Hello, the Ericsson Device Connection Platform requires SOAP authentication by <wsse:UsernameToken> <wsse:Username>myusername</wsse:Username> <wsse:Password>mypassword</wsse:Password> </wsse:UsernameToken> where we send the SOAP message(including password) by HTTPS.
In NiFi, we think we can handle encryption at rest by e.g. the processor EncryptContent, storing the encrypted password in the file system. A GetFile and a (De)EncryptContent will provide us with the password to use in the SOAP message. We do not think a parameter context with a sensitive value can be used? Are there better options? Encryption in transit appears to require an encrypted provenance repository, an encrypted content repository and an encrypted flowfile repository. Is it possible to use EncryptContent after InvokeHTTP relations failure, no retry, original and retry instead? The relation response does not appear to contain sensitive information. Are there other options to handle the flowfile content in transit containing a password? Grateful for any advice! Flow attached. [cid:[email protected]]
