Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-10233

Correct Anonymous Authentication for HTTP Access

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • 1.17.0
    • None
    • None

    Description

      Refactoring the NiFi Spring Security configuration added a check to determine whether application properties allowed anonymous authentication. The nifi.security.allow.anoymous.authentication property is false in the default configuration, but the changing the property should not be necessary when configuring HTTP without TLS.

      The Spring Security configuration should be adjusted to restore current behavior, which enables anonymous authentication when configuring unencrypted HTTP.

      Attachments

        Issue Links

          is caused by

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-10216 Refactor Deprecated Usage of WebSecurityConfigurerAdapter

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          links to

          Web Link GitHub Pull Request #6209

          Activity

            People

              exceptionfactory David Handermann
              exceptionfactory David Handermann
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 1h
                  1h