10 @@ public class RunNiFi {
public static final String DUMP_CMD = "DUMP";
public static final String DIAGNOSTICS_CMD = "DIAGNOSTICS";
+private static final int UNINITIALIZED_CC_PORT = -1;
+
private volatile boolean autoRestartNiFi = true;
-private volatile int ccPort = -1;
+private volatile int ccPort = UNINITIALIZED_CC_PORT;
private volatile long nifiPid = -1L;
private volatile String secretKey;
private volatile ShutdownHook shutdownHook;
@@ -1376,6 +1378,12 @@ public class RunNiFi {
}
void setNiFiCommandControlPort(final int port, final String secretKey)
throws IOException {
+
+if (this.secretKey != null && this.ccPort != UNINITIALIZED_CC_PORT) {
+defaultLogger.warn("Blocking attempt to change NiFi command port
and secret after they have already been initialized. requestedPort={}", port);
+return;
+}
+
this.ccPort = port;
this.secretKey = secretKey;
[nifi] branch master updated: NIFI-6536 EncryptContent accepts configurable PGP symmetric cipher Additional test case in TestEncryptContent Apply suggestions from code review nit picking Apply suggest
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 4c6c1cb NIFI-6536 EncryptContent accepts configurable PGP symmetric
cipher Additional test case in TestEncryptContent Apply suggestions from code
review nit picking Apply suggestions from code review nitpicking from mgaido91
Small fixes Additional test case to check the provided cipher is actually used
by inferring it from the ciphertext Updated `EncryptContent` to use a
pre-defined list of allowable PGP ciphers Updated `EncryptContent` to check the
validity of `PGP_SYMMETRIC_EN [...]
4c6c1cb is described below
commit 4c6c1cbb14aaedda649981f76d71ced2e8a36eac
Author: Alessandro D'Armiento
AuthorDate: Sat Aug 17 18:30:24 2019 +0200
NIFI-6536 EncryptContent accepts configurable PGP symmetric cipher
Additional test case in TestEncryptContent
Apply suggestions from code review
nit picking
Apply suggestions from code review
nitpicking from mgaido91
Small fixes
Additional test case to check the provided cipher is actually used by
inferring it from the ciphertext
Updated `EncryptContent` to use a pre-defined list of allowable PGP ciphers
Updated `EncryptContent` to check the validity of
`PGP_SYMMETRIC_ENCRYPTION_CIPHER`
Updated test cases
Minor fixes
NIFI-6536 Fixed typo and strengthened validity checking for PGP symmetric
cipher.
This closes #3664.
Co-Authored-By: Marco Gaido
Signed-off-by: Andy LoPresto
---
.../nifi/processors/standard/EncryptContent.java | 67 +--
.../util/crypto/OpenPGPKeyBasedEncryptor.java | 15 ++-
.../util/crypto/OpenPGPPasswordBasedEncryptor.java | 13 +-
.../processors/standard/TestEncryptContent.java| 131 +
.../util/crypto/OpenPGPKeyBasedEncryptorTest.java | 128 +++-
.../crypto/OpenPGPPasswordBasedEncryptorTest.java | 107 ++---
6 files changed, 340 insertions(+), 121 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/src/main/java/org/apache/nifi/processors/standard/EncryptContent.java
b/nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/src/main/java/org/apache/nifi/processors/standard/EncryptContent.java
index a3249ba..b59b5fa 100644
---
a/nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/src/main/java/org/apache/nifi/processors/standard/EncryptContent.java
+++
b/nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/src/main/java/org/apache/nifi/processors/standard/EncryptContent.java
@@ -63,6 +63,7 @@ import
org.apache.nifi.security.util.crypto.OpenPGPPasswordBasedEncryptor;
import org.apache.nifi.security.util.crypto.PasswordBasedEncryptor;
import org.apache.nifi.util.StopWatch;
import org.bouncycastle.jce.provider.BouncyCastleProvider;
+import org.bouncycastle.openpgp.PGPEncryptedData;
@EventDriven
@SideEffectFree
@@ -138,6 +139,18 @@ public class EncryptContent extends AbstractProcessor {
.expressionLanguageSupported(ExpressionLanguageScope.VARIABLE_REGISTRY)
.sensitive(true)
.build();
+
+public static final PropertyDescriptor PGP_SYMMETRIC_ENCRYPTION_CIPHER =
new PropertyDescriptor.Builder()
+.name("pgp-symmetric-cipher")
+.displayName("PGP Symmetric Cipher")
+.description("When using PGP encryption, this is the symmetric
cipher to be used. This property is ignored if "
++ "Encryption Algorithm is not PGP or
PGP-ASCII-ARMOR\nNote that the provided cipher is only used during"
++ "the encryption phase, while it is inferred from the
ciphertext in the decryption phase")
+.required(false)
+.allowableValues(buildPGPSymmetricCipherAllowableValues())
+.defaultValue(String.valueOf(PGPEncryptedData.AES_128))
+.build();
+
public static final PropertyDescriptor RAW_KEY_HEX = new
PropertyDescriptor.Builder()
.name("raw-key-hex")
.displayName("Raw Key (hexadecimal)")
@@ -202,6 +215,23 @@ public class EncryptContent extends AbstractProcessor {
"if unsafe combinations of encryption algorithms and passwords
are provided on a JVM with limited strength crypto. To fix this, see the Admin
Guide.");
}
+private static AllowableValue[] buildPGPSymmetricCipherAllowableValues() {
+// Allowed values are inferred from SymmetricKeyAlgorithmTags. Note
that NULL and SAFER cipher are not supported and therefore not listed
+return new AllowableValue[] {
+new AllowableValue("1", "IDEA"),
+new AllowableValue("2", "
[nifi] branch NIFI-6187 created (now 9b1df0f)
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a change to branch NIFI-6187 in repository https://gitbox.apache.org/repos/asf/nifi.git. at 9b1df0f NIFI-6187 This branch includes the following new commits: new 9b1df0f NIFI-6187 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference.
[nifi] 01/01: NIFI-6187
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch NIFI-6187 in repository https://gitbox.apache.org/repos/asf/nifi.git commit 9b1df0fcb55d477b7a42fb92e243c1981fca22a6 Author: Andy LoPresto AuthorDate: Wed Aug 28 16:28:03 2019 -0400 NIFI-6187 Added checkbox task for building on JDK 8 and JDK 11. --- .github/PULL_REQUEST_TEMPLATE.md | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/PULL_REQUEST_TEMPLATE.md b/.github/PULL_REQUEST_TEMPLATE.md index 5cbcb1a..4bddb95 100644 --- a/.github/PULL_REQUEST_TEMPLATE.md +++ b/.github/PULL_REQUEST_TEMPLATE.md @@ -22,6 +22,7 @@ to ensure the following steps have been taken: ### For code changes: - [ ] Have you ensured that the full suite of tests is executed via `mvn -Pcontrib-check clean install` at the root `nifi` folder? - [ ] Have you written or updated unit tests to verify your changes? +- [ ] Have you verified that the full build is successful on both JDK 8 and JDK 11? - [ ] If adding new dependencies to the code, are these dependencies licensed in a way that is compatible for inclusion under [ASF 2.0](http://www.apache.org/legal/resolved.html#category-a)? - [ ] If applicable, have you updated the `LICENSE` file, including the main `LICENSE` file under `nifi-assembly`? - [ ] If applicable, have you updated the `NOTICE` file, including the main `NOTICE` file found under `nifi-assembly`?
[nifi] branch master updated: NIFI-6298 Upgraded versions of Spring Framework in nifi-spring-processors and nifi-email-processors. NIFI-6412 Upgraded Spring Security version in nifi-framework-bundle p
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new fbd201f NIFI-6298 Upgraded versions of Spring Framework in
nifi-spring-processors and nifi-email-processors. NIFI-6412 Upgraded Spring
Security version in nifi-framework-bundle pom.xml. NIFI-6412 Updated version
for spring.security.version in nifi-kerberos-iaa-providers and
nifi-ldap-iaa-providers pom.xml files.
fbd201f is described below
commit fbd201f1162609cf2d85875980c19d4ca25b2b22
Author: Andy LoPresto
AuthorDate: Mon Jul 1 17:05:19 2019 -0700
NIFI-6298 Upgraded versions of Spring Framework in nifi-spring-processors
and nifi-email-processors.
NIFI-6412 Upgraded Spring Security version in nifi-framework-bundle pom.xml.
NIFI-6412 Updated version for spring.security.version in
nifi-kerberos-iaa-providers and nifi-ldap-iaa-providers pom.xml files.
This closes #3564.
Signed-off-by: Nathan Gough
---
nifi-nar-bundles/nifi-email-bundle/nifi-email-processors/pom.xml | 2 +-
nifi-nar-bundles/nifi-framework-bundle/pom.xml | 2 +-
.../nifi-kerberos-iaa-providers/pom.xml | 2 +-
.../nifi-ldap-iaa-providers/pom.xml | 2 +-
.../nifi-spring-bundle/nifi-spring-processors/pom.xml| 9 ++---
5 files changed, 10 insertions(+), 7 deletions(-)
diff --git a/nifi-nar-bundles/nifi-email-bundle/nifi-email-processors/pom.xml
b/nifi-nar-bundles/nifi-email-bundle/nifi-email-processors/pom.xml
index dacdcdc..c14a621 100644
--- a/nifi-nar-bundles/nifi-email-bundle/nifi-email-processors/pom.xml
+++ b/nifi-nar-bundles/nifi-email-bundle/nifi-email-processors/pom.xml
@@ -88,7 +88,7 @@
org.springframework.integration
spring-integration-mail
-4.3.17.RELEASE
+4.3.19.RELEASE
org.springframework.retry
diff --git a/nifi-nar-bundles/nifi-framework-bundle/pom.xml
b/nifi-nar-bundles/nifi-framework-bundle/pom.xml
index 1555a5a..85819dc 100644
--- a/nifi-nar-bundles/nifi-framework-bundle/pom.xml
+++ b/nifi-nar-bundles/nifi-framework-bundle/pom.xml
@@ -25,7 +25,7 @@
2.26
4.3.19.RELEASE
-4.2.8.RELEASE
+4.2.13.RELEASE
nifi-framework
diff --git
a/nifi-nar-bundles/nifi-kerberos-iaa-providers-bundle/nifi-kerberos-iaa-providers/pom.xml
b/nifi-nar-bundles/nifi-kerberos-iaa-providers-bundle/nifi-kerberos-iaa-providers/pom.xml
index 0adba73..3d57b83 100644
---
a/nifi-nar-bundles/nifi-kerberos-iaa-providers-bundle/nifi-kerberos-iaa-providers/pom.xml
+++
b/nifi-nar-bundles/nifi-kerberos-iaa-providers-bundle/nifi-kerberos-iaa-providers/pom.xml
@@ -23,7 +23,7 @@
nifi-kerberos-iaa-providers
jar
-4.2.8.RELEASE
+4.2.13.RELEASE
diff --git
a/nifi-nar-bundles/nifi-ldap-iaa-providers-bundle/nifi-ldap-iaa-providers/pom.xml
b/nifi-nar-bundles/nifi-ldap-iaa-providers-bundle/nifi-ldap-iaa-providers/pom.xml
index 44a9715..7b3b146 100644
---
a/nifi-nar-bundles/nifi-ldap-iaa-providers-bundle/nifi-ldap-iaa-providers/pom.xml
+++
b/nifi-nar-bundles/nifi-ldap-iaa-providers-bundle/nifi-ldap-iaa-providers/pom.xml
@@ -23,7 +23,7 @@
nifi-ldap-iaa-providers
jar
-4.2.8.RELEASE
+4.2.13.RELEASE
diff --git a/nifi-nar-bundles/nifi-spring-bundle/nifi-spring-processors/pom.xml
b/nifi-nar-bundles/nifi-spring-bundle/nifi-spring-processors/pom.xml
index 925b8b6..d17ad5f 100644
--- a/nifi-nar-bundles/nifi-spring-bundle/nifi-spring-processors/pom.xml
+++ b/nifi-nar-bundles/nifi-spring-bundle/nifi-spring-processors/pom.xml
@@ -17,12 +17,15 @@
4.0.0
nifi-spring-processors
jar
+
+4.3.19.RELEASE
+
org.springframework
spring-messaging
-4.3.19.RELEASE
+${spring.version}
provided
@@ -59,13 +62,13 @@
org.springframework.integration
spring-integration-core
-4.3.17.RELEASE
+${spring.version}
test
org.springframework.integration
spring-integration-event
-4.3.17.RELEASE
+${spring.version}
test
[nifi] branch master updated: NIFI-4256 Adds AWS Encryption Controller Service. NIFI-4256 Adds AWS S3 FlowFile encryption attributes, more javadocs, better names.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new e841f4d NIFI-4256 Adds AWS Encryption Controller Service. NIFI-4256
Adds AWS S3 FlowFile encryption attributes, more javadocs, better names.
e841f4d is described below
commit e841f4d5b7da7cf88cbb1805d351bf75ca8a3280
Author: Troy Melhase
AuthorDate: Sat Jul 6 11:59:44 2019 -0800
NIFI-4256 Adds AWS Encryption Controller Service.
NIFI-4256 Adds AWS S3 FlowFile encryption attributes, more javadocs,
better names.
This closes #3574.
Signed-off-by: Andy LoPresto
---
.../nifi/processors/aws/AbstractAWSProcessor.java | 4 +-
.../processors/aws/s3/AbstractS3Processor.java | 31 ++--
.../aws/s3/AmazonS3EncryptionService.java | 80 +
.../nifi-aws-bundle/nifi-aws-processors/pom.xml| 5 +
.../nifi/processors/aws/s3/FetchS3Object.java | 14 +-
.../apache/nifi/processors/aws/s3/PutS3Object.java | 37 +++-
.../ClientSideCMKEncryptionStrategy.java | 95 ++
.../ClientSideKMSEncryptionStrategy.java | 65 +++
.../aws/s3/encryption/NoOpEncryptionStrategy.java | 20 +++
.../aws/s3/encryption/S3EncryptionStrategy.java| 92 ++
.../ServerSideCEKEncryptionStrategy.java | 75
.../ServerSideKMSEncryptionStrategy.java | 43 +
.../encryption/ServerSideS3EncryptionStrategy.java | 36
.../s3/encryption/StandardS3EncryptionService.java | 189
.../org.apache.nifi.controller.ControllerService | 4 +-
.../additionalDetails.html | 71
.../nifi/processors/aws/s3/AbstractS3IT.java | 27 +++
.../nifi/processors/aws/s3/ITPutS3Object.java | 198 -
.../nifi/processors/aws/s3/TestFetchS3Object.java | 4 +-
.../nifi/processors/aws/s3/TestPutS3Object.java| 7 +-
.../s3/encryption/TestS3EncryptionStrategies.java | 180 +++
.../TestStandardS3EncryptionService.java | 102 +++
22 files changed, 1347 insertions(+), 32 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/AbstractAWSProcessor.java
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/AbstractAWSProcessor.java
index 06f4a16..10d19ff 100644
---
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/AbstractAWSProcessor.java
+++
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/AbstractAWSProcessor.java
@@ -157,11 +157,11 @@ public abstract class AbstractAWSProcessor values = new ArrayList<>();
for (final Regions region : Regions.values()) {
values.add(createAllowableValue(region));
diff --git
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/s3/AbstractS3Processor.java
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/s3/AbstractS3Processor.java
index 5cc24e9..5e8ff32 100644
---
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/s3/AbstractS3Processor.java
+++
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-abstract-processors/src/main/java/org/apache/nifi/processors/aws/s3/AbstractS3Processor.java
@@ -20,6 +20,7 @@ import java.util.ArrayList;
import java.util.Collections;
import java.util.List;
+import com.amazonaws.auth.AWSStaticCredentialsProvider;
import org.apache.commons.lang3.StringUtils;
import org.apache.nifi.components.AllowableValue;
import org.apache.nifi.components.PropertyDescriptor;
@@ -126,19 +127,34 @@ public abstract class AbstractS3Processor extends
AbstractAWSCredentialsProvider
new AllowableValue("S3SignerType", "Signature v2"))
.defaultValue("Default Signature")
.build();
+public static final PropertyDescriptor ENCRYPTION_SERVICE = new
PropertyDescriptor.Builder()
+.name("encryption-service")
+.displayName("Encryption Service")
+.description("Specifies the Encryption Service Controller used
configure requests. "
++ "For backward compatibility, this value is ignored when
'Server Side Encryption' is set.")
+.required(false)
+.identifiesControllerService(AmazonS3EncryptionService.class)
+.build();
+
/**
* Create client using credentials provider. This is the preferred way for
creating clients
*/
@Override
protected AmazonS3Cli
[nifi] branch master updated: NIFI-6439 - Revert Spring Framework HTTPS XSD (#3590)
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git The following commit(s) were added to refs/heads/master by this push: new 2b0b96e NIFI-6439 - Revert Spring Framework HTTPS XSD (#3590) 2b0b96e is described below commit 2b0b96e59ed8f73c2756a0515a38bc7c6aee6552 Author: Peter Wicks AuthorDate: Thu Jul 18 12:08:07 2019 -0600 NIFI-6439 - Revert Spring Framework HTTPS XSD (#3590) --- .../src/main/resources/nifi-administration-context.xml | 2 +- .../nifi-authorizer/src/main/resources/nifi-authorizer-context.xml | 2 +- .../src/main/resources/nifi-cluster-protocol-context.xml| 2 +- .../src/main/resources/nifi-cluster-manager-context.xml | 2 +- .../nifi-framework-core/src/main/resources/nifi-context.xml | 2 +- .../nifi-web/nifi-web-api/src/main/resources/nifi-web-api-context.xml | 2 +- .../nifi-web-security/src/main/resources/nifi-web-security-context.xml | 2 +- 7 files changed, 7 insertions(+), 7 deletions(-) diff --git a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-administration/src/main/resources/nifi-administration-context.xml b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-administration/src/main/resources/nifi-administration-context.xml index f0977a1..e717686 100644 --- a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-administration/src/main/resources/nifi-administration-context.xml +++ b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-administration/src/main/resources/nifi-administration-context.xml @@ -16,7 +16,7 @@ http://www.springframework.org/schema/beans; xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance; - xsi:schemaLocation="http://www.springframework.org/schema/beans https://www.springframework.org/schema/beans/spring-beans-3.1.xsd;> + xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.1.xsd;> diff --git a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-authorizer/src/main/resources/nifi-authorizer-context.xml b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-authorizer/src/main/resources/nifi-authorizer-context.xml index 977639e..6c484fc 100644 --- a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-authorizer/src/main/resources/nifi-authorizer-context.xml +++ b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-authorizer/src/main/resources/nifi-authorizer-context.xml @@ -16,7 +16,7 @@ http://www.springframework.org/schema/beans; xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance; - xsi:schemaLocation="http://www.springframework.org/schema/beans https://www.springframework.org/schema/beans/spring-beans-3.1.xsd;> + xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-3.1.xsd;> diff --git a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-cluster-protocol/src/main/resources/nifi-cluster-protocol-context.xml b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-cluster-protocol/src/main/resources/nifi-cluster-protocol-context.xml index 1563c09..e69a06e 100644 --- a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-cluster-protocol/src/main/resources/nifi-cluster-protocol-context.xml +++ b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-cluster-protocol/src/main/resources/nifi-cluster-protocol-context.xml @@ -18,7 +18,7 @@ xmlns="http://www.springframework.org/schema/beans; xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance; xmlns:util="http://www.springframework.org/schema/util; - xsi:schemaLocation="http://www.springframework.org/schema/beans https://www.springframework.org/schema/beans/spring-beans-3.1.xsd + xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans.xsd http://www.springframework.org/schema/util http://www.springframework.org/schema/util/spring-util-3.1.xsd;> diff --git a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-cluster/src/main/resources/nifi-cluster-manager-context.xml b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-cluster/src/main/resources/nifi-cluster-manager-context.xml index 02cdcfc..c1a7665 100644 --- a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-cluster/src/main/resources/nifi-cluster-manager-context.xml +++ b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-framework-cluster/src/main/resources/nifi-cluster-manager-context.xml @@ -20,7 +20,7 @@ xmlns:util="http://www.springframe
[nifi-site] branch master updated: Fixed typos in Release Guide.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi-site.git The following commit(s) were added to refs/heads/master by this push: new d2db3de Fixed typos in Release Guide. d2db3de is described below commit d2db3de7f96e50c3d5ddeeded300ec32e5a38acc Author: Andy LoPresto AuthorDate: Tue Jun 25 11:24:22 2019 -0700 Fixed typos in Release Guide. --- src/pages/markdown/release-guide.md | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/src/pages/markdown/release-guide.md b/src/pages/markdown/release-guide.md index 0e6995f..236e771 100644 --- a/src/pages/markdown/release-guide.md +++ b/src/pages/markdown/release-guide.md @@ -38,8 +38,7 @@ Our aim is to produce an official Apache release from an existing release branch * **Community** - the [community][apache-glossary-community] of people with an interest in the improvement and advancement of Apache NiFi, including end-users, developers, evangelists, and advisers. * **PMC** - within the Apache NiFi community, members of the [PMC][apache-glossary-pmc] oversee the ongoing project. - * **Committer** - with the Apache NiFi community, [committers][apache-glossary-committer] - have gain the privilege to commit changes to the Apache NiFi codebase. + * **Committer** - within the Apache NiFi community, [committers][apache-glossary-committer] have gained the privilege to commit changes to the Apache NiFi codebase. ## High level flow of a release @@ -48,7 +47,7 @@ Our aim is to produce an official Apache release from an existing release branch - A member of the community suggests a release and initiates a discussion. - Someone volunteers to perform the Release Manager (RM) role for the release. (This can be a committer but Apache guides indicate a preference for a PMC member.) - - The RM validate the proposed release and stages the source code, Maven artifacts, and distributable files for a + - The RM validates the proposed release and stages the source code, Maven artifacts, and distributable files for a Release Candidate (RC). - The RM initiates a vote on the RC by the NiFi community. - If the NiFi community rejects the RC, the issues noted are resolved and another RC is generated.
svn commit: r1862082 - /nifi/site/trunk/release-guide.html
Author: alopresto Date: Tue Jun 25 18:26:13 2019 New Revision: 1862082 URL: http://svn.apache.org/viewvc?rev=1862082=rev Log: Fixed typos in Release Guide. Modified: nifi/site/trunk/release-guide.html Modified: nifi/site/trunk/release-guide.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/release-guide.html?rev=1862082=1862081=1862082=diff == --- nifi/site/trunk/release-guide.html (original) +++ nifi/site/trunk/release-guide.html Tue Jun 25 18:26:13 2019 @@ -144,8 +144,7 @@ Community. Community - the https://www.apache.org/foundation/glossary.html#Community;>community of people with an interest in the improvement and advancement of Apache NiFi, including end-users, developers, evangelists, and advisers. PMC - within the Apache NiFi community, members of the https://www.apache.org/foundation/glossary.html#PMC;>PMC oversee the ongoing project. -Committer - with the Apache NiFi community, https://www.apache.org/foundation/glossary.html#Committer;>committers -have gain the privilege to commit changes to the Apache NiFi codebase. +Committer - within the Apache NiFi community, https://www.apache.org/foundation/glossary.html#Committer;>committers have gained the privilege to commit changes to the Apache NiFi codebase. High level flow of a release @@ -154,7 +153,7 @@ have gain the privilege to commit change A member of the community suggests a release and initiates a discussion. Someone volunteers to perform the Release Manager (RM) role for the release. (This can be a committer but Apache guides indicate a preference for a PMC member.) -The RM validate the proposed release and stages the source code, Maven artifacts, and distributable files for a +The RM validates the proposed release and stages the source code, Maven artifacts, and distributable files for a Release Candidate (RC). The RM initiates a vote on the RC by the NiFi community. If the NiFi community rejects the RC, the issues noted are resolved and another RC is generated.
[nifi] branch master updated: NIFI-5973 Adds ShellUserGroupProvider. NIFI-5973 More comments and better defaults for the shell provider. NIFI-5973 Fixed bug where user was being retrieved by identifie
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git The following commit(s) were added to refs/heads/master by this push: new e973cac NIFI-5973 Adds ShellUserGroupProvider. NIFI-5973 More comments and better defaults for the shell provider. NIFI-5973 Fixed bug where user was being retrieved by identifier when identity was provided. NIFI-5973 Fixed a formatting string in the OS X shell commands. Updated testing conditions to run IT in OS X environment. Changed unit test to provide identity rather than identifier. e973cac is described below commit e973cacb2fe349028dae03b85a00ed89f3049967 Author: Troy Melhase AuthorDate: Tue Jun 18 16:41:44 2019 -0800 NIFI-5973 Adds ShellUserGroupProvider. NIFI-5973 More comments and better defaults for the shell provider. NIFI-5973 Fixed bug where user was being retrieved by identifier when identity was provided. NIFI-5973 Fixed a formatting string in the OS X shell commands. Updated testing conditions to run IT in OS X environment. Changed unit test to provide identity rather than identifier. This closes #3537. Signed-off-by: Andy LoPresto --- .../src/main/asciidoc/administration-guide.adoc| 21 + .../nifi-framework-nar/pom.xml | 4 + .../nifi-framework/nifi-file-authorizer/pom.xml| 6 + .../src/main/resources/conf/authorizers.xml| 18 + .../nifi-framework/nifi-shell-authorizer/pom.xml | 46 ++ .../nifi/authorization/NssShellCommands.java | 90 .../nifi/authorization/OsxShellCommands.java | 82 +++ .../nifi/authorization/RemoteShellCommands.java| 74 +++ .../nifi/authorization/ShellCommandsProvider.java | 100 .../nifi/authorization/ShellUserGroupProvider.java | 585 + .../nifi/authorization/util/ShellRunner.java | 77 +++ ...org.apache.nifi.authorization.UserGroupProvider | 15 + .../authorization/ShellUserGroupProviderBase.java | 176 +++ .../authorization/ShellUserGroupProviderIT.java| 283 ++ .../src/main/webapp/js/nf/users/nf-users-table.js | 2 +- .../nifi-framework-bundle/nifi-framework/pom.xml | 1 + nifi-nar-bundles/nifi-framework-bundle/pom.xml | 5 + pom.xml| 7 +- 18 files changed, 1590 insertions(+), 2 deletions(-) diff --git a/nifi-docs/src/main/asciidoc/administration-guide.adoc b/nifi-docs/src/main/asciidoc/administration-guide.adoc index e0a20ff..25a9769 100644 --- a/nifi-docs/src/main/asciidoc/administration-guide.adoc +++ b/nifi-docs/src/main/asciidoc/administration-guide.adoc @@ -452,6 +452,27 @@ The LdapUserGroupProvider has the following properties: NOTE: Any identity mapping rules specified in _nifi.properties_ will also be applied to the user identities. Group names are not mapped. + ShellUserGroupProvider + +The ShellUserGroupProvider fetches user and group details from Unix-like systems using shell commands. + +This provider executes various shell pipelines with commands such as `getent` on Linux and `dscl` on MacOS. + +Supported systems may be configured to retrieve users and groups from an external source, such as LDAP or NIS. In these cases the shell commands +will return those external users and groups. This provides administrators another mechanism to integrate user and group directory services. + +The ShellUserGroupProvider has the following properties: + +[options="header,footer"] +|== +| Property Name | Description +|`Initial Refresh Delay` | Duration of initial delay before first user and group refresh. (i.e. `10 secs`). Default is `5 mins`. +|`Refresh Delay` | Duration of delay between each user and group refresh. (i.e. `10 secs`). Default is `5 mins`. +|== + +Like LdapUserGroupProvider, the ShellUserGroupProvider is commented out in the _authorizers.xml_ file. Refer to that comment for usage examples. + + Composite Implementations Another option for the UserGroupProvider are composite implementations. This means that multiple sources/implementations can be configured and composed. For instance, an admin can configure users/groups to be loaded from a file and a directory server. There are two composite implementations, one that supports multiple UserGroupProviders and one that supports multiple UserGroupProviders and a single configurable UserGroupProvider. diff --git a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework-nar/pom.xml b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework-nar/pom.xml index d5495d6..d67b68a 100644 --- a/nifi-nar-bu
[nifi] branch master updated: NIFI-6301 - Added a SafeXMLConfiguration which disables XML DTDs which may call external entities. NIFI-6301 - Fixed unit test. Added comments. NIFI-6301 - Removed unused
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git The following commit(s) were added to refs/heads/master by this push: new 75fb34c NIFI-6301 - Added a SafeXMLConfiguration which disables XML DTDs which may call external entities. NIFI-6301 - Fixed unit test. Added comments. NIFI-6301 - Removed unused rule from test. NIFI-6301 - Changed read() methods to use a boolean instead. Updated comments. NIFI-6301 - Fixing checkstyle errors. NIFI-6301 - Added an XXE Validator to do a simple regex check on files that contain XXE declarations. Added unit tests and related XML test files. NIFI-6301 - Forgot licen [...] 75fb34c is described below commit 75fb34c8ee4fd364fbfa81c433b2cc26304a33f7 Author: thenatog AuthorDate: Wed May 29 18:34:52 2019 -0400 NIFI-6301 - Added a SafeXMLConfiguration which disables XML DTDs which may call external entities. NIFI-6301 - Fixed unit test. Added comments. NIFI-6301 - Removed unused rule from test. NIFI-6301 - Changed read() methods to use a boolean instead. Updated comments. NIFI-6301 - Fixing checkstyle errors. NIFI-6301 - Added an XXE Validator to do a simple regex check on files that contain XXE declarations. Added unit tests and related XML test files. NIFI-6301 - Forgot license headers. Fixed a unit test. NIFI-6301 - Refactored duplicate code for error handling. NIFI-6301 - Removed unused imports. NIFI-6301 - Slightly changed messaging language. NIFI-6301 - Added logic to catch multiline XXE attacks. Added logging messages. Updated unit test. This closes #3507. Co-authored-by: Andy LoPresto Signed-off-by: Andy LoPresto --- nifi-commons/nifi-security-utils/pom.xml | 5 + .../nifi/security/xml/SafeXMLConfiguration.java| 158 + .../org/apache/nifi/security/xml/XXEValidator.java | 96 + .../apache/nifi/security/xml/XmlUtilsTest.groovy | 2 +- .../org/apache/nifi/security/XXEValidatorTest.java | 148 +++ .../src/test/resources/local_xxe_file.xml | 22 +++ .../src/test/resources/multiline_xxe_file.xml | 26 .../src/test/resources/no_xxe.xml | 22 +++ .../src/test/resources/remote_xxe_file.xml | 25 .../src/test/resources/whitespace_xxe_file.xml | 25 .../src/test/resources/xxe_template.xml| 7 - .../apache/nifi/lookup/XMLFileLookupService.java | 9 +- .../CommonsConfigurationLookupService.java | 2 + .../nifi/lookup/TestXMLFileLookupService.java | 30 +++- .../src/test/resources/test-xxe.xml| 25 15 files changed, 584 insertions(+), 18 deletions(-) diff --git a/nifi-commons/nifi-security-utils/pom.xml b/nifi-commons/nifi-security-utils/pom.xml index 38486b5..b587e1c 100644 --- a/nifi-commons/nifi-security-utils/pom.xml +++ b/nifi-commons/nifi-security-utils/pom.xml @@ -84,6 +84,11 @@ spock-core test + +org.apache.commons +commons-configuration2 +2.4 + diff --git a/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/xml/SafeXMLConfiguration.java b/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/xml/SafeXMLConfiguration.java new file mode 100644 index 000..0e0cd7e --- /dev/null +++ b/nifi-commons/nifi-security-utils/src/main/java/org/apache/nifi/security/xml/SafeXMLConfiguration.java @@ -0,0 +1,158 @@ +/* + * Licensed to the Apache Software Foundation (ASF) under one or more + * contributor license agreements. See the NOTICE file distributed with + * this work for additional information regarding copyright ownership. + * The ASF licenses this file to You under the Apache License, Version 2.0 + * (the "License"); you may not use this file except in compliance with + * the License. You may obtain a copy of the License at + * + * http://www.apache.org/licenses/LICENSE-2.0 + * + * Unless required by applicable law or agreed to in writing, software + * distributed under the License is distributed on an "AS IS" BASIS, + * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. + * See the License for the specific language governing permissions and + * limitations under the License. + */ +package org.apache.nifi.security.xml; + +import org.apache.commons.configuration2.HierarchicalConfiguration; +import org.apache.commons.configuration2.XMLConfiguration; +import org.apache.commons.configuration2.ex.ConfigurationException; +import org.apache.commons.configuration2.io.FileLocator; +import org.apache.commons.configuration2.tree.ImmutableNode; +import org.xml.sax.SAXException; +import org.xml.sax.SAXParseException; +import org.xml.sax.helpers.DefaultHandler; + +import javax.xml.parsers.Docu
[nifi] branch master updated: NIFI-6350 Fixed misleading flow controller startup error message.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 2d3fce8 NIFI-6350 Fixed misleading flow controller startup error
message.
2d3fce8 is described below
commit 2d3fce81c1876747c5296991a9eb11304dc6c6a4
Author: Peter Wicks
AuthorDate: Wed Jun 5 02:08:37 2019 +
NIFI-6350 Fixed misleading flow controller startup error message.
This closes #3516.
Signed-off-by: Andy LoPresto
---
.../src/main/java/org/apache/nifi/web/api/ApplicationResource.java | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/main/java/org/apache/nifi/web/api/ApplicationResource.java
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/main/java/org/apache/nifi/web/api/ApplicationResource.java
index f675a46..3794ee3 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/main/java/org/apache/nifi/web/api/ApplicationResource.java
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/main/java/org/apache/nifi/web/api/ApplicationResource.java
@@ -881,7 +881,7 @@ public abstract class ApplicationResource {
private void ensureFlowInitialized() {
if (!flowController.isInitialized()) {
-throw new IllegalClusterStateException("Cluster is still in the
process of voting on the appropriate Data Flow.");
+throw new IllegalClusterStateException("The Flow Controller is
initializing the Data Flow.");
}
}
[nifi] branch master updated: NIFI-6331 Removed nifi-testharness module.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git The following commit(s) were added to refs/heads/master by this push: new ed19f61 NIFI-6331 Removed nifi-testharness module. ed19f61 is described below commit ed19f616821ae70cbca4dfdf56e51859b61c415c Author: Andy LoPresto AuthorDate: Thu May 30 11:18:55 2019 -0700 NIFI-6331 Removed nifi-testharness module. This closes #3506. --- nifi-testharness/.gitignore| 1 - .../NIFI_TESTHARNESS_README.txt| 3 - nifi-testharness/pom.xml | 233 .../SimpleNiFiFlowDefinitionEditor.java| 203 --- .../apache/nifi/testharness/TestNiFiInstance.java | 620 - .../nifi/testharness/TestNiFiInstanceAware.java| 23 - .../testharness/api/FlowFileEditorCallback.java| 46 -- .../apache/nifi/testharness/util/FileUtils.java| 88 --- .../testharness/util/NiFiCoreLibClassLoader.java | 84 --- .../org/apache/nifi/testharness/util/XmlUtils.java | 67 --- .../java/org/apache/nifi/testharness/util/Zip.java | 134 - .../apache/nifi/testharness/samples/Constants.java | 32 -- .../nifi/testharness/samples/NiFiFlowTest.java | 157 -- .../nifi/testharness/samples/NiFiMockFlowTest.java | 119 .../apache/nifi/testharness/samples/TestUtils.java | 57 -- .../nifi/testharness/samples/mock/GetHTTPMock.java | 90 --- .../testharness/samples/mock/MockProcessor.java| 101 nifi-testharness/src/test/resources/flow.xml | 154 - .../src/test/resources/logback-test.xml| 15 - .../src/test/resources/sample_technology_rss.xml | 24 - pom.xml| 1 - 21 files changed, 2252 deletions(-) diff --git a/nifi-testharness/.gitignore b/nifi-testharness/.gitignore deleted file mode 100644 index 17dff51..000 --- a/nifi-testharness/.gitignore +++ /dev/null @@ -1 +0,0 @@ -nifi_testharness_nifi_home/* \ No newline at end of file diff --git a/nifi-testharness/nifi_testharness_nifi_home/NIFI_TESTHARNESS_README.txt b/nifi-testharness/nifi_testharness_nifi_home/NIFI_TESTHARNESS_README.txt deleted file mode 100644 index e2d4da0..000 --- a/nifi-testharness/nifi_testharness_nifi_home/NIFI_TESTHARNESS_README.txt +++ /dev/null @@ -1,3 +0,0 @@ -This directory is used to mimic NiFi's own home directory: the JVM hosting the -TestNiFiInstance has to be started here. Once started, TestNiFiInstance then -creates symlinks to the actual NiFi installation directory. \ No newline at end of file diff --git a/nifi-testharness/pom.xml b/nifi-testharness/pom.xml deleted file mode 100644 index fbafd7a..000 --- a/nifi-testharness/pom.xml +++ /dev/null @@ -1,233 +0,0 @@ - - -http://www.w3.org/2001/XMLSchema-instance; xmlns="http://maven.apache.org/POM/4.0.0; - xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd;> -4.0.0 - -org.apache.nifi -nifi -1.10.0-SNAPSHOT - -nifi-testharness -A test harness for running NiFi flow tests -jar - - - - -org.apache.rat -apache-rat-plugin - - - nifi_testharness_nifi_home/NIFI_TESTHARNESS_README.txt - src/test/resources/sample_technology_rss.xml -src/test/resources/logback-test.xml -src/test/resources/flow.xml - - - - - -org.apache.maven.plugins -maven-compiler-plugin - - - -compile -testCompile - - - - -1.8 -1.8 - - - - -org.apache.maven.plugins -maven-surefire-plugin -2.20.1 - -1 -false - nifi_testharness_nifi_home - - - - - - - - -skip-testharness-tests - -true - - - - -org.apache.maven.plugins -maven-surefire-plugin - - -true - - -**/samples/*Test.class -**/samples/Test*.class -**/sample
[nifi] branch master updated: NIFI-6329 trust update did not help and oraclejdk is not working on xenial - removing it
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new a951a8e NIFI-6329 trust update did not help and oraclejdk is not
working on xenial - removing it
a951a8e is described below
commit a951a8ec610c128f5b0d6ade033ebdc7ccd94b11
Author: Joe Witt
AuthorDate: Thu May 30 13:04:42 2019 -0400
NIFI-6329 trust update did not help and oraclejdk is not working on xenial
- removing it
This closes #3505.
Signed-off-by: Andy LoPresto
---
.travis.yml | 5 +
1 file changed, 1 insertion(+), 4 deletions(-)
diff --git a/.travis.yml b/.travis.yml
index 615037d..f212adb 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -15,8 +15,6 @@
language: java
-dist: trusty
-
env:
- USER_LANGUAGE=en USER_REGION=US'
- USER_LANGUAGE=fr USER_REGION=FR'
@@ -26,7 +24,6 @@ os:
- linux
jdk:
- - oraclejdk8
- openjdk8
# Caches mvn repository in order to speed upbuilds
@@ -58,4 +55,4 @@ script:
# Note: The reason the sed is done as part of script is to ensure the pom
hack
# won't affect the 'clean install' above
- bash .travis.sh
- - mvn -T 2 clean install
-Pcontrib-check,include-grpc,include-atlas,include-hive3 -Ddir-only | grep -v
-F -f .travis-output-filters && exit ${PIPESTATUS[0]}
+ - mvn -T 1C clean install
-Pcontrib-check,include-grpc,include-atlas,include-hive3 -Ddir-only | grep -v
-F -f .travis-output-filters && exit ${PIPESTATUS[0]}
[nifi] branch master updated: NIFI-6302: - Updating integration tests to verify pruned results.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 999cfdc NIFI-6302: - Updating integration tests to verify pruned
results.
999cfdc is described below
commit 999cfdcac9bde93b125a809340ab9cfea6936bd6
Author: Matt Gilman
AuthorDate: Thu May 23 10:29:37 2019 -0400
NIFI-6302:
- Updating integration tests to verify pruned results.
This closes #3487.
Signed-off-by: Andy LoPresto
---
.../accesscontrol/ITProcessGroupAccessControl.java | 34 +++---
1 file changed, 30 insertions(+), 4 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/test/java/org/apache/nifi/integration/accesscontrol/ITProcessGroupAccessControl.java
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/test/java/org/apache/nifi/integration/accesscontrol/ITProcessGroupAccessControl.java
index 48061a8..7465b8b 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/test/java/org/apache/nifi/integration/accesscontrol/ITProcessGroupAccessControl.java
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/test/java/org/apache/nifi/integration/accesscontrol/ITProcessGroupAccessControl.java
@@ -67,6 +67,9 @@ public class ITProcessGroupAccessControl {
assertTrue(entity.getPermissions().getCanRead());
assertFalse(entity.getPermissions().getCanWrite());
assertNotNull(entity.getComponent());
+
+// ensure the contents are not included
+assertNull(entity.getComponent().getContents());
}
/**
@@ -80,6 +83,9 @@ public class ITProcessGroupAccessControl {
assertTrue(entity.getPermissions().getCanRead());
assertTrue(entity.getPermissions().getCanWrite());
assertNotNull(entity.getComponent());
+
+// ensure the contents are not included
+assertNull(entity.getComponent().getContents());
}
/**
@@ -163,6 +169,9 @@ public class ITProcessGroupAccessControl {
assertEquals(READ_WRITE_CLIENT_ID,
responseEntity.getRevision().getClientId());
assertEquals(version + 1,
responseEntity.getRevision().getVersion().longValue());
assertEquals(updatedName, responseEntity.getComponent().getName());
+
+// ensure the contents are not included
+assertNull(responseEntity.getComponent().getContents());
}
/**
@@ -194,6 +203,9 @@ public class ITProcessGroupAccessControl {
assertEquals(AccessControlHelper.READ_WRITE_CLIENT_ID,
responseEntity.getRevision().getClientId());
assertEquals(version + 1,
responseEntity.getRevision().getVersion().longValue());
assertEquals(updatedName, responseEntity.getComponent().getName());
+
+// ensure the contents are not included
+assertNull(responseEntity.getComponent().getContents());
}
/**
@@ -237,6 +249,7 @@ public class ITProcessGroupAccessControl {
// verify
assertEquals(WRITE_CLIENT_ID,
responseEntity.getRevision().getClientId());
assertEquals(version + 1,
responseEntity.getRevision().getVersion().longValue());
+assertNull(responseEntity.getComponent());
}
/**
@@ -292,7 +305,14 @@ public class ITProcessGroupAccessControl {
*/
@Test
public void testReadWriteUserDeleteProcessGroup() throws Exception {
-verifyDelete(helper.getReadWriteUser(),
AccessControlHelper.READ_WRITE_CLIENT_ID, 200);
+final Response response = verifyDelete(helper.getReadWriteUser(),
AccessControlHelper.READ_WRITE_CLIENT_ID, 200);
+
+// verify
+final ProcessGroupEntity entity =
response.readEntity(ProcessGroupEntity.class);
+assertNotNull(entity.getComponent());
+
+// ensure the contents are not included
+assertNull(entity.getComponent().getContents());
}
/**
@@ -302,7 +322,11 @@ public class ITProcessGroupAccessControl {
*/
@Test
public void testWriteUserDeleteProcessGroup() throws Exception {
-verifyDelete(helper.getWriteUser(),
AccessControlHelper.WRITE_CLIENT_ID, 200);
+final Response response = verifyDelete(helper.getWriteUser(),
AccessControlHelper.WRITE_CLIENT_ID, 200);
+
+// verify
+final ProcessGroupEntity entity =
response.readEntity(ProcessGroupEntity.class);
+assertNull(entity.getComponent());
}
/**
@@ -417,7 +441,7 @@ public class ITProcessGroupAccessControl {
return entity;
}
-private void verifyDelete(final NiFiTestUser user, final String clientId,
final int responseCode) throws Exception {
+private Response verifyDelete(final NiFiTestUser user, final String
clientId, final int responseCode) throws Exception {
final
[nifi] branch master updated: NIFI-6280 - Broke out the matching for /access/knox/** and /access/oidc/** to allow the Jetty security filters to be applied in the /access/oidc/logout and /access/knox/l
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new fe68d43 NIFI-6280 - Broke out the matching for /access/knox/** and
/access/oidc/** to allow the Jetty security filters to be applied in the
/access/oidc/logout and /access/knox/logout cases. NIFI-6280 - Updated
terminology in JwtAuthenticationFilter to authentication instead of
authorization. Added stricter token parsing using an explicit regex pattern.
Added tests. NIFI-6280 - Updated terminology from Authorization to
Authentication. NIFI-6280 - Updated the access logout method [...]
fe68d43 is described below
commit fe68d43e1dfd00807ccbc43fd43bff73d49de26c
Author: thenatog
AuthorDate: Thu May 16 13:19:47 2019 -0400
NIFI-6280 - Broke out the matching for /access/knox/** and /access/oidc/**
to allow the Jetty security filters to be applied in the /access/oidc/logout
and /access/knox/logout cases.
NIFI-6280 - Updated terminology in JwtAuthenticationFilter to
authentication instead of authorization. Added stricter token parsing using an
explicit regex pattern. Added tests.
NIFI-6280 - Updated terminology from Authorization to Authentication.
NIFI-6280 - Updated the access logout method to use getNiFiUserIdentity().
Updated javascript logout method to handle errors.
NIFI-6280 - Fixing checkstyle issues.
NIFI-6280 - Added some javadoc comments and logging. Renamed some variables
for clarity. Fixed handling of exception when JWT does not match expected
format.
NIFI-6280 - Cleaned up checkstyle, increased log severity level for logout
action, and cleaned up Groovy syntax in test.
This closes #3482.
Signed-off-by: Andy LoPresto
---
.../apache/nifi/record/path/TestRecordPath.java| 27 ++--
.../src/main/resources/conf/logback.xml| 3 +
.../nifi/web/NiFiWebApiSecurityConfiguration.java | 7 +-
.../org/apache/nifi/web/api/AccessResource.java| 69
.../accesscontrol/ITAccessTokenEndpoint.java | 1 -
.../web/security/NiFiAuthenticationFilter.java | 43 +++--
.../nifi/web/security/ProxiedEntitiesUtils.java| 18 ++-
.../web/security/jwt/JwtAuthenticationFilter.java | 28 +++-
.../apache/nifi/web/security/jwt/JwtService.java | 13 +-
.../jwt/JwtAuthenticationFilterTest.groovy | 180 +
.../nifi/web/security/jwt/JwtServiceTest.java | 3 +-
.../controllers/nf-ng-canvas-header-controller.js | 10 +-
12 files changed, 317 insertions(+), 85 deletions(-)
diff --git
a/nifi-commons/nifi-record-path/src/test/java/org/apache/nifi/record/path/TestRecordPath.java
b/nifi-commons/nifi-record-path/src/test/java/org/apache/nifi/record/path/TestRecordPath.java
index 848886f..8714b33 100644
---
a/nifi-commons/nifi-record-path/src/test/java/org/apache/nifi/record/path/TestRecordPath.java
+++
b/nifi-commons/nifi-record-path/src/test/java/org/apache/nifi/record/path/TestRecordPath.java
@@ -17,16 +17,9 @@
package org.apache.nifi.record.path;
-import org.apache.nifi.record.path.exception.RecordPathException;
-import org.apache.nifi.serialization.SimpleRecordSchema;
-import org.apache.nifi.serialization.record.DataType;
-import org.apache.nifi.serialization.record.MapRecord;
-import org.apache.nifi.serialization.record.Record;
-import org.apache.nifi.serialization.record.RecordField;
-import org.apache.nifi.serialization.record.RecordFieldType;
-import org.apache.nifi.serialization.record.RecordSchema;
-import org.apache.nifi.serialization.record.util.DataTypeUtils;
-import org.junit.Test;
+import static org.junit.Assert.assertArrayEquals;
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertTrue;
import java.nio.charset.IllegalCharsetNameException;
import java.nio.charset.StandardCharsets;
@@ -42,10 +35,16 @@ import java.util.Map;
import java.util.Optional;
import java.util.stream.Collectors;
import java.util.stream.IntStream;
-
-import static org.junit.Assert.assertArrayEquals;
-import static org.junit.Assert.assertEquals;
-import static org.junit.Assert.assertTrue;
+import org.apache.nifi.record.path.exception.RecordPathException;
+import org.apache.nifi.serialization.SimpleRecordSchema;
+import org.apache.nifi.serialization.record.DataType;
+import org.apache.nifi.serialization.record.MapRecord;
+import org.apache.nifi.serialization.record.Record;
+import org.apache.nifi.serialization.record.RecordField;
+import org.apache.nifi.serialization.record.RecordFieldType;
+import org.apache.nifi.serialization.record.RecordSchema;
+import org.apache.nifi.serialization.record.util.DataTypeUtils;
+import org.junit.Test;
public class TestRecordPath {
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-resources/src/main/resources/conf/logback.xml
b/nifi-nar-bundles/nifi
[nifi] branch master updated: NIFI-4247 Support ranges in `tls-toolkit` SAN cli option.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 12e2102 NIFI-4247 Support ranges in `tls-toolkit` SAN cli option.
12e2102 is described below
commit 12e210277bc1489d480c1ae99bcfed9c32203ff6
Author: Troy Melhase
AuthorDate: Thu May 9 18:04:05 2019 -0800
NIFI-4247 Support ranges in `tls-toolkit` SAN cli option.
This closes #3466.
Signed-off-by: Andy LoPresto
---
nifi-docs/src/main/asciidoc/toolkit-guide.adoc | 9 +-
.../tls/configuration/InstanceIdentifier.java | 4 +-
.../nifi/toolkit/tls/configuration/TlsConfig.java | 7 +-
.../TlsCertificateAuthorityClientCommandLine.java | 29 ++-
.../TlsCertificateSigningRequestPerformer.java | 4 +-
.../tls/standalone/TlsToolkitStandalone.java | 19 +-
.../TlsToolkitStandaloneCommandLine.java | 19 +-
.../apache/nifi/toolkit/tls/util/TlsHelper.java| 13 +-
.../tls/configuration/InstanceIdentifierTest.java | 2 +-
.../TlsToolkitStandaloneCommandLineTest.java | 2 +-
.../tls/standalone/TlsToolkitStandaloneTest.java | 232 +
.../nifi/toolkit/tls/util/TlsHelperTest.java | 6 +-
12 files changed, 317 insertions(+), 29 deletions(-)
diff --git a/nifi-docs/src/main/asciidoc/toolkit-guide.adoc
b/nifi-docs/src/main/asciidoc/toolkit-guide.adoc
index 304f79c..9572d62 100644
--- a/nifi-docs/src/main/asciidoc/toolkit-guide.adoc
+++ b/nifi-docs/src/main/asciidoc/toolkit-guide.adoc
@@ -775,9 +775,9 @@ The following are available options:
* `-T`,`--keyStoreType ` The type of keystores to
generate (default: `jks`)
-Hostname Patterns:
+"Hostname" and "Subject Alternative Name" Patterns:
-* Square brackets can be used in order to easily specify a range of hostnames.
Example: `[01-20]`
+* Square brackets can be used in order to easily specify a range of hostnames
or subject alternative names. Example: `[01-20]`
* Parentheses can be used in order to specify that more than one NiFi instance
will run on the given host(s). Example: `(5)`
Examples:
@@ -797,6 +797,11 @@ Create 2 sets of keystore, truststore, _nifi.properties_
for 10 NiFi hostnames i
bin/tls-toolkit.sh standalone -n 'nifi[01-10].subdomain[1-4].domain(2)' -C
'CN=username,OU=NIFI'
+The same command with a range of subject alternate names:
+
+bin/tls-toolkit.sh standalone -n 'nifi[01-10].subdomain[1-4].domain(2)' -C
'CN=username,OU=NIFI' --subjectAlternativeNames
'nifi[21-30].other[2-5].example.com(2)'
+
+
Client/Server
Client/Server mode relies on a long-running Certificate Authority (CA) to
issue certificates. The CA can be stopped when you’re not bringing nodes online.
diff --git
a/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/InstanceIdentifier.java
b/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/InstanceIdentifier.java
index 9699236..7b15636 100644
---
a/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/InstanceIdentifier.java
+++
b/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/InstanceIdentifier.java
@@ -106,7 +106,9 @@ public class InstanceIdentifier {
int low = Integer.parseInt(split[0]);
String padding = split[0].substring(0, split[0].length() -
Integer.toString(low).length());
int high = Integer.parseInt(split[1]);
-return IntStream.range(low, high + 1).mapToObj(i -> {
+IntStream intRange = IntStream.range(Math.min(low, high),
Math.max(low, high) + 1)
+.map(i -> high < low ? high - i + low : i);
+return intRange.mapToObj(i -> {
String s = Integer.toString(i);
int length = s.length();
if (length >= baseLength) {
diff --git
a/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/TlsConfig.java
b/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/TlsConfig.java
index 9332022..5e440a7 100644
---
a/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/TlsConfig.java
+++
b/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/TlsConfig.java
@@ -17,6 +17,7 @@
package org.apache.nifi.toolkit.tls.configuration;
+import java.util.List;
import org.apache.nifi.security.util.CertificateUtils;
import org.apache.nifi.util.StringUtils;
@@ -41,7 +42,6 @@ public class TlsConfig {
private String signingAlgorithm = DEFAULT_SIGNING_ALGORITHM;
private String dn;
-private String domainAlternativeNames;
private String keyStore;
private String keyStoreType = DEFAULT_
[nifi] branch master updated: NIFI-6085 - Added /access/logout endpoint to allow JWT auth tokens to be removed correctly. Added some tests. Found an error in the KeyDAO which did not allow key deletio
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new cf6f517 NIFI-6085 - Added /access/logout endpoint to allow JWT auth
tokens to be removed correctly. Added some tests. Found an error in the KeyDAO
which did not allow key deletion. NIFI-6085 - Updated logOut method to use
NiFiUserUtils and updated tests. NIFI-6085 - Added some more integration tests.
NIFI-6085 Suppressed stacktrace when token is used after being invalidated.
cf6f517 is described below
commit cf6f5172503ce438c6c22c334c9367f774db7b24
Author: thenatog
AuthorDate: Fri Mar 8 16:53:11 2019 -0500
NIFI-6085 - Added /access/logout endpoint to allow JWT auth tokens to be
removed correctly. Added some tests. Found an error in the KeyDAO which did not
allow key deletion.
NIFI-6085 - Updated logOut method to use NiFiUserUtils and updated tests.
NIFI-6085 - Added some more integration tests.
NIFI-6085 Suppressed stacktrace when token is used after being invalidated.
This closes #3362.
Signed-off-by: Andy LoPresto
---
.../apache/nifi/admin/dao/impl/StandardKeyDAO.java | 1 +
.../nifi-framework/nifi-web/nifi-web-api/pom.xml | 7 +
.../org/apache/nifi/web/api/AccessResource.java| 32
.../accesscontrol/ITAccessTokenEndpoint.java | 207 -
.../nifi-web/nifi-web-security/pom.xml | 12 ++
.../apache/nifi/web/security/jwt/JwtService.java | 35 +++-
.../nifi/web/security/jwt/JwtServiceTest.java | 97 +-
.../controllers/nf-ng-canvas-header-controller.js | 5 +
8 files changed, 381 insertions(+), 15 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-administration/src/main/java/org/apache/nifi/admin/dao/impl/StandardKeyDAO.java
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-administration/src/main/java/org/apache/nifi/admin/dao/impl/StandardKeyDAO.java
index 9d19361..44d9716 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-administration/src/main/java/org/apache/nifi/admin/dao/impl/StandardKeyDAO.java
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-administration/src/main/java/org/apache/nifi/admin/dao/impl/StandardKeyDAO.java
@@ -161,6 +161,7 @@ public class StandardKeyDAO implements KeyDAO {
try {
// add each authority for the specified user
statement = connection.prepareStatement(DELETE_KEYS);
+statement.setString(1, identity);
statement.executeUpdate();
} catch (SQLException sqle) {
throw new DataAccessException(sqle);
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/pom.xml
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/pom.xml
index 2d8ffec..3557784 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/pom.xml
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/pom.xml
@@ -177,6 +177,13 @@
org.apache.nifi
+nifi-web-security
+1.10.0-SNAPSHOT
+test-jar
+test
+
+
+org.apache.nifi
nifi-web-optimistic-locking
provided
diff --git
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/main/java/org/apache/nifi/web/api/AccessResource.java
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/main/java/org/apache/nifi/web/api/AccessResource.java
index f2dd697..8796dce 100644
---
a/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/main/java/org/apache/nifi/web/api/AccessResource.java
+++
b/nifi-nar-bundles/nifi-framework-bundle/nifi-framework/nifi-web/nifi-web-api/src/main/java/org/apache/nifi/web/api/AccessResource.java
@@ -344,6 +344,9 @@ public class AccessResource extends ApplicationResource {
.build();
httpServletResponse.sendRedirect(logoutUri.toString());
}
+
+String authorizationHeader =
httpServletRequest.getHeader(JwtAuthenticationFilter.AUTHORIZATION);
+jwtService.logOut(authorizationHeader);
}
@GET
@@ -744,6 +747,35 @@ public class AccessResource extends ApplicationResource {
return generateCreatedResponse(uri, token).build();
}
+@GET
+@Consumes(MediaType.WILDCARD)
+@Produces(MediaType.WILDCARD)
+@Path("/logout")
+@ApiOperation(
+value = "Performs a logout for other providers that have been
issued a JWT.",
+notes = NON_GUARANTEED_ENDPOINT
+)
+@ApiResponses(
+value = {
+@ApiResponse(code = 200, message =
[nifi] branch master updated: NIFI-6026 - First commit which adds a new tls-toolkit mode called Keystore. Should instead integrate the functionality into standalone mode. NIFI-6026 - Updated splitKeys
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new fdea4c5 NIFI-6026 - First commit which adds a new tls-toolkit mode
called Keystore. Should instead integrate the functionality into standalone
mode. NIFI-6026 - Updated splitKeystore to use standalone mode with a
-splitKeystore argument. NIFI-6026 - Removed unused file and references.
NIFI-6026 - Removed some code that is not necessary after doing some argument
checking in the command line parsing. NIFI-6026 - Made some small changes to
only require keystore password if keystore [...]
fdea4c5 is described below
commit fdea4c54dfb1b66073aa1ff603b5e814721ac5a7
Author: thenatog
AuthorDate: Sun Feb 24 21:13:49 2019 -0500
NIFI-6026 - First commit which adds a new tls-toolkit mode called Keystore.
Should instead integrate the functionality into standalone mode.
NIFI-6026 - Updated splitKeystore to use standalone mode with a
-splitKeystore argument.
NIFI-6026 - Removed unused file and references.
NIFI-6026 - Removed some code that is not necessary after doing some
argument checking in the command line parsing.
NIFI-6026 - Made some small changes to only require keystore password if
keystore and key passwords are the same. Added some more tests.
NIFI-6026 - Added some more unit tests as per Andy's request. Also added a
check for empty keystores. Made tests a bit cleaner.
NIFI-6026 - Added empty keystore used by unit tests.
NIFI-6026 Fixed minor formatting and checkstyle issues.
This closes #3340.
Signed-off-by: Andy LoPresto
---
.../src/test/resources/keystore.jks| Bin 0 -> 3088 bytes
.../tls/configuration/StandaloneConfig.java| 9 ++
.../tls/standalone/TlsToolkitStandalone.java | 59 ++--
.../TlsToolkitStandaloneCommandLine.java | 76 ---
.../apache/nifi/toolkit/tls/util/TlsHelper.java| 104 +++---
.../TlsToolkitStandaloneCommandLineTest.java | 149 ++---
.../nifi/toolkit/tls/util/TlsHelperTest.java | 147 +++-
.../src/test/resources/empty-keystore.jks | Bin 0 -> 32 bytes
.../src/test/resources/keystore.jks| Bin 0 -> 3975 bytes
9 files changed, 437 insertions(+), 107 deletions(-)
diff --git a/nifi-commons/nifi-security-utils/src/test/resources/keystore.jks
b/nifi-commons/nifi-security-utils/src/test/resources/keystore.jks
new file mode 100644
index 000..246fe88
Binary files /dev/null and
b/nifi-commons/nifi-security-utils/src/test/resources/keystore.jks differ
diff --git
a/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/StandaloneConfig.java
b/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/StandaloneConfig.java
index d8e86347..4fd6af5 100644
---
a/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/StandaloneConfig.java
+++
b/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/configuration/StandaloneConfig.java
@@ -32,6 +32,7 @@ public class StandaloneConfig extends TlsConfig {
private List clientPasswords;
private boolean clientPasswordsGenerated;
private boolean overwrite;
+private boolean splitKeystore;
// TODO: A lot of these fields are null and cause NPEs in {@link
TlsToolkitStandalone} when not executed with expected input
@@ -90,4 +91,12 @@ public class StandaloneConfig extends TlsConfig {
public void setInstanceDefinitions(List
instanceDefinitions) {
this.instanceDefinitions = instanceDefinitions;
}
+
+public void setSplitKeystore(boolean splitKeystore) {
+this.splitKeystore = splitKeystore;
+}
+
+public boolean isSplitKeystore() {
+return this.splitKeystore;
+}
}
diff --git
a/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/standalone/TlsToolkitStandalone.java
b/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/standalone/TlsToolkitStandalone.java
index ffe4c5d..7407e5d 100644
---
a/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/standalone/TlsToolkitStandalone.java
+++
b/nifi-toolkit/nifi-toolkit-tls/src/main/java/org/apache/nifi/toolkit/tls/standalone/TlsToolkitStandalone.java
@@ -17,20 +17,6 @@
package org.apache.nifi.toolkit.tls.standalone;
-import java.io.File;
-import java.io.FileOutputStream;
-import java.io.FileReader;
-import java.io.FileWriter;
-import java.io.IOException;
-import java.io.OutputStreamWriter;
-import java.security.GeneralSecurityException;
-import java.security.KeyPair;
-import java.security.KeyStore;
-import java.security.SignatureException;
-import java.security.cert.Certificate;
-import java.security.cert.X509Ce
[nifi] branch master updated: NIFI-6019 Removes "trusted hostname" property. NIFI-6019 Adds support for excluded HTTP headers.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 1cadc72 NIFI-6019 Removes "trusted hostname" property. NIFI-6019 Adds
support for excluded HTTP headers.
1cadc72 is described below
commit 1cadc79ad50cf569ee107eaeeb95dc216ea2
Author: Troy Melhase
AuthorDate: Tue Apr 23 13:36:48 2019 -0800
NIFI-6019 Removes "trusted hostname" property.
NIFI-6019 Adds support for excluded HTTP headers.
This closes #3452.
Signed-off-by: Andy LoPresto
---
.../nifi/processors/standard/InvokeHTTP.java | 43 +-
.../standard/util/TestInvokeHttpCommon.java| 26 +
2 files changed, 52 insertions(+), 17 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/src/main/java/org/apache/nifi/processors/standard/InvokeHTTP.java
b/nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/src/main/java/org/apache/nifi/processors/standard/InvokeHTTP.java
index 8926ba2..0fe5dab 100644
---
a/nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/src/main/java/org/apache/nifi/processors/standard/InvokeHTTP.java
+++
b/nifi-nar-bundles/nifi-standard-bundle/nifi-standard-processors/src/main/java/org/apache/nifi/processors/standard/InvokeHTTP.java
@@ -30,7 +30,6 @@ import okhttp3.Request;
import okhttp3.RequestBody;
import okhttp3.Response;
import okhttp3.ResponseBody;
-import okhttp3.internal.tls.OkHostnameVerifier;
import okio.BufferedSink;
import org.apache.commons.io.input.TeeInputStream;
import org.apache.commons.lang3.StringUtils;
@@ -54,6 +53,7 @@ import org.apache.nifi.logging.ComponentLog;
import org.apache.nifi.processor.AbstractProcessor;
import org.apache.nifi.processor.DataUnit;
import org.apache.nifi.processor.ProcessContext;
+import org.apache.nifi.processor.ProcessorInitializationContext;
import org.apache.nifi.processor.ProcessSession;
import org.apache.nifi.processor.Relationship;
import org.apache.nifi.processor.exception.ProcessException;
@@ -155,6 +155,9 @@ public final class InvokeHTTP extends AbstractProcessor {
EXCEPTION_CLASS, EXCEPTION_MESSAGE,
"uuid", "filename", "path")));
+// Set of HTTP header names explicitly excluded from requests.
+private static final Map excludedHeaders = new
HashMap();
+
public static final String HTTP = "http";
public static final String HTTPS = "https";
@@ -360,15 +363,6 @@ public final class InvokeHTTP extends AbstractProcessor {
.allowableValues("true", "false")
.build();
-public static final PropertyDescriptor PROP_TRUSTED_HOSTNAME = new
PropertyDescriptor.Builder()
-.name("Trusted Hostname")
-.description("Bypass the normal truststore hostname verifier to
allow the specified remote hostname as trusted. "
-+ "Enabling this property has MITM security implications,
use wisely. Will still accept other connections based "
-+ "on the normal truststore hostname verifier. Only valid
with SSL (HTTPS) connections.")
-.addValidator(StandardValidators.NON_EMPTY_VALIDATOR)
-.required(false)
-.build();
-
public static final PropertyDescriptor PROP_ADD_HEADERS_TO_REQUEST = new
PropertyDescriptor.Builder()
.name("Add Response Headers to Request")
.description("Enabling this property saves all the response
headers to the original request. This may be when the response headers are
needed "
@@ -438,7 +432,6 @@ public final class InvokeHTTP extends AbstractProcessor {
PROP_PUT_ATTRIBUTE_MAX_LENGTH,
PROP_DIGEST_AUTH,
PROP_OUTPUT_RESPONSE_REGARDLESS,
-PROP_TRUSTED_HOSTNAME,
PROP_ADD_HEADERS_TO_REQUEST,
PROP_CONTENT_TYPE,
PROP_SEND_BODY,
@@ -492,6 +485,13 @@ public final class InvokeHTTP extends AbstractProcessor {
private final AtomicReference okHttpClientAtomicReference =
new AtomicReference<>();
+protected void init(ProcessorInitializationContext context) {
+excludedHeaders.put("Trusted Hostname", "HTTP request header '{}'
excluded. " +
+ "Update processor to use the SSLContextService
instead. " +
+ "See the Access Policies section in the System
Administrator's Guide.");
+
+}
+
@Override
protected List getSupportedPropertyDescriptors() {
return PROPERTIES;
@@ -573,6 +573,14 @@ public final class InvokeHTTP extends AbstractProcessor {
ProxyConfiguration.
[nifi] branch master updated (698c48f -> 8411b6a)
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/nifi.git. discard 698c48f NIFI-6207: fixing 'partition' typos in AWS Kinesis processor and test as well as Kafka ConsumeLease classes. new 8411b6a NIFI-6207: fixing 'partition' typos in AWS Kinesis processor and test as well as Kafka ConsumeLease classes. This update added new revisions after undoing existing revisions. That is to say, some revisions that were in the old version of the branch are not in the new version. This situation occurs when a user --force pushes a change and generates a repository containing something like this: * -- * -- B -- O -- O -- O (698c48f) \ N -- N -- N refs/heads/master (8411b6a) You should already have received notification emails for all of the O revisions, and so the following emails describe only the N revisions from the common base, B. Any revisions marked "omit" are not gone; other references still refer to them. Any revisions marked "discard" are gone forever. The 5060 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes:
[nifi] branch master updated: NIFI-6207: fixing 'partition' typos in AWS Kinesis processor and test as well as Kafka ConsumeLease classes.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi.git
The following commit(s) were added to refs/heads/master by this push:
new 698c48f NIFI-6207: fixing 'partition' typos in AWS Kinesis processor
and test as well as Kafka ConsumeLease classes.
698c48f is described below
commit 698c48fc60b34e14db253e2bbad556f85ea170b9
Author: Rahul Patil
AuthorDate: Mon Apr 15 12:32:36 2019 +0900
NIFI-6207: fixing 'partition' typos in AWS Kinesis processor and test as
well as Kafka ConsumeLease classes.
Signed-off-by: Andy LoPresto
---
.../apache/nifi/processors/aws/kinesis/stream/PutKinesisStream.java | 4 ++--
.../apache/nifi/processors/aws/kinesis/stream/ITPutKinesisStream.java | 2 +-
.../java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java | 4 ++--
.../java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java | 4 ++--
.../java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java | 4 ++--
.../java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java | 4 ++--
.../java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java | 4 ++--
7 files changed, 13 insertions(+), 13 deletions(-)
diff --git
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/main/java/org/apache/nifi/processors/aws/kinesis/stream/PutKinesisStream.java
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/main/java/org/apache/nifi/processors/aws/kinesis/stream/PutKinesisStream.java
index 13aedfe..8d2d1a7 100644
---
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/main/java/org/apache/nifi/processors/aws/kinesis/stream/PutKinesisStream.java
+++
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/main/java/org/apache/nifi/processors/aws/kinesis/stream/PutKinesisStream.java
@@ -83,7 +83,7 @@ public class PutKinesisStream extends
AbstractKinesisStreamProcessor {
AWS_CREDENTIALS_PROVIDER_SERVICE, TIMEOUT,
PROXY_CONFIGURATION_SERVICE, PROXY_HOST, PROXY_HOST_PORT, PROXY_USERNAME,
PROXY_PASSWORD, ENDPOINT_OVERRIDE));
/** A random number generator for cases where partition key is not
available */
-protected Random randomParitionKeyGenerator = new Random();
+protected Random randomPartitionKeyGenerator = new Random();
@Override
protected List getSupportedPropertyDescriptors() {
@@ -125,7 +125,7 @@ public class PutKinesisStream extends
AbstractKinesisStreamProcessor {
if (StringUtils.isBlank(partitionKey) == false) {
record.setPartitionKey(partitionKey);
} else {
-
record.setPartitionKey(Integer.toString(randomParitionKeyGenerator.nextInt()));
+
record.setPartitionKey(Integer.toString(randomPartitionKeyGenerator.nextInt()));
}
if (recordHash.containsKey(streamName) == false) {
diff --git
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/test/java/org/apache/nifi/processors/aws/kinesis/stream/ITPutKinesisStream.java
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/test/java/org/apache/nifi/processors/aws/kinesis/stream/ITPutKinesisStream.java
index b195423..0aa87c5 100644
---
a/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/test/java/org/apache/nifi/processors/aws/kinesis/stream/ITPutKinesisStream.java
+++
b/nifi-nar-bundles/nifi-aws-bundle/nifi-aws-processors/src/test/java/org/apache/nifi/processors/aws/kinesis/stream/ITPutKinesisStream.java
@@ -92,7 +92,7 @@ public class ITPutKinesisStream {
@Test
public void testIntegrationWithDynamicPartitionSuccess() throws Exception {
-runner.setProperty(PutKinesisStream.KINESIS_PARTITION_KEY,
"${parition}");
+runner.setProperty(PutKinesisStream.KINESIS_PARTITION_KEY,
"${partition}");
runner.assertValid();
Map properties = new HashMap<>();
properties.put("partition", "px");
diff --git
a/nifi-nar-bundles/nifi-kafka-bundle/nifi-kafka-0-10-processors/src/main/java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java
b/nifi-nar-bundles/nifi-kafka-bundle/nifi-kafka-0-10-processors/src/main/java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java
index 85c85f6..bde07a6 100644
---
a/nifi-nar-bundles/nifi-kafka-bundle/nifi-kafka-0-10-processors/src/main/java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java
+++
b/nifi-nar-bundles/nifi-kafka-bundle/nifi-kafka-0-10-processors/src/main/java/org/apache/nifi/processors/kafka/pubsub/ConsumerLease.java
@@ -133,7 +133,7 @@ public abstract class ConsumerLease implements Closeable,
ConsumerRebalanceListe
*/
@Override
public void onPartitionsRevoked(final Collection
partitions) {
-logger.debug("Rebalance Alert: Paritions '{}' revoked for lease '{}'
with consumer '{}'", new Object[]{partitions,
[nifi-site] branch master updated: Added -v option to gpg command to verify release candidate signature.
This is an automated email from the ASF dual-hosted git repository.
alopresto pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/nifi-site.git
The following commit(s) were added to refs/heads/master by this push:
new 4573d7c Added -v option to gpg command to verify release candidate
signature.
4573d7c is described below
commit 4573d7c074fda7bcb1eea68d8603cb6be39bd299
Author: Andy LoPresto
AuthorDate: Thu Apr 4 11:24:01 2019 -0700
Added -v option to gpg command to verify release candidate signature.
---
src/pages/markdown/release-guide.md | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/src/pages/markdown/release-guide.md
b/src/pages/markdown/release-guide.md
index 2ba02e4..cc027db 100644
--- a/src/pages/markdown/release-guide.md
+++ b/src/pages/markdown/release-guide.md
@@ -377,7 +377,7 @@ and more positive than negative binding votes._
wget
https://dist.apache.org/repos/dist/dev/nifi/nifi-${NIFI_VERSION}/nifi-${NIFI_VERSION}-source-release.zip.sha512
# Verify the signature
-gpg --verify nifi-${NIFI_VERSION}-source-release.zip.asc
+gpg --verify -v nifi-${NIFI_VERSION}-source-release.zip.asc
# Verify the hashes (sha256, sha512) match the source and what was
provided in the vote email thread
shasum -a 256 nifi-${NIFI_VERSION}-source-release.zip
[nifi-site] branch master updated: Fixed archive download links for 1.8.0 source and binaries.
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi-site.git The following commit(s) were added to refs/heads/master by this push: new 13cf604 Fixed archive download links for 1.8.0 source and binaries. 13cf604 is described below commit 13cf6041eb63ec0a11065003a347b3ac4267bcb9 Author: Andy LoPresto AuthorDate: Thu Feb 28 13:06:27 2019 -0800 Fixed archive download links for 1.8.0 source and binaries. --- src/pages/html/download.hbs | 12 ++-- 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/src/pages/html/download.hbs b/src/pages/html/download.hbs index 1560e5d..98de823 100644 --- a/src/pages/html/download.hbs +++ b/src/pages/html/download.hbs @@ -52,24 +52,24 @@ title: Apache NiFi Downloads 1.8.0 Released October 26, 2018 - Note: The download links pull from archive.apache.org. Apache limits how much can be downloaded from this site per day so please avoid automated/continuous downloads from the archives +Note: The download links pull from archive.apache.org. Apache limits how much can be downloaded from this site per day so please avoid automated/continuous downloads from the archives Sources: -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-1.8.0-source-release.zip;>nifi-1.8.0-source-release.zip [52 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.sha512;>sha512 ) +https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip;>nifi-1.8.0-source-release.zip [52 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.sha512;>sha512 ) Binaries -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-1.8.0-bin.tar.gz;>nifi-1.8.0-bin.tar.gz [1.2 GB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.sha512;>sha512 ) +https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz;>nifi-1.8.0-bin.tar.gz [1.2 GB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.sha512;>sha512 ) -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-1.8.0-bin.zip;>nifi-1.8.0-bin.zip [1.2 GB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.sha512;>sha512 ) +https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip;>nifi-1.8.0-bin.zip [1.2 GB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.sha512;>sha512 ) -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz;>nifi-toolkit-1.8.0-bin.tar.gz [42 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.sha512;>sha512 ) +https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz;>nifi-toolkit-1.8.0-bin.tar.gz [42 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.sha512;>sha512 ) -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-toolkit-1.8.0-bin.zip;>nifi-toolkit-1.8.0-bin.zip [42 MB] ( https://archive.ap
svn commit: r1854546 - /nifi/site/trunk/download.html
Author: alopresto Date: Thu Feb 28 21:06:17 2019 New Revision: 1854546 URL: http://svn.apache.org/viewvc?rev=1854546=rev Log: Fixed archive download links for 1.8.0 source and binaries. Modified: nifi/site/trunk/download.html Modified: nifi/site/trunk/download.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/download.html?rev=1854546=1854545=1854546=diff == --- nifi/site/trunk/download.html (original) +++ nifi/site/trunk/download.html Thu Feb 28 21:06:17 2019 @@ -156,24 +156,24 @@ 1.8.0 Released October 26, 2018 - Note: The download links pull from archive.apache.org. Apache limits how much can be downloaded from this site per day so please avoid automated/continuous downloads from the archives +Note: The download links pull from archive.apache.org. Apache limits how much can be downloaded from this site per day so please avoid automated/continuous downloads from the archives Sources: -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-1.8.0-source-release.zip;>nifi-1.8.0-source-release.zip [52 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.sha512;>sha512 ) +https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip;>nifi-1.8.0-source-release.zip [52 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-source-release.zip.sha512;>sha512 ) Binaries -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-1.8.0-bin.tar.gz;>nifi-1.8.0-bin.tar.gz [1.2 GB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.sha512;>sha512 ) +https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz;>nifi-1.8.0-bin.tar.gz [1.2 GB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.tar.gz.sha512;>sha512 ) -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-1.8.0-bin.zip;>nifi-1.8.0-bin.zip [1.2 GB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.sha512;>sha512 ) +https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip;>nifi-1.8.0-bin.zip [1.2 GB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-1.8.0-bin.zip.sha512;>sha512 ) -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz;>nifi-toolkit-1.8.0-bin.tar.gz [42 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.sha512;>sha512 ) +https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz;>nifi-toolkit-1.8.0-bin.tar.gz [42 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.tar.gz.sha512;>sha512 ) -https://archive.apache.org/dyn/closer.lua?path=/nifi/1.8.0/nifi-toolkit-1.8.0-bin.zip;>nifi-toolkit-1.8.0-bin.zip [42 MB] ( https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.zip.asc;>asc, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.zip.sha256;>sha256, https://archive.apache.org/dist/nifi/1.8.0/nifi-toolkit-1.8.0-bin.zip.sha512;>sha512 ) +
[nifi-registry] branch master updated: NIFIREG-230 Fix Typo In dockerhub README
This is an automated email from the ASF dual-hosted git repository. alopresto pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/nifi-registry.git The following commit(s) were added to refs/heads/master by this push: new 161d719 NIFIREG-230 Fix Typo In dockerhub README 161d719 is described below commit 161d719bd7eff6ba658cfe947cc2abb5c802314b Author: Jason Rogena AuthorDate: Tue Feb 26 18:45:36 2019 +0300 NIFIREG-230 Fix Typo In dockerhub README The README.md file in the dockerhub directory suggests that the NiFi Registry image is tagged as 'apache/nifi:latest' instead of 'apache/nifi-registry:latest'. This seems to be a typo. This closes #158. Signed-off-by: Andy LoPresto --- nifi-registry-core/nifi-registry-docker/dockerhub/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/nifi-registry-core/nifi-registry-docker/dockerhub/README.md b/nifi-registry-core/nifi-registry-docker/dockerhub/README.md index 790b175..9ecae2e 100644 --- a/nifi-registry-core/nifi-registry-docker/dockerhub/README.md +++ b/nifi-registry-core/nifi-registry-docker/dockerhub/README.md @@ -26,7 +26,7 @@ The Docker image can be built using the following command: # user @ puter in ~/path/to/apache/nifi-registry/nifi-registry-docker/dockerhub $ docker build -t apache/nifi-registry:latest . -This will result in an image tagged apache/nifi:latest +This will result in an image tagged apache/nifi-registry:latest $ docker images > REPOSITORY TAG IMAGE IDCREATED SIZE
svn commit: r1854109 [39/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.PutDatabaseRecord/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.PutDatabaseRecord/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.PutDatabaseRecord/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.PutDatabaseRecord/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+PutDatabaseRecordwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }PutDatabaseRecordDescription: The PutDatabaseRecord
processor uses a specified RecordReader to input (possibly multiple) records
from an incoming flow file. These records are translated to SQL statements and
executed as a single batch. If any errors occur, the flow file is routed to
failure or retry, and if the records are transmitted successfully, the incoming
flow file is routed to success. The type of statement executed by the
processor is specified via the Statement Type property, which accepts some
hard-coded values such as INSERT, UPDATE, and DELETE, as well as 'Use sta
tement.type Attribute', which causes the processor to get the statement type
from a flow file attribute. IMPORTANT: If the Statement Type is UPDATE, then
the incoming records must not alter the value(s) of the primary keys (or
user-specified Update Keys). If such records are encountered, the UPDATE
statement issued to the database may do nothing (if no existing records with
the new primary key values are found), or could inadvertently corrupt the
existing data (by changing records for which the new values of the primary keys
exist).Tags: sql, record, jdbc, put, database, update, insert,
deleteProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default values, and
whether a property supports the NiFi Expression
Language.N
ameDefault ValueAllowable
ValuesDescriptionRecord
ReaderController Service API:
RecordReaderFactoryImplementations: JsonTreeReaderXMLReaderJsonPathReaderSyslog5424ReaderGrokReaderScriptedReaderAvroReaderCSVReaderSyslogReaderSpecifies the Controller Service to use for parsing incoming
data and determining the data's schema.Statement TypeUPDATEINSERTDELETEUse
statement.type AttributeSpecifies the type
of SQL Statement to generate. If 'Use statement.type Attribute' is chosen, then
the value is taken from the statement.type attribute in the FlowFile. The 'Use
statemen
t.type Attribute' option is the only one that allows the 'SQL' statement type.
If 'SQL' is specified, the value of the field specified by the 'Field
Containing SQL' property is expected to be a valid SQL statement on the target
database, and will be executed as-is.Database Connection Pooling ServiceController Service
API: DBCPServiceImplementations: DBCPConnectionPoolLookupHiveConnectionPoolDBCPConnectionPoolThe Controller Service that is used to obtain a connection to
the database for sending recor
ds.Catalog NameThe
name of the catalog that the statement should update. This may not apply for
the database that you are updating. In this case, leave the field
emptySupports Expression Language: true (will be evaluated using
flow file attributes and variable registry)Schema NameThe name of the schema that the
table belongs to. This may not apply for the database that you are updating. In
this case, leave the field emptySupports Expression Language: true
(will be evaluated using flow file attributes and variable
registry)Table
NameThe name of the table that the
statement should affect.Supports Expression Language: true (will be evaluated using flow file
>attributes and variable registry)id="name">Translate Field Namestrueid="allowable-values">truefalseid="description">If true, the Processor will attempt to translate field names
>into the appropriate column names for the table specified. If false, the
>field names must match the column names exactly, or the column will not be
>updatedUnmatched Field Behaviorid="default-value">Ignore Unmatched Fieldsid="allowable-values">Ignore Unmatched Fields src="../../../../../html/images/iconInfo.png" alt="Any field in the document
>that cannot be mapped to a column in the database is ignored" title="Any
>field in the document that cannot be mapped to a column in the database is
>ignored">Fail on Unmatched Fields src="../../../../../html/images/icon
Info.png" alt="If the document has any field that cannot be mapped to a column
in the database, the
svn commit: r1854109 [21/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-kite-nar/1.9.0/org.apache.nifi.processors.kite.ConvertCSVToAvro/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-kite-nar/1.9.0/org.apache.nifi.processors.kite.ConvertCSVToAvro/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-kite-nar/1.9.0/org.apache.nifi.processors.kite.ConvertCSVToAvro/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-kite-nar/1.9.0/org.apache.nifi.processors.kite.ConvertCSVToAvro/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+ConvertCSVToAvrowindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }ConvertCSVToAvroDescription: Converts CSV files to Avro
according to an Avro SchemaTags: kite, csv,
avroProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default values, and
whether a property supports the NiFi Expression
Language.NameDefault
ValueAllowable ValuesDescription
Hadoop configuration ResourcesA
file or comma separated list of files which contains the Hadoop file system
configuration. Without this, Hadoop will search the classpath for a
'core-site.xml' and 'hdfs-site.xml' file or will revert to a default
configuration.Supports Expression Language: true (will be
evaluated using variable registry only)Record schemaOutgoing Avro schema for each
record created from a CSV rowSupports Expression Language: true
(will be evaluated using flow file attributes and variable
registry)CSV charsetutf8Character set for CSV filesSupports Expression
Language: true (wil
l be evaluated using flow file attributes and variable
registry)CSV delimiter,Delimiter character for CSV recordsSupports
Expression Language: true (will be evaluated using flow file attributes and
variable registry)CSV quote
character"Quote character for CSV valuesSupports Expression
Language: true (will be evaluated using flow file attributes and variable
registry)CSV escape character\Escape character for CSV valuesSupports
Expression Language: true (will be evaluated using flow file attributes and
variable registry)Use CSV header
linefalseWhether to use the first line as a headerSupports
Expression Language: true (will be evaluated using flow file attributes and
variable registry)Lines to skip0Number of lines to skip before reading header or
dataSupports Expression Language: true (will be evaluated using
flow file attributes and variable registry)Compression typeSNAPPYBZIP2DEFLATENONESNAPPYLZOCompression type to use when writting Avro files. Default is
Snappy.Relationships: NameDescriptionsuccessAvro
content that was converted
successfully from CSVfailureCSV content that could
not be processedincompatibleCSV content that could
not be convertedReads Attributes: None
specified.Writes Attributes: None specified.State management:
This component does not store state.Restricted: This component is
not restricted.Input requirement: This component requires an incoming
relationship.System Resource Considerations:None
specified.
\ No newline at end of file
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-kite-nar/1.9.0/org.apache.nifi.processors.kite.ConvertJSONToAvro/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-kite-nar/1.9.0/org.apache.nifi.processors.kite.ConvertJSONToAvro/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-kite-nar/1.9.0/org.apache.nifi.processors.kite.ConvertJSONToAvro/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-kite-nar/1.9.0/org.apache.nifi.processors.kite.ConvertJSONToAvro/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+ConvertJSONToAvrowindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }ConvertJSONToAvroDescription: Converts JSON files to
Avro according to an Avro SchemaTags: kite, json,
avroProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default values, and
whether a property supports the NiFi Expression
Language.NameDefault
ValueAllowable ValuesDescription
Hadoop configuration ResourcesA
file or comma separated list of files which contains the Hadoop file system
configuration. Without this, Hadoop will search the classpath for a
'core-site.xml' and 'hdfs-site.xml' file or will revert to a default
configuration.Supports Expression Language: true (will be
evaluated
svn commit: r1854109 [42/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.TailFile/additionalDetails.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.TailFile/additionalDetails.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.TailFile/additionalDetails.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.TailFile/additionalDetails.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1,129 @@
+
+
+
+
+
+TailFile
+
+
+
+
+
+Modes
+
+This processor is used to tail a file or multiple files according
to multiple modes. The
+mode to choose depends of the logging pattern followed by the
file(s) to tail. In any case, if there
+is a rolling pattern, the rolling files must be plain text files
(compression is not supported at
+the moment).
+
+
+ Single file: the processor will tail the file with
the path given in 'File(s) to tail' property.
+ Multiple files: the processor will look for files
into the 'Base directory'. It will look for file recursively
+ according to the 'Recursive lookup' property and will tail all
the files matching the regular expression
+ provided in the 'File(s) to tail' property.
+
+Rolling filename pattern
+
+ In case the 'Rolling filename pattern' property is used, when
the processor detects that the file to tail has rolled over, the
+ processor will look for possible missing messages in the rolled
file. To do so, the processor will use the pattern to find the
+ rolling files in the same directory as the file to tail.
+
+
+ In order to keep this property available in the 'Multiple
files' mode when multiples files to tail are in the same directory,
+ it is possible to use the ${filename} tag to reference the name
(without extension) of the file to tail. For example, if we have:
+
+
+
+ /my/path/directory/my-app.log.1
+ /my/path/directory/my-app.log
+ /my/path/directory/application.log.1
+ /my/path/directory/application.log
+
+
+
+ the 'rolling filename pattern' would be
${filename}.log.*.
+
+Descriptions for different modes and strategies
+
+ The 'Single file' mode assumes that the file to tail has
always the same name even if there is a rolling pattern.
+ Example:
+
+
+
+ /my/path/directory/my-app.log.2
+ /my/path/directory/my-app.log.1
+ /my/path/directory/my-app.log
+
+
+
+ and new log messages are always appended in my-app.log file.
+
+
+ In case recursivity is set to 'true'. The regular expression
for the files to tail must embrace the possible intermediate directories
+ between the base directory and the files to tail. Example:
+
+
+
+ /my/path/directory1/my-app1.log
+ /my/path/directory2/my-app2.log
+ /my/path/directory3/my-app3.log
+
+
+
+
+ Base directory: /my/path
+ Files to tail: directory[1-3]/my-app[1-3].log
+ Recursivity: true
+
+
+
+ In the 'Multiple files' mode, it is possible to specify
if the file to tail has always the same name or not. It is done through
+ the property 'Rolling strategy'. The strategy can be 'Fixed
name' in case the files to tail have always the same name (see example above)
+ or can be 'Changing name' in case the files to tail do not
always have the same name. Example:
+
+
+
+ /my/path/directory/my-app-2016-09-06.log
+ /my/path/directory/my-app-2016-09-07.log
+ /my/path/directory/my-app-2016-09-08.log
+
+
+
+ and new log messages are always appended in log file of the
current day.
+
+
+ If the processor is configured with
svn commit: r1854109 [44/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-windows-event-log-nar/1.9.0/org.apache.nifi.processors.windows.event.log.ConsumeWindowsEventLog/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-windows-event-log-nar/1.9.0/org.apache.nifi.processors.windows.event.log.ConsumeWindowsEventLog/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-windows-event-log-nar/1.9.0/org.apache.nifi.processors.windows.event.log.ConsumeWindowsEventLog/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-windows-event-log-nar/1.9.0/org.apache.nifi.processors.windows.event.log.ConsumeWindowsEventLog/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+ConsumeWindowsEventLogwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }ConsumeWindowsEventLogDescription: Registers a Windows
Event Log Subscribe Callback to receive FlowFiles from Events on Windows.
These can be filtered via channel and XPath.Additional Details...Tags:
ingest, event, windowsProperties: In the list below,
the names of required properties appear in bold. Any other
properties (not in bold) are considered optional. The table also indicates any
default values, and whether a property supports the NiFi Expression Language.NameDefault ValueAllowable
ValuesDescriptionChannelSystemThe Windows Event Log Channel
to listen to.Supports Expression Language: true (will be evaluated
using variable registry only)XPath
Query*XPath Query to filter events.
(See
https://msdn.microsoft.com/en-us/library/windows/desktop/dd996910(v=vs.85).aspx
for examples.)Supports Expression Language: true (will be
evaluated using variable registry only)Maximum Buffer Size1048576The individual Even
t Log XMLs are rendered to a buffer. This specifies the maximum size in bytes
that the buffer will be allowed to grow to. (Limiting the maximum size of an
individual Event XML.)Maximum queue
size1024Events are received
asynchronously and must be output as FlowFiles when the processor is triggered.
This specifies the maximum number of events to queue for transformation into
FlowFiles.Inactive duration to
reconnect10 minsIf no new event logs are
processed for the specified time period, this processor will try reconnecting
to recover from a state where any further messages cannot be consumed. Such
situation can happen if Windows Event Log service is restarted, or
ERROR_EVT_QUERY_RESULT_STALE (15011) is returned. Setting no durat
ion, e.g. '0 ms' disables auto-reconnection.Supports Expression
Language: true (will be evaluated using variable registry
only)Relationships: NameDescriptionsuccessRelationship
for successfully consumed events.Reads Attributes:
None specified.Writes Attributes: NameDescriptionmime.typeWill
set a MIME type value of application/xml.State
management: This component does not store state.Restricted: This
component is not restricted.Input requirement: This component does not
allow an incoming relationship.System Resource Considerations:None
specified.
\ No newline at end of file
svn commit: r1854109 [47/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added: nifi/site/trunk/docs/nifi-docs/html/toolkit-guide.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/toolkit-guide.html?rev=1854109=auto == --- nifi/site/trunk/docs/nifi-docs/html/toolkit-guide.html (added) +++ nifi/site/trunk/docs/nifi-docs/html/toolkit-guide.html Fri Feb 22 01:03:44 2019 @@ -0,0 +1,2927 @@ + + + + + + + + + +Apache NiFi Toolkit Guide + +/* Asciidoctor default stylesheet | MIT License | http://asciidoctor.org */ +/* Copyright (C) 2012-2015 Dan Allen, Ryan Waldron and the Asciidoctor Project + +Permission is hereby granted, free of charge, to any person obtaining a copy +of this software and associated documentation files (the "Software"), to deal +in the Software without restriction, including without limitation the rights +to use, copy, modify, merge, publish, distribute, sublicense, and/or sell +copies of the Software, and to permit persons to whom the Software is +furnished to do so, subject to the following conditions: + +The above copyright notice and this permission notice shall be included in +all copies or substantial portions of the Software. + +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, +FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE +AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER +LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, +OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN +THE SOFTWARE. */ +/* Remove the comments around the @import statement below when using this as a custom stylesheet */ +@import "https://fonts.googleapis.com/css?family=Open+Sans:300,300italic,400,400italic,600,600italic%7CNoto+Serif:400,400italic,700,700italic%7CDroid+Sans+Mono:400";; +article,aside,details,figcaption,figure,footer,header,hgroup,main,nav,section,summary{display:block} +audio,canvas,video{display:inline-block} +audio:not([controls]){display:none;height:0} +[hidden],template{display:none} +script{display:none!important} +html{font-family:sans-serif;-ms-text-size-adjust:100%;-webkit-text-size-adjust:100%} +body{margin:0} +a{background:transparent} +a:focus{outline:thin dotted} +a:active,a:hover{outline:0} +h1{font-size:2em;margin:.67em 0} +abbr[title]{border-bottom:1px dotted} +b,strong{font-weight:bold} +dfn{font-style:italic} +hr{-moz-box-sizing:content-box;box-sizing:content-box;height:0} +mark{background:#ff0;color:#000} +code,kbd,pre,samp{font-family:monospace;font-size:1em} +pre{white-space:pre-wrap} +q{quotes:"\201C" "\201D" "\2018" "\2019"} +small{font-size:80%} +sub,sup{font-size:75%;line-height:0;position:relative;vertical-align:baseline} +sup{top:-.5em} +sub{bottom:-.25em} +img{border:0} +svg:not(:root){overflow:hidden} +figure{margin:0} +fieldset{border:1px solid silver;margin:0 2px;padding:.35em .625em .75em} +legend{border:0;padding:0} +button,input,select,textarea{font-family:inherit;font-size:100%;margin:0} +button,input{line-height:normal} +button,select{text-transform:none} +button,html input[type="button"],input[type="reset"],input[type="submit"]{-webkit-appearance:button;cursor:pointer} +button[disabled],html input[disabled]{cursor:default} +input[type="checkbox"],input[type="radio"]{box-sizing:border-box;padding:0} +input[type="search"]{-webkit-appearance:textfield;-moz-box-sizing:content-box;-webkit-box-sizing:content-box;box-sizing:content-box} +input[type="search"]::-webkit-search-cancel-button,input[type="search"]::-webkit-search-decoration{-webkit-appearance:none} +button::-moz-focus-inner,input::-moz-focus-inner{border:0;padding:0} +textarea{overflow:auto;vertical-align:top} +table{border-collapse:collapse;border-spacing:0} +*,*:before,*:after{-moz-box-sizing:border-box;-webkit-box-sizing:border-box;box-sizing:border-box} +html,body{font-size:100%} +body{background:#fff;color:rgba(0,0,0,.8);padding:0;margin:0;font-family:"Noto Serif","DejaVu Serif",serif;font-weight:400;font-style:normal;line-height:1;position:relative;cursor:auto} +a:hover{cursor:pointer} +img,object,embed{max-width:100%;height:auto} +object,embed{height:100%} +img{-ms-interpolation-mode:bicubic} +#map_canvas img,#map_canvas embed,#map_canvas object,.map_canvas img,.map_canvas embed,.map_canvas object{max-width:none!important} +.left{float:left!important} +.right{float:right!important} +.text-left{text-align:left!important} +.text-right{text-align:right!important} +.text-center{text-align:center!important} +.text-justify{text-align:justify!important} +.hide{display:none}
svn commit: r1854109 [32/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.DetectDuplicate/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.DetectDuplicate/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.DetectDuplicate/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.DetectDuplicate/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+DetectDuplicatewindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }DetectDuplicateDescription: Caches a value, computed
from FlowFile attributes, for each incoming FlowFile and determines if the
cached value has already been seen. If so, routes the FlowFile to 'duplicate'
with an attribute named 'original.identifier' that specifies the original
FlowFile's "description", which is specified in the FlowFile
Description property. If the FlowFile is not determined to be a duplicate,
the Processor routes the FlowFile to 'non-duplicate'Tags: hash,
dupe, duplicate, dedupeProperties: In the list below, the names
o
f required properties appear in bold. Any other properties
(not in bold) are considered optional. The table also indicates any default
values, and whether a property supports the NiFi Expression
Language.NameDefault
ValueAllowable ValuesDescriptionCache Entry Identifier${hash.value}A FlowFile attribute, or the results of an Attribute
Expression Language statement, which will be evaluated against a FlowFile in
order to determine the value used to identify duplicates; it is this value that
is cachedSupports Expression Language: true (will be evaluated
using flow file attributes and variable registry)FlowFile DescriptionWhen a FlowFile is added
to the cache, this value is stored along with it so that if a duplicate is
found, this description of the original FlowFile will be added to the
duplicate's "original.flowfile.description" attributeSupports
Expression Language: true (will be evaluated using flow file attributes and
variable registry)Age Off DurationTime interval to age off cached FlowFilesDistributed Cache ServiceController Service
API: DistributedMapCacheClientImplementations:
DistributedMapCacheClientServicehref="../../../nifi-redis-nar/1.9.0/org.apache.nifi.redis.service.RedisDistributedMapCacheClientService/index.html">RedisDistributedMapCacheClientService
>href="../../../nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/index.html">CouchbaseMapCacheClient
>href="../../../nifi-hbase_2-client-service-nar/1.9.0/org.apache.nifi.hbase.HBase_2_ClientMapCacheService/index.html">HBase_2_ClientMapCacheService
>href="../../../nifi-hbase_1_1_2-client-service-nar/1.9.0/org.apache.nifi.hbase.HBase_1_1_2_ClientMapCacheService/index.html">HBase_1_1_2_ClientMapCacheService id="description">The Controller Service that is used to cache unique
>identifiers, used to determine duplicatesCache
>The Entry Identifiertrueid="allowable-values">truefalseid="description">When true this cause the processor to check for duplicates
>and cache the
Entry Identifier. When false, the processor would only check for duplicates
and not cache the Entry Identifier, requiring another processor to add
identifiers to the distributed cache.Relationships:
NameDescriptionduplicateIf
a FlowFile has been detected to be a duplicate, it will be routed to this
relationshipnon-duplicateIf a FlowFile's Cache Entry
Identifier was not found in the cache, it will be routed to this
relationshipfailureIf unable to communicate with the
cache, the FlowFile will be penalized and routed to this
relationshipReads Attributes: None
specified.Writes Attributes: NameDescriptionoriginal.flowfile.descriptionAll
FlowFiles routed to the duplicate relationship will have an attribute added
named original.flowf
ile.description. The value of this attribute is determined by the attributes
of the original copy of the data and by the FlowFile Description
property.State management: This component does not
store state.Restricted: This component is not restricted.Input
requirement: This component requires an incoming relationship.System
Resource Considerations:None specified.See Also:DistributedMapCacheClientService,
DistributedMapCacheServer
\ No newline at end of file
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.DistributeLoad/index.html
URL:
svn commit: r1854109 [38/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added: nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.MergeRecord/additionalDetails.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.MergeRecord/additionalDetails.html?rev=1854109=auto == --- nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.MergeRecord/additionalDetails.html (added) +++ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.MergeRecord/additionalDetails.html Fri Feb 22 01:03:44 2019 @@ -0,0 +1,229 @@ + + + + + +MergeRecord + + + + + + +Introduction + + The MergeRecord Processor allows the user to take many FlowFiles that consist of record-oriented data (any data format for which there is + a Record Reader available) and combine the FlowFiles into one larger FlowFile. This may be preferable before pushing the data to a downstream + system that prefers larger batches of data, such as HDFS, or in order to improve performance of a NiFi flow by reducing the number of FlowFiles + that flow through the system (thereby reducing the contention placed on the FlowFile Repository, Provenance Repository, Content Repository, and + FlowFile Queues). + + + + The Processor creates several 'bins' to put the FlowFiles in. The maximum number of bins to use is set to 5 by default, but this can be changed + by updating the value of the Maximum number of Bins property. The number of bins is bound in order to avoid running out of Java heap space. + Note: while the contents of a FlowFile are stored in the Content Repository and not in the Java heap space, the Processor must hold the FlowFile + objects themselves in memory. As a result, these FlowFiles with their attributes can potentially take up a great deal of heap space and cause + OutOfMemoryError's to be thrown. In order to avoid this, if you expect to merge many small FlowFiles together, it is advisable to instead use a + MergeContent that merges no more than say 1,000 FlowFiles into a bundle and then use a second MergeContent to merges these small bundles into + larger bundles. For example, to merge 1,000,000 FlowFiles together, use MergeRecord that uses a Maximum Number of Records of 1,000 and route the + "merged" Relationship to a second MergeRecord that also sets the Maximum Number of Records to 1,000. The second MergeRecord will then merge 1,000 bundles + of 1,000, which in effect produces bundles of 1,000,000. + + + + + How FlowFiles are Binned + + How the Processor determines which bin to place a FlowFile in depends on a few different configuration options. Firstly, the Merge Strategy + is considered. The Merge Strategy can be set to one of two options: Bin Packing Algorithm, or Defragment. When the goal is to simply combine + smaller FlowFiles into one larger FlowFiles, the Bin Packing Algorithm should be used. This algorithm picks a bin based on whether or not the FlowFile + can fit in the bin according to its size and the Maximum Bin Size property and whether or not the FlowFile is 'like' the other FlowFiles in + the bin. What it means for two FlowFiles to be 'like FlowFiles' is discussed at the end of this section. + + + + The "Defragment" Merge Strategy can be used when records need to be explicitly assigned to the same bin. For example, if data is split apart using + the SplitRecord Processor, each 'split' can be processed independently and later merged back together using this Processor with the + Merge Strategy set to Defragment. In order for FlowFiles to be added to the same bin when using this configuration, the FlowFiles must have the same + value for the "fragment.identifier" attribute. Each FlowFile with the same identifier must also have the same value for the "fragment.count" attribute + (which indicates how many FlowFiles belong in the bin) and a unique value for the "fragment.index" attribute so that the FlowFiles can be ordered + correctly. + + + + In order to be added to the same bin, two FlowFiles must be 'like FlowFiles.' In order for two FlowFiles to be like FlowFiles, they must have the same + schema, and if the Correlation Attribute Name property is set, they must have the same value for the specified attribute. For example, if the + Correlation Attribute Name is set
svn commit: r1854109 [46/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Modified: nifi/site/trunk/docs/nifi-docs/html/developer-guide.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/developer-guide.html?rev=1854109=1854108=1854109=diff
==
--- nifi/site/trunk/docs/nifi-docs/html/developer-guide.html (original)
+++ nifi/site/trunk/docs/nifi-docs/html/developer-guide.html Fri Feb 22
01:03:44 2019
@@ -798,7 +798,7 @@ attribute within the CoreAttribute
Filename ("filename"): The filename of the FlowFile. The filename should
not contain any directory structure.
-UUID ("uuid"): A unique universally unique identifier (UUID) assigned to
this FlowFile.
+UUID ("uuid"): A Universally Unique Identifier assigned to this FlowFile
that distinguishes the FlowFile from other FlowFiles in the system.
Path ("path"): The FlowFiles path indicates the relative directory
to which a FlowFile belongs and does not contain the filename.
@@ -3626,7 +3626,7 @@ logged to help avoid this bad practice.<
Sometimes it may be desirable to deprecate a component. Whenever this
occurs the developer may use the
- @DeprecationNotice annotation to indicate that a component has been
deprecated, aloowing the developer
+ @DeprecationNotice annotation to indicate that a component has been
deprecated, allowing the developer
to describe a reason for the deprecation and suggest alternative components.
An example of how to do this can
be found below:
@@ -3703,7 +3703,7 @@ worry about bothering us. Just ping the
-Last updated 2018-10-23 13:35:55 -04:00
+Last updated 2019-02-19 19:16:21 -08:00
Modified: nifi/site/trunk/docs/nifi-docs/html/expression-language-guide.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/expression-language-guide.html?rev=1854109=1854108=1854109=diff
==
--- nifi/site/trunk/docs/nifi-docs/html/expression-language-guide.html
(original)
+++ nifi/site/trunk/docs/nifi-docs/html/expression-language-guide.html Fri Feb
22 01:03:44 2019
@@ -572,6 +572,7 @@ body.book #toc,body.book #preamble,body.
nextInt
literal
getStateValue
+thread
Evaluating Multiple
Attributes
@@ -3606,6 +3607,25 @@ names begin with the letter aExamples: UpdateAttribute processor has stored the key
"count" with value "20" in state. '${getStateValue("count")}` returns
20.
+
+thread
+
+Description: Returns the name of
the thread used by the processor when evaluating the Expression. This can be
useful
+ when using a processor with multiple concurrent tasks and where some data
uniqueness is required.
+
+
+Subject Type: No
Subject
+
+
+Arguments: No arguments
+
+
+Return Type: String
+
+
+Examples: ${thread()} could return something
like Timer-Driven Process Thread-4.
+
+
@@ -4042,7 +4062,7 @@ an embedded Expression, though it does n
-Last updated 2018-10-23 13:35:55 -04:00
+Last updated 2019-02-19 19:16:22 -08:00
Modified: nifi/site/trunk/docs/nifi-docs/html/getting-started.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/getting-started.html?rev=1854109=1854108=1854109=diff
==
--- nifi/site/trunk/docs/nifi-docs/html/getting-started.html (original)
+++ nifi/site/trunk/docs/nifi-docs/html/getting-started.html Fri Feb 22
01:03:44 2019
@@ -1623,7 +1623,7 @@ work back to the Apache NiFi community s
-Last updated 2018-10-23 13:35:55 -04:00
+Last updated 2019-02-19 19:16:22 -08:00
Modified: nifi/site/trunk/docs/nifi-docs/html/images/iconDetails.png
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/images/iconDetails.png?rev=1854109=1854108=1854109=diff
==
Binary files - no diff available.
Added: nifi/site/trunk/docs/nifi-docs/html/images/iconDownloadTemplate.png
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/images/iconDownloadTemplate.png?rev=1854109=auto
==
Binary file - no diff available.
Propchange: nifi/site/trunk/docs/nifi-docs/html/images/iconDownloadTemplate.png
--
svn:mime-type = application/octet-stream
Modified: nifi/site/trunk/docs/nifi-docs/html/nifi-in-depth.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/nifi-in-depth.html?rev=1854109=1854108=1854109=diff
==
--- nifi/site/trunk/docs/nifi-docs/html/nifi-in-depth.html (original)
+++ nifi/site/trunk/docs/nifi-docs/html/nifi-in-depth.html Fri Feb 22 01:03:44
2019
@@ -896,7 +896,7 @@ This section relies heavily on informati
-Last updated 2018-10-23 13:35:55 -04:00
+Last updated 2019-02-19 19:16:21 -08:00
svn commit: r1854109 [50/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Modified: nifi/site/trunk/docs/nifi-docs/rest-api/index.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/rest-api/index.html?rev=1854109=1854108=1854109=diff == --- nifi/site/trunk/docs/nifi-docs/rest-api/index.html (original) +++ nifi/site/trunk/docs/nifi-docs/rest-api/index.html Fri Feb 22 01:03:44 2019 @@ -15,7 +15,7 @@ --> -NiFi Rest Api-1.8.0 +NiFi Rest Api-1.9.0 @@ -471,7 +471,7 @@ /nifi-api -NiFi Rest Api 1.8.0 +NiFi Rest Api 1.9.0 @@ -42204,6 +42204,22 @@ +penaltyExpiresIn + + + + +integer (int64) + + + +optional +How long in milliseconds until the FlowFile penalty expires. + + + + + clusterNodeId @@ -42373,6 +42389,7 @@ "size": 0, "queuedDuration": 0, "lineageDuration": 0, +"penaltyExpiresIn": 0, "clusterNodeId": "value", "clusterNodeAddress": "value", "attributes": @@ -42554,6 +42571,22 @@ +penaltyExpiresIn + + + + +integer (int64) + + + +optional +How long in milliseconds until the FlowFile penalty expires. + + + + + clusterNodeId @@ -42611,6 +42644,7 @@ "size": 0, "queuedDuration": 0, "lineageDuration": 0, +"penaltyExpiresIn": 0, "clusterNodeId": "value", "clusterNodeAddress": "value", "penalized": true, @@ -44194,12 +44228,12 @@ -params +rels -object +array[string] @@ -44210,7 +44244,7 @@ -title +rel @@ -44226,12 +44260,12 @@ -rels +uri -array[string] +string (uri) @@ -44242,12 +44276,12 @@ -rel +params -string +object @@ -44258,12 +44292,12 @@ -uriBuilder +title -UriBuilder +string @@ -44274,12 +44308,12 @@ -uri +uriBuilder +UriBuilder -string (uri) @@ -44293,14 +44327,14 @@ Example JSON "type": "value", +"rels": ["value"], +"rel": "value", +"uri": "value", "params": "name": "value" , "title": "value", -"rels": ["value"], -"rel": "value", "uriBuilder": UriBuilder, -"uri": "value", Close
svn commit: r1854109 [35/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.GetSFTP/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.GetSFTP/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.GetSFTP/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.GetSFTP/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+GetSFTPwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }GetSFTPDescription: Fetches files from an SFTP Server
and creates FlowFiles from themTags: sftp, get, retrieve,
files, fetch, remote, ingest, source, inputProperties: In the
list below, the names of required properties appear in bold.
Any other properties (not in bold) are considered optional. The table also
indicates any default values, whether a property supports the NiFi Expression
Language, and whether a property is considered "sensitive", meaning that
its value will be
encrypted. Before entering a value in a sensitive property, ensure that the
nifi.properties file has an entry for the property
nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionHostnameThe fully qualified hostname or
IP address of the remote systemSupports Expression Language: true
(will be evaluated using variable registry only)Port22The port that the remote system
is listening on for file transfersSupports Expression Language:
true (will be evaluated using variable registry only)UsernameUsernameSupports
Expression Language: true (will be evaluated using variable registry
only)PasswordPassword for the user accountSensitive Property:
trueSupports Expression Language: true (will be evaluated
using variable registry only)Private Key
PathThe fully qualified path to the Private Key
fileSupports Expression Language: true (will be evaluated using
variable registry only)Private Key
PassphrasePassword for the private keySensitive Property:
trueSupports Expression Language: tru
e (will be evaluated using variable registry only)Remote PathThe path on the remote system
from which to pull or push filesSupports Expression Language: true
(will be evaluated using variable registry only)File Filter RegexProvides a Java Regular
Expression for filtering Filenames; if a filter is supplied, only files whose
names match that Regular Expression will be fetchedPath Filter RegexWhen Search Recursively is
true, then only subdirectories whose path matches the given Regular Expression
will be scannedPolling
Interval60 secDetermines how long to wait between
fetching the listing for new filesSearch
RecursivelyfalsetruefalseIf true, will pull files from arbitrarily nested
subdirectories; otherwise, will not traverse subdirectoriesFollow symlinkfalsetruefalseIf true, will pull even symbolic files and also nested
symbolic subdirectories; otherwise, will not read symbolic files and will not
traverse symbolic link subdirectoriesIgnore
Dotted FilestruetruefalseIf true, files whose names begin with a dot (".
") will be ignoredDelete
OriginaltruetruefalseDetermines whether or not the file is deleted from the remote
system after it has been successfully transferredConnection Timeout30
secAmount of time to
wait before timing out while creating a connectionData Timeout30
secWhen transferring a
file between the local and remote system, this value specifies how long is
allowed to elapse without any data being transferred between
systemsHost Key FileIf
supplied, the given f
ile will be used as the Host Key; otherwise, no use host key file will be
usedMax Selects100The maximum number of files to pull in a single
connectionRemote Poll Batch
Size5000The value specifies how many
file paths to find in a given directory on the remote system when doing a file
listing. This value in general should not need to be modified but when polling
against a remote system with a tremendous number of files this value can be
critical. Setting this value too high can result very poor performance and
setting it too low can cause the flow to be slower than
normal.Strict Host Key
Checkingfalsetruefalse
Indicates whether or not strict
enforcement of hosts keys should be appliedSend Keep Alive On TimeouttruetruefalseIndicates whether or not to send a single Keep Alive message
when SSH socket times outUse
CompressionfalsetruefalseIndicates whether or not ZLIB compression should be used when
transferring filesUse Natural
OrderingfalsetruefalseIf true, will pull files in the order in which they are
naturally listed; otherwise, the order in which the files will be pulled
svn commit: r1854109 [23/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-mongodb-nar/1.9.0/org.apache.nifi.processors.mongodb.RunMongoAggregation/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-mongodb-nar/1.9.0/org.apache.nifi.processors.mongodb.RunMongoAggregation/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-mongodb-nar/1.9.0/org.apache.nifi.processors.mongodb.RunMongoAggregation/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-mongodb-nar/1.9.0/org.apache.nifi.processors.mongodb.RunMongoAggregation/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+RunMongoAggregationwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }RunMongoAggregationDescription: A processor that runs
an aggregation query whenever a flowfile is received.Additional Details...Tags:
mongo, aggregation, aggregateProperties: In the list
below, the names of required properties appear in bold. Any
other properties (not in bold) are considered optional. The table also
indicates any default values, and whether a property supports the NiFi Expression
Language.NameDefault ValueAllowable
ValuesDescriptionClient ServiceController Service
API: MongoDBClientServiceImplementation: MongoDBControllerServiceIf configured, this property will use the assigned client
service for connection pooling.Mongo URIMongoURI, typically of the form:
mongodb://host1[:port1][,host2[:port2],...]Supports Expression
Language: true (will be evaluated using variable registry
only)Mongo Database
NameThe name of the database to useSupports Expression
Language: true (will be evaluated using flow file attributes and variable
registry)Mongo Collection
NameThe name of the collection to
useSupports Expression Language: true (will be evaluated using
flow file attributes and variable registry)SSL Context ServiceController Service API:
SSLContextServiceImplementations: StandardRestrictedSSLContextServiceStandardSSLContextServiceThe SSL Context Service used to provide client certificate
information for TLS/SSL connections.Client
AuthREQUIREDWANTREQUIREDNONEClient authentication policy when connecting to secure
(TLS/SSL) cluster. Possible values are REQUIRED, WANT, NONE. This property is
only used when an SSL Context has been defined and enabled.Character SetUTF-8Specifies the character set of the document
data.Supports Expression Language: true (will be evaluated using
flow file attributes and variable registry)QueryThe aggregation query to be
executed.Suppor
ts Expression Language: true (will be evaluated using flow file attributes and
variable registry)JSON
TypeExtendedExtended JSON Standard JSON By default, MongoDB's Java driver returns "extended JSON".
Some of the features of th
is variant of JSON may cause problems for other JSON parsers that expect only
standard JSON types and conventions. This configuration setting controls
whether to use extended JSON or provide a clean view that conforms to standard
JSON.Query Output AttributeIf
set, the query will be written to a specified attribute on the output
flowfiles.Supports Expression Language: true (will be evaluated
using flow file attributes and variable registry)Batch Size100The number of elements returned
from the server in one batch.Results Per
FlowFile1How many results to put into a flowfile at once. The whole
body will be treated as a JSON array o
f results.Date Format-MM-dd'T'HH:mm:ss'Z'The date format string to use
for formatting Date fields that are returned from Mongo. It is only applied
when the JSON output format is set to Standard JSON. Full documentation for
format characters can be found here:
https://docs.oracle.com/javase/8/docs/api/java/text/SimpleDateFormat.htmlSupports
Expression Language: true (will be evaluated using flow file attributes and
variable registry)SSL Context
ServiceController Service API:
SSLContextServiceImplementations: StandardRestrictedSSLContextServiceStandardSSLContextServiceThe SSL Context Service used to provide client certificate
information for TLS/SSL connections.Client
AuthREQUIREDWANTREQUIREDNONEClient authentication policy when connecting to secure
(TLS/SSL) cluster. Possible values are REQUIRED, WANT, NONE. This property is
only used when an SSL Context has been defined and
enabled.Relationships: NameDescriptionresultsThe
result set of the aggregation will be sent to this
relationship.failureThe input flowfile gets sent to
this relationship when the query fails.originalThe
input flowfile gets sent to this relationship when the query su
cceeds.Reads Attributes: None specified.Writes
Attributes: None specified.State management: This component does
not store state.Restricted: This component is not restricted.Input
requirement: This
svn commit: r1854109 [3/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.GetDynamoDB/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.GetDynamoDB/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.GetDynamoDB/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.GetDynamoDB/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+GetDynamoDBwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }GetDynamoDBDescription: Retrieves a document from
DynamoDB based on hash and range key. The key can be string or number.For any
get request all the primary keys are required (hash or hash and range based on
the table keys).A Json Document ('Map') attribute of the DynamoDB item is read
into the content of the FlowFile.Tags: Amazon, DynamoDB, AWS,
Get, FetchProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default valu
es, whether a property supports the NiFi Expression
Language, and whether a property is considered "sensitive", meaning that
its value will be encrypted. Before entering a value in a sensitive property,
ensure that the nifi.properties file has an entry for the
property nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionTable
NameThe DynamoDB table
nameSupports Expression Language: true (will be evaluated using
variable registry only)Hash Key
NameThe hash key name of the
itemSupports Expression Language: true (will be
evaluated using variable registry only)Range Key NameThe range key name of the
itemSupports Expression Language: true (will be evaluated using
variable registry only)Hash Key
Value${dynamodb.item.hash.key.value}The hash key value of the
itemSupports Expression Language: true (will be evaluated using
flow file attributes and variable registry)Range Key Value${dynamodb.item.range.key.value}No Description
Provided.Supports Expression Language: true (will be evaluated
using flow file attributes and variable registry)Hash Key Val
ue TypestringstringnumberThe hash key value type of the itemRange Key Value TypestringstringnumberThe range key value type of the itemJson Document attributeThe
Json document to be retrieved from the dynamodb itemSupports
Expression Language: true (will be evaluated using variable registry
only)Batch items for each request (between
1 and 50)1The items to be retrieved in one batchSupports
Expression Language: true (will be evaluated using
variable registry only)Regionus-west-2AWS GovCloud (US) AWS
GovCloud (US-East) US East (N. Virginia) US East (Ohio) US West (N. California) US West (Oregon) EU (Ireland) EU (London) EU (Paris) EU (Frankfurt) Asia
Pacific (Mumbai) Asia Pacific (Singapore) Asia Pacific (Sydney) Asia
Pacific (Tokyo) Asia Pacific (Seoul) South
America (Sao Paulo) China (Beijing) China (Ningxia)
Canada (Central) No Description Provided.Access Key
IDNo Description Provided.Sensitive Property:
trueSupports Expression Language: true (will be evaluated
using variable registry only)Secret Access
KeyNo Description Provided.Sensitive Property:
trueSupports Expression Language: true (will be evaluated
using variable registry only)Credentials
FilePath to a file conta
ining AWS access key and secret key in properties file
format.AWS Credentials Provider serviceController Service
API: AWSCredentialsProviderServiceImplementation:
AWSCredentialsProviderControllerServiceThe Controller Service that is used to obtain aws credentials
providerCommunications
Timeout30 secsNo Description
Provided.SSL Context ServiceController Service
API: SSLContextServiceImplementations: StandardRestrictedSSLContextServiceStandardSSLContextServiceSpecifies an optional SSL Context Service that, if provided,
will be used to create connectionsProxy
Configuration ServiceController Service API:
ProxyConfigurationServiceImplementation: StandardProxyConfigurationServiceSpecifies the Proxy Configuration Controller Service to proxy
network requests. If set, it supersedes proxy settings configured per
component. Supported proxies: HTTP + AuthNProxy
Host<
/td>Proxy host name or IPSupports Expression
Language: true (will be evaluated using variable registry
only)Proxy Host PortProxy host portSupports Expression Language: true
(will be evaluated using variable registry only)Proxy UsernameProxy
usernameSupports Expression Language: true (undefined
scope)Proxy PasswordProxy passwordSensitive Property:
trueSupports Expression
svn commit: r1854109 [4/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.s3.ListS3/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.s3.ListS3/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.s3.ListS3/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.s3.ListS3/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+ListS3window.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }ListS3Description: Retrieves a listing of objects from
an S3 bucket. For each object that is listed, creates a FlowFile that
represents the object so that it can be fetched in conjunction with
FetchS3Object. This Processor is designed to run on Primary Node only in a
cluster. If the primary node changes, the new Primary Node will pick up where
the previous node left off without duplicating all of the data.Tags:
Amazon, S3, AWS, listProperties: In the list below, the
names of required properties appear in bold. Any other
properties (not in
bold) are considered optional. The table also indicates any default values,
whether a property supports the NiFi Expression
Language, and whether a property is considered "sensitive", meaning that
its value will be encrypted. Before entering a value in a sensitive property,
ensure that the nifi.properties file has an entry for the
property nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionBucketNo Description
Provided.Supports Expression Language: true (will be evaluated
using variable registry only)Regionus-west-2AWS GovCloud (US) AWS GovCloud (US-East)
US East
(N. Virginia) US
East (Ohio) US West
(N. California) US
West (Oregon) EU
(Ireland) EU
(London) EU (Paris)
EU (Frankfurt)
Asia
Pacific (Mumbai) Asia Pacific (Singapore) Asia
Pacific (Sydney) Asia Pacific (Tokyo) Asia
Pacific (Seoul) South America (Sao Paulo) China (Beijing) China (Ningxia)
Canada
(Central) <
/td>No Description Provided.Access Key IDNo Description
Provided.Sensitive Property: trueSupports
Expression Language: true (will be evaluated using variable registry
only)Secret Access KeyNo
Description Provided.Sensitive Property:
trueSupports Expression Language: true (will be evaluated
using variable registry only)Write
Object TagsfalseTrueFalseIf set to 'True', the tags associated with the S3 object will
be written as FlowFile attributesCredentials
FilePath to
a file containing AWS access key and secret key in properties file
format.AWS Credentials Provider serviceController Service
API: AWSCredentialsProviderServiceImplementation:
AWSCredentialsProviderControllerServiceThe Controller Service that is used to obtain aws credentials
providerCommunications
Timeout30 secsNo Description
Provided.SSL Context ServiceController Service
API: SSLContextServi
ceImplementations: StandardRestrictedSSLContextServiceStandardSSLContextServiceSpecifies an optional SSL Context Service that, if provided,
will be used to create connectionsEndpoint Override
URLEndpoint URL to use instead of the AWS default including
scheme, host, port, and path. The AWS libraries select an endpoint URL based on
the AWS region, but this property overrides the selected endpoint URL, allowing
use with other S3-compatible endpoints.Supports Expression
Language: true (will be evaluated using variable registry
only)Signer
OverrideDefault SignatureDefault SignatureSignature
v4Signature v2The AWS libraries
use the default signer but this property allows you to specify a custom signer
to support older S3-compatible services.Proxy
Configuration ServiceController Service API:
ProxyConfigurationServiceImplementation: StandardProxyConfigurationServiceSpecifies the Proxy Configuration Controller Service to proxy
network requests. If set, it supersedes proxy settings configured per
component. Supported proxies: HTTP + AuthNProxy
HostProxy host name or IPSupports
Expression Language: true (will be evaluated using variable registry
only)Proxy Host PortProxy host portSupports Expression Language: true
(will be evaluated using variable registry only)Proxy UsernameProxy
usernameSupports Expression Language: true (undefined
scope)Proxy PasswordProxy passwordSensitive Property:
trueSupports Expression Language: true (undefined
scope)DelimiterThe string used to delimit directories within the bucket. Please consult
the AWS documentation for the correct use of this field.PrefixThe prefix used to filter the
object list. In most cases, it should end with a forward slash
('/').Supports Expression Language: true (will be evaluated using
variable registry
svn commit: r1854109 [1/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari
Author: alopresto Date: Fri Feb 22 01:03:44 2019 New Revision: 1854109 URL: http://svn.apache.org/viewvc?rev=1854109=rev Log: Added 1.9.0 docs to NiFi site. Added: nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/additionalDetails.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-amqp-nar/1.9.0/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-amqp-nar/1.9.0/org.apache.nifi.amqp.processors.ConsumeAMQP/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-amqp-nar/1.9.0/org.apache.nifi.amqp.processors.ConsumeAMQP/additionalDetails.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-amqp-nar/1.9.0/org.apache.nifi.amqp.processors.ConsumeAMQP/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-amqp-nar/1.9.0/org.apache.nifi.amqp.processors.PublishAMQP/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-amqp-nar/1.9.0/org.apache.nifi.amqp.processors.PublishAMQP/additionalDetails.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-amqp-nar/1.9.0/org.apache.nifi.amqp.processors.PublishAMQP/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-avro-nar/1.9.0/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-avro-nar/1.9.0/org.apache.nifi.processors.avro.ConvertAvroToJSON/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-avro-nar/1.9.0/org.apache.nifi.processors.avro.ConvertAvroToJSON/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-avro-nar/1.9.0/org.apache.nifi.processors.avro.ExtractAvroMetadata/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-avro-nar/1.9.0/org.apache.nifi.processors.avro.ExtractAvroMetadata/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-avro-nar/1.9.0/org.apache.nifi.processors.avro.SplitAvro/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-avro-nar/1.9.0/org.apache.nifi.processors.avro.SplitAvro/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.cloudwatch.PutCloudWatchMetric/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.cloudwatch.PutCloudWatchMetric/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.credentials.provider.service.AWSCredentialsProviderControllerService/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.credentials.provider.service.AWSCredentialsProviderControllerService/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.DeleteDynamoDB/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.DeleteDynamoDB/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.GetDynamoDB/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.GetDynamoDB/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.PutDynamoDB/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.dynamodb.PutDynamoDB/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.kinesis.firehose.PutKinesisFirehose/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.kinesis.firehose.PutKinesisFirehose/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.kinesis.stream.PutKinesisStream/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.kinesis.stream.PutKinesisStream/index.html nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0/org.apache.nifi.processors.aws.lambda.PutLambda/ nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-aws-nar/1.9.0
svn commit: r1854109 [7/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/additionalDetails.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/additionalDetails.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/additionalDetails.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/additionalDetails.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1,41 @@
+
+
+
+
+
+CouchbaseMapCacheClient
+
+
+
+
+CouchbaseMapCacheClient
+
+Requirements
+
+Couchbase Server 4.0 or higher is required for some operation using
N1QL
+
+Following cache operations require N1QL query, thus you need to deploy
Couchbase Server 4.0 or higher for those operations. However, as of this
writing (May 2017) there are only few processors using these operations. Most
cache APIs are implemented using document id lookup and should work with older
version of Couchbase Server.
+
+
+removeByPattern(String regex): This cache API removes entries by
regex. Execute query like:
+delete from `cache-bucket-name` where REGEX_CONTAINS(meta().id,
"^key.*")
+
+
+
+In order to make N1QL work correctly you need to create a https://developer.couchbase.com/documentation/server/current/n1ql/n1ql-language-reference/createprimaryindex.html;>Primary
index or an index covering N1QL queries performed by
CouchbaseMapCacheClient. Please refer Couchbase Server documentations for how
to create those.
+
+
+
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseMapCacheClient/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+CouchbaseMapCacheClientwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }CouchbaseMapCacheClientDescription: Provides the
ability to communicate with a Couchbase Server cluster as a
DistributedMapCacheServer. This can be used in order to share a Map between
nodes in a NiFi cluster. Couchbase Server cluster can provide a high available
and persistent cache storage.Additional
Details...Tags: distributed, cache, map, cluster,
couchbaseProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are co
nsidered optional. The table also indicates any default values, and whether a
property supports the NiFi Expression
Language.NameDefault
ValueAllowable ValuesDescriptionCouchbase Cluster Controller ServiceController Service
API:
CouchbaseClusterControllerServiceImplementation:
CouchbaseClusterServiceA Couchbase Cluster Controller Service which manages
connections to a Couchbase cluster.Bucket
NamedefaultThe name of bucket to
access.Supports Expression Language: true (wil
l be evaluated using variable registry
only)State management: This component does
not store state.Restricted: This component is not
restricted.System Resource Considerations:None specified.
\ No newline at end of file
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseRecordLookupService/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseRecordLookupService/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseRecordLookupService/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-couchbase-nar/1.9.0/org.apache.nifi.couchbase.CouchbaseRecordLookupService/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+CouchbaseRecordLookupServicewindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }CouchbaseRecordLookupServiceDescription: Lookup a
record from Couchbase
svn commit: r1854109 [22/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-lumberjack-nar/1.9.0/org.apache.nifi.processors.lumberjack.ListenLumberjack/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-lumberjack-nar/1.9.0/org.apache.nifi.processors.lumberjack.ListenLumberjack/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-lumberjack-nar/1.9.0/org.apache.nifi.processors.lumberjack.ListenLumberjack/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-lumberjack-nar/1.9.0/org.apache.nifi.processors.lumberjack.ListenLumberjack/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+ListenLumberjackwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }ListenLumberjackDescription: This processor is
deprecated and may be removed in the near future. Listens for Lumberjack
messages being sent to a given port over TCP. Each message will be acknowledged
after successfully writing the message to a FlowFile. Each FlowFile will
contain data portion of one or more Lumberjack frames. In the case where the
Lumberjack frames contain syslog messages, the output of this processor can be
sent to a ParseSyslog processor for further processing. Tags:
listen, lumberjack, tcp, logsProperties: In the list
below, t
he names of required properties appear in bold. Any other
properties (not in bold) are considered optional. The table also indicates any
default values, and whether a property supports the NiFi Expression
Language.NameDefault
ValueAllowable ValuesDescriptionLocal Network InterfaceThe name of a local network
interface to be used to restrict listening to a specific
LAN.Supports Expression Language: true (will be evaluated using
variable registry only)PortThe port to listen on for
communication.Supports Expression Language: true (will be
evaluated using variable registry
only)Receive Buffer
Size65507 BThe size of each buffer used to
receive messages. Adjust this value appropriately based on the expected size of
the incoming messages.Max Size of Message
Queue1The maximum size of the
internal queue used to buffer messages being transferred from the underlying
channel to the processor. Setting this value higher allows more messages to be
buffered in memory during surges of incoming messages, but increases the total
memory used by the processor.Max Size of
Socket Buffer1 MBThe maximum size of the socket
buffer that should be used. This is a suggestion to the
Operating System to indicate how big the socket buffer should be. If this
value is set too low, the buffer may fill up before the data can be read, and
incoming data will be dropped.Character
SetUTF-8Specifies the character set of
the received data.Max Batch
Size1The maximum number of messages
to add to a single FlowFile. If multiple messages are available, they will be
concatenated along with the Message Delimiter up to this configured
maximum number of messagesBatching Message
Delimiter\nSpecifies the delimiter to
place between messages when multiple messages are bundled together (see
Max Batch Size property).Max Number of
TCP Connections2The maximum number of
concurrent TCP connections to accept.SSL
Context ServiceController Service API:
RestrictedSSLContextServiceImplementation:
StandardRestrictedSSLContextServiceThe Controller Service to use in order to obtain an SSL
Context. If this property is set, messages will be received over a secure
connection. Note that as Lumberjack client requirestwo-way SSL authentication,
the controller MUST have a truststore and a keystore to
workproperly.Relationships: NameDescriptionsuccessMessages
received successfully will be sent out this
relationship.Reads Attributes: None
specified.Writes Attributes: NameDescriptionlumberjack.senderThe
sending host of the messages.lumberjack.portThe
sending port the messages were received
over.lumberjack.sequencenumberThe sequence number of
the message. Only included if Batch Size is
1.lumberjack.*The keys and respective values as sent
by the lumberjack producer. Only included if Batch Size is
1.mime.typeThe mime.type of the content which is
text/plainState management: This component does not
store state.Restricted: This component is not restricted.Input
requirement: This co
mponent does not allow an incoming relationship.System Resource
Considerations:None specified.See Also:ParseSyslog
\ No newline at end of file
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-media-nar/1.9.0/org.apache.nifi.processors.image.ExtractImageMetadata/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-media-nar/1.9.0/org.apache.nifi.processors.image.ExtractImageMetadata/index.html?rev=1854109=auto
svn commit: r1854109 [11/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-gcp-nar/1.9.0/org.apache.nifi.processors.gcp.storage.ListGCSBucket/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-gcp-nar/1.9.0/org.apache.nifi.processors.gcp.storage.ListGCSBucket/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-gcp-nar/1.9.0/org.apache.nifi.processors.gcp.storage.ListGCSBucket/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-gcp-nar/1.9.0/org.apache.nifi.processors.gcp.storage.ListGCSBucket/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1,4 @@
+ListGCSBucketwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }ListGCSBucketDescription: Retrieves a listing of
objects from an GCS bucket. For each object that is listed, creates a FlowFile
that represents the object so that it can be fetched in conjunction with
FetchGCSObject. This Processor is designed to run on Primary Node only in a
cluster. If the primary node changes, the new Primary Node will pick up where
the previous node left off without duplicating all of the data.Tags:
google cloud, google, storage, gcs, listProperties: In
the list below, the names of required properties appear in bold. Any other properties (not in bold) are considered optional. The table
also indicates any default values, whether a property supports the NiFi Expression
Language, and whether a property is considered "sensitive", meaning that
its value will be encrypted. Before entering a value in a sensitive property,
ensure that the nifi.properties file has an entry for the
property nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionGCP Credentials
Provider ServiceController Service API:
GCPCredentialsServiceImplementation: GCPCredentialsControllerServiceThe Controller Service used to obtain Google Cloud Platform
credentials.Project IDGoogle Cloud Project IDSupports Expression
Language: true (will be evaluated using variable registry
only)Number of
retries6How many retry attempts should
be made before routing to the failure relationship.Proxy hostIP or hostname of the proxy to
be used.
+ You might need to set the following properties in bootstrap for https proxy
usage:
+-Djdk.http.auth.tunneling.disabledSchemes=
+-Djdk.http.auth.proxying.disabledSchemes=Supports Expression
Language: true (will be evaluated using variable registry
only)Proxy portProxy port numberSupports Expression Language:
true (will be evaluated using variable registry only)HTTP Proxy UsernameHTTP Proxy
UsernameSupports Expression Language: true (will be evaluated
using variable registry only)HTTP Proxy
PasswordHTTP Proxy PasswordSensitive Property:
trueSupports Expression Language: true (will be evaluated
using variable registry only)Proxy
Configuration
ServiceController Service API:
ProxyConfigurationServiceImplementation: StandardProxyConfigurationServiceSpecifies the Proxy Configuration Controller Service to proxy
network requests. If set, it supersedes proxy settings configured per
component. Supported proxies: HTTP + AuthNBucketBucket of the
object.Supports Expression Language: true (will be evaluated using
variable registry only)PrefixThe
prefix used to filter the object list. In most cases, it should end with a forw
ard slash ('/').Supports Expression Language: true (will be
evaluated using variable registry only)Use GenerationsfalsetruefalseSpecifies whether to use GCS Generations, if applicable. If
false, only the latest version of each object will be
returned.Relationships: NameDescriptionsuccessFlowFiles
are routed to this relationship after a successful Google Cloud Storage
operation.Reads Attributes: None
specified.Writes Attributes: NameDescriptionfilenameThe
name of the filegcs.bucketBucket of the
object.gcs.keyName of the
object.gcs.si
zeSize of the object.gcs.cache.controlData
cache control of the object.gcs.component.countThe
number of components which make up the
object.gcs.content.dispositionThe data content
disposition of the object.gcs.content.encodingThe
content encoding of the
object.gcs.content.languageThe content language of
the object.mime.typeThe MIME/Content-Type of the
objectgcs.crc32cThe CRC32C checksum of object's
data, encoded in base64 in big-endian
order.gcs.create.timeThe creation time of the object
(milliseconds)gcs.update.timeThe last modification
time of the object
(milliseconds)gcs.encryption.algorithmThe algorithm
used to encrypt the object.gcs.encryption.sha256The
SHA256 hash of the key u
sed to encrypt the objectgcs.etagThe HTTP 1.1
Entity tag for the object.gcs.generated.idThe
service-generated for the objectgcs.generationThe
data generation of the object.gcs.md5The MD5 hash of
the object's data encoded in
svn commit: r1854109 [26/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-record-serialization-services-nar/1.9.0/org.apache.nifi.json.JsonPathReader/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-record-serialization-services-nar/1.9.0/org.apache.nifi.json.JsonPathReader/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-record-serialization-services-nar/1.9.0/org.apache.nifi.json.JsonPathReader/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-record-serialization-services-nar/1.9.0/org.apache.nifi.json.JsonPathReader/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+JsonPathReaderwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }JsonPathReaderDescription: Parses JSON records and
evaluates user-defined JSON Path's against each JSON object. While the reader
expects each record to be well-formed JSON, the content of a FlowFile may
consist of many records, each as a well-formed JSON array or JSON object with
optional whitespace between them, such as the common 'JSON-per-line' format. If
an array is encountered, each element in that array will be treated as a
separate record. User-defined properties define the fields that should be
extracted from the JSON in order to form the fields of a Record. Any JSON fiel
d that is not extracted via a JSONPath will not be returned in the JSON
Records.Additional
Details...Tags: json, jsonpath, record, reader,
parserProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default values, and
whether a property supports the NiFi Expression
Language.NameDefault
ValueAllowable ValuesDescriptionSchema Access Strategyinfer-schemaUse
'Schema Name' Property Use 'Schema Text' Property HWX Schema Reference Attributes
HWX Content-Encoded Schema Reference
https://github.com/hortonworks/registry; title="The content of the FlowFile
contains a reference to a schema in the Schema Registry service. The reference
is encoded as a single byte indicating the 'protocol ver
sion', followed by 8 bytes indicating the schema identifier, and finally 4
bytes indicating the schema version, as per the Hortonworks Schema Registry
serializers and deserializers, found at
https://github.com/hortonworks/registry;>Confluent
Content-Encoded Schema Reference http://docs.confluent.io/current/schema-registry/docs/serializer-formatter.html.
This is based on version 3.2.x of the Confluent Schema Registry." title="The
content of the FlowFile contains a reference to a schema in the Schema Registry
service. The reference is encoded as a single 'Magic Byte' followed by 4 bytes
representing the identifier of the schema, as outlined at
http://docs.confluent.io/current/schema-registry/docs/s
erializer-formatter.html. This is based on version 3.2.x of the Confluent
Schema Registry.">Infer Schema Specifies how to
obtain the schema that is to be used for interpreting the
data.Schema RegistryController Service
API: SchemaRegistryImplementations: HortonworksSche
maRegistryConfluentSchemaRegistryAvroSchemaRegistrySpecifies the Controller Service to use for the Schema
RegistrySchema Name${schema.name}Specifies the name of the schema to lookup in the Schema
Registry propertySupports Expression Language: true (will be
evaluated using flow file attributes and variable
registry)Schema VersionSpecifies the version of the schema to lookup in the Schema
Registry. If not specified then the latest version of the schema will
be retrieved.Supports Expression Language: true (will be
evaluated using flow file attributes and variable
registry)Schema BranchSpecifies the name of the branch to use when looking up the
schema in the Schema Registry property. If the chosen Schema Registry does not
support branching, this value will be ignored.Supports Expression
Language: true (will be evaluated using flow file attributes and variable
registry)Schema Text${avro.schema}The text of an Avro-formatted SchemaSupports
Expression Language: true (will be evaluated using flow file attributes and
variable registry)Date FormatSpecifies the format to use when reading/writing Date fields. If not
>specified, Date fields will be assumed to be number of milliseconds since
>epoch (Midnight, Jan 1, 1970 GMT). If specified, the value must match the
>Java Simple Date Format (for example, MM/dd/ for a two-digit month,
>followed by a two-digit day, followed by a four-digit year, all separated by
>'/' characters, as in 01/01/2017).Time
>Formatid="description">Specifies the format to use when reading/writing Time
>fields. If not specified, Time fields will be assumed to be number of
>milliseconds since epoch
svn commit: r1854109 [24/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-parquet-nar/1.9.0/org.apache.nifi.processors.parquet.FetchParquet/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-parquet-nar/1.9.0/org.apache.nifi.processors.parquet.FetchParquet/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-parquet-nar/1.9.0/org.apache.nifi.processors.parquet.FetchParquet/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-parquet-nar/1.9.0/org.apache.nifi.processors.parquet.FetchParquet/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1,3 @@
+FetchParquetwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }FetchParquetDescription: Reads from a given Parquet
file and writes records to the content of the flow file using the selected
record writer. The original Parquet file will remain unchanged, and the content
of the flow file will be replaced with records of the selected type. This
processor can be used with ListHDFS or ListFile to obtain a listing of files to
fetch.Tags: parquet, hadoop, HDFS, get, ingest, fetch, source,
recordProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in
bold) are considered optional. The table also indicates any default values,
and whether a property supports the NiFi Expression
Language.NameDefault
ValueAllowable ValuesDescriptionHadoop Configuration ResourcesA file or comma separated list
of files which contains the Hadoop file system configuration. Without this,
Hadoop will search the classpath for a 'core-site.xml' and 'hdfs-site.xml' file
or will revert to a default configuration. To use swebhdfs, see 'Additional
Details' section of PutHDFS's documentation.Supports Expression
Language: true (will be evaluated using variable registry
only)Kerberos Credentials ServiceController
Service API:
KerberosCredentialsServiceImplementation:
KeytabCredentialsServiceSpecifies the Kerberos Credentials Controller Service that
should be used for authenticating with KerberosKerberos PrincipalKerberos principal to
authenticate as. Requires nifi.kerberos.krb5.file to be set in your
nifi.propertiesSupports Expression Language: true (will be
evaluated using variable registry only)Kerberos KeytabKerberos keytab associated with
the principal. Requires nifi.kerberos.krb5.file to be set in your
nifi.propertiesSupports Expression Languag
e: true (will be evaluated using variable registry
only)Kerberos Relogin Period4 hoursPeriod of time which should pass before attempting a kerberos
relogin.
+
+This property has been deprecated, and has no effect on processing. Relogins
now occur automatically.Supports Expression Language: true (will
be evaluated using variable registry only)Additional Classpath ResourcesA comma-separated list of paths
to files and/or directories that will be added to the classpath. When
specifying a directory, all files with in the directory will be added to the
classpath, but further sub-directories will not be included.Filename${path}/${filename}The name of the file to retrieveSupports
Expression Language: true (will be evaluated using flow file attributes and
variable registry)Record
WriterController Service API:
RecordSetWriterFactoryImplementations: XMLRecordSetWriterJsonRecordSetWriterCSVRecordSetWriterScriptedRecordSetWriterAvroRecordSetWriterFreeFormTextRecordSetWriterThe service for writing records to the FlowFile
contentRelationships: NameDescriptionretryFlowFiles
will be routed to this relationship if the content of the file cannot be
retrieved, but might be able to be in the future if tried again. This generally
indicates that the Fetch should be tried
again.successFlowFiles will be routed to this
relationship once they have been updated with the content of the
filefailureFlowFiles will be routed to this
relationship if the content of the file cannot be retrieved and trying again
will likely not be helpful. This would occur, for instance, if the file is not
found or if there is a permissions issueReads Attributes:
None specified.Writes Attributes: NameDescriptionfetch.fai
lure.reasonWhen a FlowFile is routed to 'failure', this attribute is
added indicating why the file could not be fetched from the given
filesystem.record.countThe number of records in the
resulting flow fileState management: This component
does not store state.Restricted: Required
PermissionExplanationread
filesystemProvides operator the ability to retrieve any file that NiFi
has access to in HDFS or the local filesystem.Input
requirement: This component requires an incoming relationship.System
Resource Considerations:None specified.See Also:PutParquet
\ No newline at end of file
Added:
svn commit: r1854109 [40/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.PutSyslog/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.PutSyslog/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.PutSyslog/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.PutSyslog/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+PutSyslogwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }PutSyslogDescription: Sends Syslog messages to a given
host and port over TCP or UDP. Messages are constructed from the "Message ___"
properties of the processor which can use expression language to generate
messages from incoming FlowFiles. The properties are used to construct messages
of the form: (PRIORITY)(VERSION )(TIMESTAMP) (HOSTNAME) (BODY) where
version is optional. The constructed messages are checked against regular
expressions for RFC5424 and RFC3164 formatted messages. The timestamp can be an
RFC5424 timestamp with a format of "-MM-dd'T'HH:mm:ss.SZ" or "-
MM-dd'T'HH:mm:ss.S+hh:mm", or it can be an RFC3164 timestamp with a format of
"MMM d HH:mm:ss". If a message is constructed that does not form a valid Syslog
message according to the above description, then it is routed to the invalid
relationship. Valid messages are sent to the Syslog server and successes are
routed to the success relationship, failures routed to the failure
relationship.Tags: syslog, put, udp, tcp,
logsProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default values, and
whether a property supports the NiFi Expression
Language.NameDefault
ValueAllowable ValuesDescriptionHostnamelocalhostThe ip address or hostname of the
Syslog server. Note that Expression language is not evaluated per
FlowFile.Supports Expression Language: true (will be evaluated
using variable registry only)ProtocolUDPTCPUDPThe protocol for Syslog communication.PortThe port for Syslog
communication. Note that Expression language is not evaluated per
FlowFile.Supports Expression Language: true (will be evaluated
using variable registry only)Max
Size of Socket Send Buffer1 MBThe maximum size of the socket s
end buffer that should be used. This is a suggestion to the Operating System
to indicate how big the socket buffer should be. If this value is set too low,
the buffer may fill up before the data can be read, and incoming data will be
dropped. Note that Expression language is not evaluated per
FlowFile.Supports Expression Language: true (will be evaluated
using variable registry only)SSL Context
ServiceController Service API:
SSLContextServiceImplementations: StandardRestrictedSSLContextServiceStandardSSLContextServiceThe Controller Service to use in order to obtain a
n SSL Context. If this property is set, syslog messages will be sent over a
secure connection.Idle Connection
Expiration5 secondsThe amount of time a connection
should be held open without being used before closing the connection. Note that
Expression language is not evaluated per FlowFile.Supports
Expression Language: true (will be evaluated using variable registry
only)Timeout10
secondsThe timeout for
connecting to and communicating with the syslog server. Does not apply to UDP.
Note that Expression language is not evaluated per
FlowFile.Supports Expression Language: true (will be evaluated
using variable registry only)Batch
Size25The number of
incoming FlowFiles to process in a single execution of this processor. Note
that Expression language is not evaluated per FlowFile.Supports
Expression Language: true (will be evaluated using variable registry
only)Character
SetUTF-8Specifies the character set of
the Syslog messages. Note that Expression language is not evaluated per
FlowFile.Supports Expression Language: true (will be evaluated
using variable registry only)Message PriorityThe priority for the Syslog
messages, excluding .Supports Expression Language: true
(will be evaluated using flow file attributes and variable registry)<
/strong>Message VersionThe
version for the Syslog messages.Supports Expression Language: true
(will be evaluated using flow file attributes and variable
registry)Message
Timestamp${now():format('MMM d
HH:mm:ss')}The
timestamp for the Syslog messages. The timestamp can be an RFC5424 timestamp
with a format of "-MM-dd'T'HH:mm:ss.SZ" or "-MM-dd'T'HH:mm:ss.S+hh:mm",
" or it can be an RFC3164 timestamp with a
svn commit: r1854109 [2/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/additionalDetails.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/additionalDetails.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/additionalDetails.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/additionalDetails.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1,57 @@
+
+
+
+
+
+AmbariReportingTask
+
+
+
+
+AmbariReportingTask
+
+This ReportingTask sends the following metrics to Ambari:
+
+FlowFilesReceivedLast5Minutes
+BytesReceivedLast5Minutes
+FlowFilesSentLast5Minutes
+BytesSentLast5Minutes
+FlowFilesQueued
+BytesQueued
+BytesReadLast5Minutes
+BytesWrittenLast5Minutes
+ActiveThreads
+TotalTaskDurationSeconds
+jvm.uptime
+jvm.heap_used
+jvm.heap_usage
+jvm.non_heap_usage
+jvm.thread_states.runnable
+jvm.thread_states.blocked
+jvm.thread_states.timed_waiting
+jvm.thread_states.terminated
+jvm.thread_count
+jvm.daemon_thread_count
+jvm.file_descriptor_usage
+jvm.gc.runs
+jvm.gc.time
+
+
+In order to make use of these metrics in Ambari, a NIFI service
must be created and installed
+in Ambari. Please consult the Ambari and NiFi documentation for
further details.
+
+
+
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari.AmbariReportingTask/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+AmbariReportingTaskwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }AmbariReportingTaskDescription: Publishes metrics from
NiFi to Ambari Metrics Service (AMS). Due to how the Ambari Metrics Service
works, this reporting task should be scheduled to run every 60 seconds. Each
iteration it will send the metrics from the previous iteration, and calculate
the current metrics to be sent on next iteration. Scheduling this reporting
task at a frequency other than 60 seconds may produce unexpected
results.Additional
Details...Tags: reporting, ambari,
metricsProperties: In th
e list below, the names of required properties appear in
bold. Any other properties (not in bold) are considered
optional. The table also indicates any default values, and whether a property
supports the NiFi
Expression Language.NameDefault
ValueAllowable ValuesDescriptionMetrics Collector URLhttp://localhost:6188/ws/v1/timeline/metricsThe URL of the Ambari Metrics
Collector ServiceSupports Expression Language: true (will be
evaluated using variable registry only)Application IDnifiThe Application ID to be included in the metrics sent to
AmbariSupports
Expression Language: true (will be evaluated using variable registry
only)Hostname${hostname(true)}The Hostname of this NiFi instance to be included in the
metrics sent to AmbariSupports Expression Language: true (will be
evaluated using variable registry only)Process Group IDIf specified, the reporting
task will send metrics about this process group only. If not, the root process
group is used and global metrics are sent.Supports Expression
Language: true (will be evaluated using variable registry
only)State management: This component does
not store state.Restricted: This component is not
restricted.System Resource Considerations:None specified.
\ No newline at end of file
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-amqp-nar/1.9.0/org.apache.nifi.amqp.processors.ConsumeAMQP/additionalDetails.html
URL:
svn commit: r1854109 [6/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambari
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-azure-nar/1.9.0/org.apache.nifi.processors.azure.storage.queue.GetAzureQueueStorage/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-azure-nar/1.9.0/org.apache.nifi.processors.azure.storage.queue.GetAzureQueueStorage/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-azure-nar/1.9.0/org.apache.nifi.processors.azure.storage.queue.GetAzureQueueStorage/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-azure-nar/1.9.0/org.apache.nifi.processors.azure.storage.queue.GetAzureQueueStorage/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+GetAzureQueueStoragewindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }GetAzureQueueStorageDescription: Retrieves the messages
from an Azure Queue Storage. The retrieved messages will be deleted from the
queue by default. If the requirement is to consume messages without deleting
them, set 'Auto Delete Messages' to 'false'. Note: There might be chances of
receiving duplicates in situations like when a message is received but was
unable to be deleted from the queue due to some unexpected
situations.Tags: azure, queue, microsoft, storage, dequeue,
cloudProperties: In the list below, the names of required
propertie
s appear in bold. Any other properties (not in bold) are
considered optional. The table also indicates any default values, whether a
property supports the NiFi Expression
Language, and whether a property is considered "sensitive", meaning that
its value will be encrypted. Before entering a value in a sensitive property,
ensure that the nifi.properties file has an entry for the
property nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionStorage Account
NameThe storage account name.
There are certain risks in allowing the account name to be stored as a flowfile
attribute. While it does provide for a more flexible flow by allowing the
account name to be fetched dyn
amically from a flowfile attribute, care must be taken to restrict access to
the event provenance data (e.g. by strictly controlling the policies governing
provenance for this Processor). In addition, the provenance repositories may be
put on encrypted disk partitions.Sensitive Property:
trueSupports Expression Language: true (will be evaluated
using variable registry only)Storage
Account KeyThe storage account key. This is an admin-like password
providing access to every container in this account. It is recommended one uses
Shared Access Signature (SAS) token instead for fine-grained control with
policies. There are certain risks in allowing the account key to be stored as a
flowfile attribute. While it does provide for a more flexible flow by allowing
the account key to be fetched dynamically from a flow file attribute, care m
ust be taken to restrict access to the event provenance data (e.g. by strictly
controlling the policies governing provenance for this Processor). In addition,
the provenance repositories may be put on encrypted disk
partitions.Sensitive Property: trueSupports
Expression Language: true (will be evaluated using variable registry
only)SAS TokenShared Access Signature token, including the leading '?'.
Specify either SAS Token (recommended) or Account Key. There are certain risks
in allowing the SAS token to be stored as a flowfile attribute. While it does
provide for a more flexible flow by allowing the account name to be fetched
dynamically from a flowfile attribute, care must be taken to restrict access to
the event provenance data (e.g. by strictly controlling the policies governing
provenance for this Processor). In addition, th
e provenance repositories may be put on encrypted disk
partitions.Sensitive Property: trueSupports
Expression Language: true (will be evaluated using variable registry
only)Queue NameName of the Azure Storage QueueSupports
Expression Language: true (will be evaluated using variable registry
only)Auto Delete
MessagestruetruefalseSpecifies whether the received message is to be automatically
deleted from the queue.Batch
Size32The number of messages to be
retrieved from the queue.Visibility Timeout30 secsThe duration during which the
retrieved message should be invisible to other consumers.Proxy Configuration ServiceController Service API:
ProxyConfigurationServiceImplementation: StandardProxyConfigurationServiceSpecifies the Proxy Configuration Controller Service to proxy
network requests. Supported proxies: HTTP,
SOCKSRelationships: NameDescriptionsuccessAll
successfully processed FlowFiles are routed to this
relationshipReads Attributes: None
specified.Write
s Attributes: NameDescriptionazure.queue.uriThe
absolute URI of the configured
svn commit: r1854109 [27/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-record-serialization-services-nar/1.9.0/org.apache.nifi.xml.XMLReader/additionalDetails.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-record-serialization-services-nar/1.9.0/org.apache.nifi.xml.XMLReader/additionalDetails.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-record-serialization-services-nar/1.9.0/org.apache.nifi.xml.XMLReader/additionalDetails.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-record-serialization-services-nar/1.9.0/org.apache.nifi.xml.XMLReader/additionalDetails.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1,531 @@
+
+
+
+
+
+XMLReader
+
+
+
+
+
+The XMLReader Controller Service reads XML content and creates Record
objects. The Controller Service
+must be configured with a schema that describes the structure of the
XML data. Fields in the XML data
+that are not defined in the schema will be skipped. Depending on
whether the property "Expect Records as Array"
+is set to "false" or "true", the reader either expects a single record
or an array of records for each FlowFile.
+
+
+
+Example: Single record
+
+
+
+record
+ field1content/field1
+ field2content/field2
+/record
+
+
+
+
+An array of records has to be enclosed by a root tag.
+Example: Array of records
+
+
+
+
+root
+ record
+field1content/field1
+field2content/field2
+ /record
+ record
+field1content/field1
+field2content/field2
+ /record
+/root
+
+
+
+Example: Simple Fields
+
+
+The simplest kind of data within XML data are tags / fields only
containing content (no attributes, no embedded tags).
+They can be described in the schema by simple types (e. g. INT,
STRING, ...).
+
+
+
+
+root
+ record
+simple_fieldcontent/simple_field
+ /record
+/root
+
+
+
+
+This record can be described by a schema containing one field (e. g.
of type string). By providing this schema,
+the reader expects zero or one occurrences of "simple_field" in the
record.
+
+
+
+
+{
+ "namespace": "nifi",
+ "name": "test",
+ "type": "record",
+ "fields": [
+{ "name": "simple_field", "type": "string" }
+ ]
+}
+
+
+
+Example: Arrays with Simple Fields
+
+
+Arrays are considered as repetitive tags / fields in XML data. For the
following XML data, "array_field" is considered
+to be an array enclosing simple fields, whereas "simple_field" is
considered to be a simple field not enclosed in
+an array.
+
+
+
+
+record
+ array_fieldcontent/array_field
+ array_fieldcontent/array_field
+ simple_fieldcontent/simple_field
+/record
+
+
+
+
+This record can be described by the following schema:
+
+
+
+
+{
+ "namespace": "nifi",
+ "name": "test",
+ "type": "record",
+ "fields": [
+{ "name": "array_field", "type":
+ { "type": "array", "items": string }
+},
+{ "name": "simple_field", "type": "string" }
+ ]
+}
+
+
+
+
+If a field in a schema is embedded in an array, the reader expects
zero, one or more occurrences of the field
+in a record. The field "array_field" principally also could be defined
as a simple field, but then the second occurrence
+of this field would replace the first in the record object. Moreover,
the field "simple_field" could also be defined
+as an array. In this case, the reader would put it into the record
object as an array with one element.
+
+
+Example: Tags with Attributes
+
+
+XML fields frequently not only contain content, but also attributes.
The following record contains a field with
+an attribute "attr" and content:
+
+
+
+
+record
+ field_with_attribute attr="attr_content"content of
svn commit: r1854109 [15/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-influxdb-nar/1.9.0/org.apache.nifi.processors.influxdb.PutInfluxDB/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-influxdb-nar/1.9.0/org.apache.nifi.processors.influxdb.PutInfluxDB/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-influxdb-nar/1.9.0/org.apache.nifi.processors.influxdb.PutInfluxDB/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-influxdb-nar/1.9.0/org.apache.nifi.processors.influxdb.PutInfluxDB/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+PutInfluxDBwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }PutInfluxDBDescription: Processor to write the content
of a FlowFile in 'line protocol'. Please check details of the 'line protocol'
in InfluxDB documentation (https://www.influxdb.com/). The flow file can
contain single measurement point or multiple measurement points separated by
line seperator. The timestamp (last field) should be in nano-seconds
resolution.Tags: influxdb, measurement, insert, write, put,
timeseriesProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default values, whether
a property supports the NiFi Expression
Language, and whether a property is considered "sensitive", meaning that
its value will be encrypted. Before entering a value in a sensitive property,
ensure that the nifi.properties file has an entry for the
property nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionDatabase
NameInfluxDB database to connect
toSupports Expression Language: true (will be evaluated using flow
file attributes and variable registry)InfluxDB connection URLhttp://localhost:8086InfluxDB URL to connect to. Eg:
http://influxdb:8086Supports Expression Language: true (will be
evaluated using variable registry only)InfluxDB Max Connection Time Out (seconds)0 secondsThe maximum time for establishing connection to the
InfluxDBUsernameUsername for accessing InfluxDBSupports
Expression Language: true (will be evaluated using variable registry
only)PasswordPassword for userSensitive Property:
trueSupports Expression Language: true (will be evaluated
using variable registry only)
Character SetUTF-8Specifies the character set of the document
data.Supports Expression Language: true (will be evaluated using
flow file attributes and variable registry)Consistency LevelONEOne Any All Quorum InfluxDB consistency levelSupports Expression
Language: true (will be evaluated using flow file attributes and variable
registry)Retention
PolicyautogenRetention policy for the saving
the recordsSupports Expression Language: true (will be evaluated
using flow file attributes and variable registry)Max size of records1
MBMaximum size of
records allowed
to be posted in one batchSupports Expression Language: true
(will be evaluated using variable registry
only)Relationships: NameDescriptionfailure-max-sizeFlowFiles
exceeding max records size are routed to this
relationshipretryFlowFiles were not saved to
InfluxDB due to retryable exception are routed to this
relationshipsuccessSuccessful FlowFiles that are
saved to InfluxDB are routed to this
relationshipfailureFlowFiles were not saved to
InfluxDB are routed to this relationshipReads Attributes:
None specified.Writes Attributes: NameDescriptioninfluxdb.error.messageInfluxDB
error messageState management: This component does
not store state.Restric
ted: This component is not restricted.Input requirement: This
component requires an incoming relationship.System Resource
Considerations:None specified.
\ No newline at end of file
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-jms-processors-nar/1.9.0/org.apache.nifi.jms.cf.JMSConnectionFactoryProvider/additionalDetails.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-jms-processors-nar/1.9.0/org.apache.nifi.jms.cf.JMSConnectionFactoryProvider/additionalDetails.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-jms-processors-nar/1.9.0/org.apache.nifi.jms.cf.JMSConnectionFactoryProvider/additionalDetails.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-jms-processors-nar/1.9.0/org.apache.nifi.jms.cf.JMSConnectionFactoryProvider/additionalDetails.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1,56 @@
+
+
+
+
+
+JMSConnectionFactoryProvider
+
+
+
+
+Description:
+
+This ControllerService serves as a
svn commit: r1854109 [28/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-rethinkdb-nar/1.9.0/org.apache.nifi.processors.rethinkdb.GetRethinkDB/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-rethinkdb-nar/1.9.0/org.apache.nifi.processors.rethinkdb.GetRethinkDB/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-rethinkdb-nar/1.9.0/org.apache.nifi.processors.rethinkdb.GetRethinkDB/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-rethinkdb-nar/1.9.0/org.apache.nifi.processors.rethinkdb.GetRethinkDB/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+GetRethinkDBwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }GetRethinkDBDescription: Processor to get a JSON
document from RethinkDB (https://www.rethinkdb.com/) using the document id. The
FlowFile will contain the retrieved documentTags: rethinkdb,
get, read, fetchProperties: In the list below, the names of
required properties appear in bold. Any other properties (not
in bold) are considered optional. The table also indicates any default values,
whether a property supports the NiFi Expression
Language, and whether a property is
considered "sensitive", meaning that its value will be encrypted. Before
entering a value in a sensitive property, ensure that the
nifi.properties file has an entry for the property
nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionDB
NameRethinkDB database to connect
toHostnamelocalhostRethinkDB hostnameDB
Port28015RethinkDB database port to
connect toUsernameUsername for ac
cessing RethinkDBPasswordPassword for userSensitive Property:
trueTable nameRethinkDB table to connect toCharacter SetUTF-8Specifies the character set of the document
data.Supports Expression Language: true (will be evaluated using
flow file attributes and variable registry)Document IdentifierA
FlowFile attribute, or attribute expression used for determining RethinkDB key
for the Flow File contentSupports Expression Language: true (w
ill be evaluated using flow file attributes and variable
registry)Read
ModesingleSingle Majority Outdated Read mode used for
consistencySupports Expression Language: true (will be evaluated
using flow file attributes and variable registry)
Max size of documents1 MBMaximum size of documents
allowed to be posted in one batchRelationships:
NameDescriptionsuccessSucessful
FlowFiles are routed to this
relationshipnot_foundDocument not found are routed
to this relationshipfailureFailed FlowFiles are
routed to this relationshipReads Attributes: None
specified.Writes Attributes: NameDescriptionrethinkdb.error.messageRethinkDB
error messageState management: This component does
not store state.Restricted: This component is not restricted.Input
requirement: This component requires an incoming relationship.System
Resource Con
siderations:None specified.See Also:PutRethinkDB,
DeleteRethinkDB
\ No newline at end of file
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-rethinkdb-nar/1.9.0/org.apache.nifi.processors.rethinkdb.PutRethinkDB/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-rethinkdb-nar/1.9.0/org.apache.nifi.processors.rethinkdb.PutRethinkDB/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-rethinkdb-nar/1.9.0/org.apache.nifi.processors.rethinkdb.PutRethinkDB/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-rethinkdb-nar/1.9.0/org.apache.nifi.processors.rethinkdb.PutRethinkDB/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+PutRethinkDBwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }PutRethinkDBDescription: Processor to write the JSON
content of a FlowFile to RethinkDB (https://www.rethinkdb.com/). The flow file
should contain either JSON Object an array of JSON documentsTags:
rethinkdb, stream, insert, update, write, putProperties:
In the list below, the names of required properties appear in
bold. Any other properties (not in bold) are considered
optional. The table also indicates any default values, whether a property
supports the NiFi
Expression La
nguage, and whether a property is considered "sensitive", meaning that its
value will be encrypted. Before entering a value in a sensitive property,
ensure that the nifi.properties file has an entry for the
property nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionDB
NameRethinkDB database to connect
toHostnamelocalhostRethinkDB hostnameDB
Port28015RethinkDB database port to
connect toUsernameUsername for
svn commit: r1854109 [43/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.Wait/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.Wait/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.Wait/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.Wait/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+Waitwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }WaitDescription: Routes incoming FlowFiles to the
'wait' relationship until a matching release signal is stored in the
distributed cache from a corresponding Notify processor. When a matching
release signal is identified, a waiting FlowFile is routed to the 'success'
relationship, with attributes copied from the FlowFile that produced the
release signal from the Notify processor. The release signal entry is then
removed from the cache. Waiting FlowFiles will be routed to 'expired' if they
exceed the Expiration Duration. If you need to wait for more than one signal,
specify the desired num
ber of signals via the 'Target Signal Count' property. This is particularly
useful with processors that split a source FlowFile into multiple fragments,
such as SplitText. In order to wait for all fragments to be processed, connect
the 'original' relationship to a Wait processor, and the 'splits' relationship
to a corresponding Notify processor. Configure the Notify and Wait processors
to use the '${fragment.identifier}' as the value of 'Release Signal
Identifier', and specify '${fragment.count}' as the value of 'Target Signal
Count' in the Wait processor.It is recommended to use a prioritizer (for
instance First In First Out) when using the 'wait' relationship as a
loop.Tags: map, cache, wait, hold, distributed, signal,
releaseProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default values, and
whether a property su
pports the NiFi
Expression Language.NameDefault
ValueAllowable ValuesDescriptionRelease Signal IdentifierA
value, or the results of an Attribute Expression Language statement, which will
be evaluated against a FlowFile in order to determine the release signal cache
keySupports Expression Language: true (will be evaluated using
flow file attributes and variable registry)Target Signal Count1A
value, or the results of an Attribute Expression Language statement, which will
be evaluated against a FlowFile in order to determine the target signal count.
This processor checks whether the s
ignal count has reached this number. If Signal Counter Name is specified, this
processor checks a particular counter, otherwise checks against total count in
a signal.Supports Expression Language: true (will be evaluated
using flow file attributes and variable registry)Signal Counter NameA value, or the results of an
Attribute Expression Language statement, which will be evaluated against a
FlowFile in order to determine the signal counter name. If not specified, this
processor checks the total count in a signal.Supports Expression
Language: true (will be evaluated using flow file attributes and variable
registry)Wait Buffer
Count1Specify the maximum number of
incoming FlowFiles that can be buffered t
o check whether it can move forward. The more buffer can provide the better
performance, as it reduces the number of interactions with cache service by
grouping FlowFiles by signal identifier. Only a signal identifier can be
processed at a processor execution.Releasable FlowFile Count1A
value, or the results of an Attribute Expression Language statement, which will
be evaluated against a FlowFile in order to determine the releasable FlowFile
count. This specifies how many FlowFiles can be released when a target count
reaches target signal count. Zero (0) has a special meaning, any number of
FlowFiles can be released as long as signal count matches
target.Supports Expression Language: true (will be evaluated using
flow file attributes and variable registry)Expiration Duration10 minIndicates the duration after which waiting FlowFiles will be
routed to the 'expired' relationshipDistributed Cache ServiceController Service
API: AtomicDistributedMapCacheClientImplementations:
DistributedMapCacheClientServiceRedisDistributedMapCacheClientServiceCouchbaseMapCacheClientThe Controller Service that is used to check for release
signals from
a corresponding Notify processorAttribute
Copy ModekeeporiginalReplace if present Keep
svn commit: r1854109 [48/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Modified: nifi/site/trunk/docs/nifi-docs/html/user-guide.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/user-guide.html?rev=1854109=1854108=1854109=diff == --- nifi/site/trunk/docs/nifi-docs/html/user-guide.html (original) +++ nifi/site/trunk/docs/nifi-docs/html/user-guide.html Fri Feb 22 01:03:44 2019 @@ -721,7 +721,7 @@ UI may become unavailable. -uuid: A unique identifier for the FlowFile +uuid: A Universally Unique Identifier that distinguishes the FlowFile from other FlowFiles in the system. filename: A human-readable filename that may be used when storing the data to disk or in an external service @@ -787,13 +787,13 @@ UI may become unavailable. These templates can also be exported as XML and imported into another NiFi instance, allowing these building blocks to be shared. -flow.xml.gz: Everything the DFM puts onto the NiFi User Interface canvas is written, in real time, to one file called the flow.xml.gz. This file is located in the nifi/conf directory by default. - Any change made on the canvas is automatically saved to this file, without the user needing to click a "save" button. +flow.xml.gz: Everything the DFM puts onto the NiFi User Interface canvas is written, in real time, to one file called the flow.xml.gz. This file is located in the nifi/conf directory by default. + Any change made on the canvas is automatically saved to this file, without the user needing to click a "Save" button. In addition, NiFi automatically creates a backup copy of this file in the archive directory when it is updated. - You can use these archived files to rollback flow configuration. To do so, stop NiFi, replace flow.xml.gz with a desired backup copy, then restart NiFi. - In a clustered environment, stop the entire NiFi cluster, replace the flow.xml.gz of one of nodes, and restart the node. Remove flow.xml.gz from other nodes. + You can use these archived files to rollback flow configuration. To do so, stop NiFi, replace flow.xml.gz with a desired backup copy, then restart NiFi. + In a clustered environment, stop the entire NiFi cluster, replace the flow.xml.gz of one of nodes, and restart the node. Remove flow.xml.gz from other nodes. Once you confirmed the node starts up as a one-node cluster, start the other nodes. The replaced flow configuration will be synchronized across the cluster. - The name and location of flow.xml.gz, and auto archive behavior are configurable. See the System Administrator’s Guide for further details. + The name and location of flow.xml.gz, and auto archive behavior are configurable. See the System Administrator’s Guide for further details. @@ -1369,7 +1369,7 @@ icon, indicating that there is more info Label: Labels are used to provide documentation to parts of a dataflow. When a Label is dropped onto the canvas, it is created with a default size. The Label can then be resized by dragging the handle in the bottom-right corner. The Label has no text when initially created. The text of the Label can be added by right-clicking on the Label and -choosing Configure +choosing Configure. @@ -1540,19 +1540,19 @@ data may be processable at a later time. prevent the FlowFile from being Processed for some period of time. For example, if the Processor is to push the data to a remote service, but the remote service already has a file with the same name as the filename that the Processor is specifying, the Processor may penalize the FlowFile. The 'Penalty Duration' allows the DFM to specify how long the -FlowFile should be penalized. The default value is 30 seconds. +FlowFile should be penalized. The default value is 30 seconds. Similarly, the Processor may determine that some situation exists such that the Processor can no longer make any progress, regardless of the data that it is processing. For example, if a Processor is to push data to a remote service and that service is not responding, the Processor cannot make any progress. As a result, the Processor should 'yield', which will prevent the Processor from being scheduled to run for some period of time. That period of time is specified by setting -the 'Yield Duration'. The default value is 1 second. +the 'Yield Duration'. The default value is 1 second. The last configurable option on the left-hand side of the Settings tab is the Bulletin level. Whenever the Processor writes to its log, the Processor also will generate a Bulletin. This setting indicates the lowest level of Bulletin that should be -shown in the User Interface. By default, the Bulletin level is set to WARN, which means it will display all warning and error-level +shown in the User Interface. By default, the Bulletin level is set to WARN, which means it will display all warning and error-level bulletins. @@ -1877,7
svn commit: r1854109 [33/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
on Language: true (will be evaluated using flow file attributes and variable registry)Move Conflict StrategyRenameRename Replace File Keep Existing Fail If Completion Strategy is set to Move File and a file already exists in the destination directory with the same name, this property specifies how that naming conflict should be resolvedLog level when file not foundERRORTRACEDEBUGINFOWARNERRORFATALNONELog level to use in case the file does not exist when the processor is triggeredLog level when permission deniedERRORTRACEDEBUGINFOWARNERRORFATALNONELog level to use in case user alopresto does not have sufficient permissions to read the fileRelationships: NameDescriptionsuccessAny FlowFile that is successfully fetched from the file system will be transferred to this Relationship.not.foundAny FlowFile that could not be fetched from the file system because the file could not be found will be transferred to this Relationship.permission.deniedAny FlowFile that could not be fetched from the file system due to the user running NiFi not having sufficient permissions will be transferred to this Relationship.failureAny FlowFile that could not be fetched from the file system for any rea
svn commit: r1854109 [37/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListenTCP/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListenTCP/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListenTCP/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListenTCP/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+ListenTCPwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }ListenTCPDescription: Listens for incoming TCP
connections and reads data from each connection using a line separator as the
message demarcator. The default behavior is for each message to produce a
single FlowFile, however this can be controlled by increasing the Batch Size to
a larger value for higher throughput. The Receive Buffer Size must be set as
large as the largest messages expected to be received, meaning if every 100kb
there is a line separator, then the Receive Buffer Size must be greater than
100kb.Tags: listen, tcp, tls, sslProperties: In
the list below, the names of required properties appear in
bold. Any other properties (not in bold) are considered
optional. The table also indicates any default values, and whether a property
supports the NiFi
Expression Language.NameDefault
ValueAllowable ValuesDescriptionLocal Network InterfaceThe name of a local network
interface to be used to restrict listening to a specific
LAN.Supports Expression Language: true (will be evaluated using
variable registry only)PortThe port to listen on for
communication.Supports Expression Language: true (will be
evaluated using v
ariable registry only)Receive
Buffer Size65507 BThe size of each buffer used to
receive messages. Adjust this value appropriately based on the expected size of
the incoming messages.Max Size of Message
Queue1The maximum size of the
internal queue used to buffer messages being transferred from the underlying
channel to the processor. Setting this value higher allows more messages to be
buffered in memory during surges of incoming messages, but increases the total
memory used by the processor.Max Size of
Socket Buffer1 MBThe maximum size of the socket
buffer that should be used. This is a
suggestion to the Operating System to indicate how big the socket buffer
should be. If this value is set too low, the buffer may fill up before the data
can be read, and incoming data will be dropped.Character SetUTF-8Specifies the character set of the received
data.Max Batch Size1The maximum number of messages to add to a single FlowFile. If
multiple messages are available, they will be concatenated along with the
Message Delimiter up to this configured maximum number of
messagesBatching Message
Delimiter\nSpecifies the delimiter to
place between messages when multiple messages are bundled t
ogether (see Max Batch Size property).Max Number of TCP Connections2The maximum number of concurrent TCP connections to
accept.SSL Context ServiceController Service
API: RestrictedSSLContextServiceImplementation:
StandardRestrictedSSLContextServiceThe Controller Service to use in order to obtain an SSL
Context. If this property is set, messages will be received over a secure
connection.Client AuthREQUIREDWANTREQUIREDNONEThe
client authentication policy to use for the SSL Context. Only used if an SSL
Context Service is provided.Relationships: NameDescriptionsuccessMessages
received successfully will be sent out this
relationship.Reads Attributes: None
specified.Writes Attributes: NameDescriptiontcp.senderThe
sending host of the messages.tcp.portThe sending
port the messages were received.State management:
This component does not store state.Restricted: This component is
not restricted.Input requirement: This component does not allow an
incoming relationship.System Resource Considerations:None
specified.
\ No newline at end of file
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListenTCPRecord/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListenTCPRecord/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListenTCPRecord/index.html
(added)
+++
svn commit: r1854109 [12/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-hadoop-nar/1.9.0/org.apache.nifi.processors.hadoop.GetHDFSSequenceFile/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-hadoop-nar/1.9.0/org.apache.nifi.processors.hadoop.GetHDFSSequenceFile/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-hadoop-nar/1.9.0/org.apache.nifi.processors.hadoop.GetHDFSSequenceFile/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-hadoop-nar/1.9.0/org.apache.nifi.processors.hadoop.GetHDFSSequenceFile/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1,3 @@
+GetHDFSSequenceFilewindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }GetHDFSSequenceFileDescription: Fetch sequence files
from Hadoop Distributed File System (HDFS) into FlowFilesTags:
hadoop, HDFS, get, fetch, ingest, source, sequence
fileProperties: In the list below, the names of required
properties appear in bold. Any other properties (not in bold)
are considered optional. The table also indicates any default values, and
whether a property supports the NiFi Expression
Language.NameDe
fault ValueAllowable ValuesDescriptionHadoop Configuration ResourcesA file or comma separated list
of files which contains the Hadoop file system configuration. Without this,
Hadoop will search the classpath for a 'core-site.xml' and 'hdfs-site.xml' file
or will revert to a default configuration. To use swebhdfs, see 'Additional
Details' section of PutHDFS's documentation.Supports Expression
Language: true (will be evaluated using variable registry
only)Kerberos Credentials ServiceController Service
API: KerberosCredentialsServiceImplementation:
KeytabCredentialsServiceSpecifies the Kerberos Credentials Controller Service that
should be used for authenticating with KerberosKerberos PrincipalKerberos principal to
authenticate as. Requires nifi.kerberos.krb5.file to be set in your
nifi.propertiesSupports Expression Language: true (will be
evaluated using variable registry only)Kerberos KeytabKerberos keytab associated with
the principal. Requires nifi.kerberos.krb5.file to be set in your
nifi.propertiesSupports Expression Language: true (will be
evaluated using variable registry only)Kerberos Relogin Period4 hoursPeriod of time which should
pass before atte
mpting a kerberos relogin.
+
+This property has been deprecated, and has no effect on processing. Relogins
now occur automatically.Supports Expression Language: true (will
be evaluated using variable registry only)Additional Classpath ResourcesA comma-separated list of paths
to files and/or directories that will be added to the classpath. When
specifying a directory, all files with in the directory will be added to the
classpath, but further sub-directories will not be included.DirectoryThe HDFS directory from which
files should be readSupports Expression Language: true (will be
evaluated using variable registry only)Recurse SubdirectoriestruetruefalseIndicates whether to pull files from subdirectories of the
HDFS directoryKeep Source
FilefalsetruefalseDetermines whether to delete the file from HDFS after it has
been successfully transferred. If true, the file will be fetched repeatedly.
This is intended for testing only.File Filter
RegexA Java Regular Expression for filtering Filenames; if a filter
is supplied then only files whose names match that Regular Expression will be
fetched, otherwise all files will be fetchedFilter Match Name OnlytruetruefalseIf true then File Filter Regex will match on just the
filename, otherwise subdirectory names will be included with filename in the
regex comparisonIgnore Dotted
FilestruetruefalseIf true, files whose names begin with a dot (".") will be
ignoredMinimum File Age0 secThe minimum age that a file must be in order to be pulled; any
file younger than this amount of time (based on last modification date) will be
ignoredMaximum File AgeThe
maximum age that a file must be in order to be pulled; any file older than this
amount of time (based on last modification date) will be ignore
dPolling Interval0 secIndicates how long to wait between performing directory
listingsBatch Size100The maximum number of files to pull in each iteration, based
on run schedule.IO Buffer SizeAmount of memory to use to buffer file contents during IO.
This overrides the Hadoop ConfigurationCompression codecNONENONE DEFAULT BZIP GZIP LZ4 LZO SNAPPY AUTOMATIC No Description Provided.FlowFile ContentVALUE
ONLYVALUE ONLYKEY VALUE
PAIRIndicate if the content is to be both
the key and value of the Sequence File, or just the
value.Relationships: NameDescriptionsuccessAll
files retrieved from HDFS are transferred to this
relationshipReads Attributes: None
specified.Writes
svn commit: r1854109 [36/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Added:
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListFTP/index.html
URL:
http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListFTP/index.html?rev=1854109=auto
==
---
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListFTP/index.html
(added)
+++
nifi/site/trunk/docs/nifi-docs/components/org.apache.nifi/nifi-standard-nar/1.9.0/org.apache.nifi.processors.standard.ListFTP/index.html
Fri Feb 22 01:03:44 2019
@@ -0,0 +1 @@
+ListFTPwindow.onload =
function(){if(self==top) { document.getElementById('nameHeader').style.display
= "inherit"; } }ListFTPDescription: Performs a listing of the files
residing on an FTP server. For each file that is found on the remote server, a
new FlowFile will be created with the filename attribute set to the name of the
file on the remote server. This can then be used in conjunction with FetchFTP
in order to fetch those files.Tags: list, ftp, remote, ingest,
source, input, filesProperties: In the list below, the names of
required properties appear in bold. Any other properties (not
in bold) are considered optional. The table also indicates any def
ault values, whether a property supports the NiFi Expression
Language, and whether a property is considered "sensitive", meaning that
its value will be encrypted. Before entering a value in a sensitive property,
ensure that the nifi.properties file has an entry for the
property nifi.sensitive.props.key.NameDefault ValueAllowable
ValuesDescriptionListing
StrategytimestampsTracking Timestamps Tracking Entities Specify how to
determine new/updated entities. See each strategy descriptions for
detail.HostnameThe
fully qualified ho
stname or IP address of the remote systemSupports Expression
Language: true (will be evaluated using variable registry
only)Port21The port to connect to on the remote host to fetch the data
fromSupports Expression Language: true (will be evaluated using
variable registry only)UsernameUsernameSupports
Expression Language: true (will be evaluated using variable registry
only)PasswordPassword for the user accountSensitive Property:
trueSupports Expression Language: true (will be evaluated
using variable registry only)Remote Path.The path on the remote system from which to pull or push
filesSupports Expression Language: true (will be evaluated using
variable registry only)Distributed Cache
ServiceController Service API:
DistributedMapCacheClientImplementations:
DistributedMapCacheClientServiceRedisDistributedMapCacheClientServiceCouchbaseMapCacheCli
entHBase_2_ClientMapCacheServiceHBase_1_1_2_ClientMapCacheServiceNOTE: This property is used merely for migration from old
NiFi version before state management was introduced at version 0.5.0. The
stored value in the cache service will be migrated into the state when this
processor is started at the first time. The specified Controller Service was
used to maintain state about what had been pulled from the remote server so
that if a new node begins pulling data, it won't duplicate all of the work that
has been done. If not specified, the information was not shared across the
cluster. This property did not need to be set for standalone instances of NiFi
but was supposed to be configured if NiFi
had been running within a cluster.Search
RecursivelyfalsetruefalseIf true, will pull files from arbitrarily nested
subdirectories; otherwise, will not traverse subdirectoriesFollow symlinkfalsetruefalseIf true, will pull even symbolic files and also nested
symbolic subdirectories; otherwise, will not read symbolic files and will not
traverse symbolic link subdirectoriesFile Filter
RegexProvides a Java Regular Expression for filtering Filenames; if
a filter is supplied, only files whose names match that Regular Expression will
be fetchedPath Filter Regexid="allowable-values">When Search Recursively is
>true, then only subdirectories whose path matches the given Regular
>Expression will be scannedIgnore Dotted
>Filestrueid="allowable-values">truefalseid="description">If true, files whose names begin with a dot (".") will be
>ignoredRemote Poll Batch
>Size5000id="allowable-values">The value specifies how many
>file paths to find in a given directory on the remote system when doing a
>file listing. This value in general should not need to be modified but when
>polling against a remote system with a tremendous number of files this value
>can be critical. Setting this value too high can result very poor
>performance and setting it too low can c
ause the flow to be slower than normal.Connection Timeout30
secAmount of time to
wait before timing out while creating a connectionData Timeout30
secWhen
svn commit: r1854109 [45/50] - in /nifi/site/trunk/docs/nifi-docs: ./ components/org.apache.nifi/nifi-ambari-nar/1.9.0/ components/org.apache.nifi/nifi-ambari-nar/1.9.0/org.apache.nifi.reporting.ambar
Modified: nifi/site/trunk/docs/nifi-docs/html/administration-guide.html URL: http://svn.apache.org/viewvc/nifi/site/trunk/docs/nifi-docs/html/administration-guide.html?rev=1854109=1854108=1854109=diff == --- nifi/site/trunk/docs/nifi-docs/html/administration-guide.html (original) +++ nifi/site/trunk/docs/nifi-docs/html/administration-guide.html Fri Feb 22 01:03:44 2019 @@ -1,29 +1,29 @@ - - - - - - - - - -NiFi System Administrators Guide - + + + + + + + + + +NiFi System Administrator’s Guide +