[jira] [Commented] (NIFI-2797) Authorization header not submitted when clicking Download from Templates window

2016-12-15 Thread ASF subversion and git services (JIRA) 

[ 
https://issues.apache.org/jira/browse/NIFI-2797?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15752166#comment-15752166
 ] 

ASF subversion and git services commented on NIFI-2797:
---

Commit 3feb59d690ad1d2f301c8572d09b262299bd23a5 in nifi's branch 
refs/heads/support/nifi-1.0.x from [~mcgilman]
[ https://git-wip-us.apache.org/repos/asf?p=nifi.git;h=3feb59d ]

NIFI-2797: - Correcting download URIs for OTPs.

This closes #1038.

Signed-off-by: Bryan Bende 


> Authorization header not submitted when clicking Download from Templates 
> window
> ---
>
> Key: NIFI-2797
> URL: https://issues.apache.org/jira/browse/NIFI-2797
> Project: Apache NiFi
>  Issue Type: Bug
>  Components: Core UI
>Affects Versions: 1.0.0
>Reporter: Scott Wagner
>Assignee: Matt Gilman
> Fix For: 1.1.0
>
>
> I am running on a standalone instance of Apache NiFi.  It is configured to 
> use a local LDAP server for authentication, and I am logging in as a user 
> with full permissions.
> When browsing the templates, and I click on the "Download" link, a new tab is 
> opened in the browser but the error message of {{Unable to perform the 
> desired action due to insufficient permissions. Contact the system 
> administrator.}}
> Checking the link that is submitted via developer tools, I noticed that the 
> Authorization header is not being submitted.  If I use curl to get the URL 
> that the browser is trying to get but submit an Authorization header for my 
> valid session, I am able to download the template XML.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2797) Authorization header not submitted when clicking Download from Templates window

2016-09-21 Thread ASF subversion and git services (JIRA) 

[ 
https://issues.apache.org/jira/browse/NIFI-2797?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15510126#comment-15510126
 ] 

ASF subversion and git services commented on NIFI-2797:
---

Commit e10b4beb9062c65e86a19ae16b6636768ac29bde in nifi's branch 
refs/heads/master from [~mcgilman]
[ https://git-wip-us.apache.org/repos/asf?p=nifi.git;h=e10b4be ]

NIFI-2797: - Correcting download URIs for OTPs.

This closes #1038.

Signed-off-by: Bryan Bende 


> Authorization header not submitted when clicking Download from Templates 
> window
> ---
>
> Key: NIFI-2797
> URL: https://issues.apache.org/jira/browse/NIFI-2797
> Project: Apache NiFi
>  Issue Type: Bug
>  Components: Core UI
>Affects Versions: 1.0.0
>Reporter: Scott Wagner
>Assignee: Matt Gilman
> Fix For: 1.1.0
>
>
> I am running on a standalone instance of Apache NiFi.  It is configured to 
> use a local LDAP server for authentication, and I am logging in as a user 
> with full permissions.
> When browsing the templates, and I click on the "Download" link, a new tab is 
> opened in the browser but the error message of {{Unable to perform the 
> desired action due to insufficient permissions. Contact the system 
> administrator.}}
> Checking the link that is submitted via developer tools, I noticed that the 
> Authorization header is not being submitted.  If I use curl to get the URL 
> that the browser is trying to get but submit an Authorization header for my 
> valid session, I am able to download the template XML.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2797) Authorization header not submitted when clicking Download from Templates window

2016-09-20 Thread ASF GitHub Bot (JIRA) 

[ 
https://issues.apache.org/jira/browse/NIFI-2797?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15507108#comment-15507108
 ] 

ASF GitHub Bot commented on NIFI-2797:
--

GitHub user mcgilman opened a pull request:

https://github.com/apache/nifi/pull/1038

Correcting download URIs for OTPs

NIFI-2797:
- Correcting download URIs for OTPs.

You can merge this pull request into a Git repository by running:

$ git pull https://github.com/mcgilman/nifi NIFI-2797

Alternatively you can review and apply these changes as the patch at:

https://github.com/apache/nifi/pull/1038.patch

To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:

This closes #1038


commit 9194527bc9a0231ea8caeb9b2e64a453bdff2ac2
Author: Matt Gilman 
Date:   2016-09-20T16:50:55Z

NIFI-2797:
- Correcting download URIs for OTPs.




> Authorization header not submitted when clicking Download from Templates 
> window
> ---
>
> Key: NIFI-2797
> URL: https://issues.apache.org/jira/browse/NIFI-2797
> Project: Apache NiFi
>  Issue Type: Bug
>  Components: Core UI
>Affects Versions: 1.0.0
>Reporter: Scott Wagner
>Assignee: Matt Gilman
> Fix For: 1.1.0
>
>
> I am running on a standalone instance of Apache NiFi.  It is configured to 
> use a local LDAP server for authentication, and I am logging in as a user 
> with full permissions.
> When browsing the templates, and I click on the "Download" link, a new tab is 
> opened in the browser but the error message of {{Unable to perform the 
> desired action due to insufficient permissions. Contact the system 
> administrator.}}
> Checking the link that is submitted via developer tools, I noticed that the 
> Authorization header is not being submitted.  If I use curl to get the URL 
> that the browser is trying to get but submit an Authorization header for my 
> valid session, I am able to download the template XML.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (NIFI-2797) Authorization header not submitted when clicking Download from Templates window

2016-09-20 Thread Matt Gilman (JIRA) 

[ 
https://issues.apache.org/jira/browse/NIFI-2797?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=15507032#comment-15507032
 ] 

Matt Gilman commented on NIFI-2797:
---

Someone was just submitted this same issue on the mailing list. Here's some 
additional details...

{noformat}
When using an authentication which will use the API tokens, download requests 
are processed using a one-time password token (since they become part of the 
URL). These are only honored for certain endpoints which do not appear correct. 

As a work-around, you could use clients certificates, download via a curl 
command, or use View as it is not subject to the same endpoint check (when not 
clustered).
{noformat}

> Authorization header not submitted when clicking Download from Templates 
> window
> ---
>
> Key: NIFI-2797
> URL: https://issues.apache.org/jira/browse/NIFI-2797
> Project: Apache NiFi
>  Issue Type: Bug
>  Components: Core UI
>Affects Versions: 1.0.0
>Reporter: Scott Wagner
>Assignee: Matt Gilman
> Fix For: 1.1.0
>
>
> I am running on a standalone instance of Apache NiFi.  It is configured to 
> use a local LDAP server for authentication, and I am logging in as a user 
> with full permissions.
> When browsing the templates, and I click on the "Download" link, a new tab is 
> opened in the browser but the error message of {{Unable to perform the 
> desired action due to insufficient permissions. Contact the system 
> administrator.}}
> Checking the link that is submitted via developer tools, I noticed that the 
> Authorization header is not being submitted.  If I use curl to get the URL 
> that the browser is trying to get but submit an Authorization header for my 
> valid session, I am able to download the template XML.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)