Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-11469

OpenID Connect StandardClientRegistrationProvider scopes should be configurable

    XMLWordPrintableJSON

Details

    Description

      We're integrating our NiFi instance with OpenID Connect. We didn't have an issue on version 1.19.1.

      When we get redirected from /nifi-api/oauth2/authorization/consumer, the link includes all supported scopes found at the nifi.security.user.oidc.discovery.url. In our case, there are a lot and this causes an HTTP 414 (uri too long). Generally not a good idea to do this, because the list can be very long.

      Scopes of the client registration should be configurable, currently it is only possible to add scopes. We should be able to fully configure them.

      Classified as bug because situation is not workable.

      Attachments

        Issue Links

          is fixed by

          Bug - A problem which impairs or prevents the functions of the product. NIFI-11438 OIDC requests all available scopes

          • Major - Major loss of function.
          • Resolved

          Activity

            People

              exceptionfactory David Handermann
              sbylemans Sander Bylemans
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: