Re: InvokeHTTP failure to schedule fro CRON?

2018-12-26 Thread Andy LoPresto
Jeff did a really good job explaining what I glossed over earlier. Assuming the site you are trying to reach doesn’t have a certificate that is signed by a known CA (for example, a company service that is only accessed from within the organization), you can follow these instructions to obtain

Re: InvokeHTTP failure to schedule fro CRON?

2018-12-26 Thread Jeff
There was a bit of a grammar issue with my previous message... InvokeHTTP should be *presented* with a cert that's signed by one of the CAs in cacerts. You can use your browser to go to the website/URL that you've configured in InvokeHTTP, and take a look at the certificate for the site. For

Re: InvokeHTTP failure to schedule fro CRON?

2018-12-24 Thread l vic
Could you try using an explicit path to the cacerts provided by your JDK/JRE, instead of referring to $JAVA_HOME? Tried without success... Were you able to successfully start the SSLContextService after configuring it? Yes InvokeHTTP needs to present a certificate that is signed by a CA that is in

Re: InvokeHTTP failure to schedule fro CRON?

2018-12-23 Thread Jeff
Could you try using an explicit path to the cacerts provided by your JDK/JRE, instead of referring to $JAVA_HOME? Andy gave an example of "/Library/Java/JavaVirtualMachines/jdk1.8.0_101.jdk/Contents/Home/jre/lib/security/cacerts", which you would update with the path to the JDK you are using.

Re: InvokeHTTP failure to schedule fro CRON?

2018-12-21 Thread l vic
I put "default" parameters for trust-store: Path: $JAVA_HOME/jre/lib/security/cacerts Password: changeit (default) Type: JKS and got "invalid path" exception ( see below) How does that missing cert file should look like? Thanks again... 2018-12-21 14:46:00,021 ERROR [Timer-Driven Process

Re: InvokeHTTP failure to schedule fro CRON?

2018-12-20 Thread Andy LoPresto
You need to configure the truststore properties in the SSLContextService — the keystore contains the private key and public certificate the service (NiFi) uses to identify itself, but the truststore contains the public certificate(s) of external services NiFi should trust. In this case, in

InvokeHTTP failure to schedule fro CRON?

2018-12-20 Thread l vic
Hello, I am trying to perform "get" request over SSL from InvokeHTTP nifi-1.5.0-RC1; I configured SSL by the means of a StandardSSLContextService with jks certificate (see attached) When I try to