Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-6823

Investigate adding 2FA to NiFi

    XMLWordPrintableJSON

Details

    Description

      It would be great to see two-factor authentication options added to NiFi. I believe there can be two solutions which can be investigated and added:

      1. External identity providers which offer 2FA/2SV (easy)
        1. Allow a NiFi administrator to enforce 2SV for NiFi users
      2. A native solution (hard)
        1. Will require some level of native user tracking to track shared keys per user for TOTP. Currently NiFi stores basically no details of users or their passwords.
          1. Secure hashing of passwords using bcrypt/scrypt or some other password hashing mechanism
        2. Uses an open source library to handle TOTP
          1. Must allow users to initialize, enter and verify TOTP values

      Attachments

        Activity

          People

            Unassigned Unassigned
            thenatog Nathan Gough
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: