* NIFI-8725 Added Single User Environment Variables for Docker
- Updated Docker README.md with example command and link to Administration Guide section
- Updated Docker integration test to check HTTP response status
- Disabled integration test plugin for dockerhub because it depends on changes on the main branch. Can be re-enabled after 1.14.0 is released.
- Set default HTTPS Port to 9443
- Set default authorizer to single-user-authorizer
- Set default login-identity-provider to single-user-provider
- Updated README.md with authentication instructions using generated credentials
- Updated default URL and port information in Administration and User Guides
- Updated Getting Started Guide with authentication and URL changes
- Updated Docker images to set HTTPS as default configuration
- Updated default HTTPS port to 8443
- Set Cluster Protocol secure property in Docker start scripts
- Added set-single-user-credentials command
- Refactored shared classes to nifi-single-user-utils
- Updated Getting Started documentation and logging
- Updated documentation and TLS Toolkit default ports
- Updated Toolkit Guide and Administration Guide
- Updated README.md with HTTPS links
* Ensure script files in Docker builds are treated as executable.
* Updating git permissions to reflect executable for both secure.sh scripts.
Signed-off-by: Aldrin Piri <aldrin@apache.org>
Signed-off-by: Kevin Doran <kdoran@apache.org>
This closes#4027.
Signed-off-by: Kevin Doran <kdoran@apache.org>
NIFI-6323 Changed URLs for splunk.artifactoryonline.com to use HTTPS (certificate validity warning in browsers, but command-line connection using openssl s_client is successful).
NIFI-6323 Changed URLs for XMLNS schema locations to use HTTPS (the XMLNS and schema identifier remain http:// because they are not designed to be resolvable).
NIFI-6323 Fixed Maven XML schema descriptor URLs.
This closes#3497
- Fixed proxy header support to use X-Forwarded-Host instead of X-ForwardedServer
- Added support for the context path header used by Traefik when proxying a service (X-Forwarded-Prefix)
- Added tests to ApplicationResourceTest for X-Forwarded-Context and X-Forwarded-Prefix
- Updated administration doc to include X-Forwarded-Prefix
- Added NIFI_WEB_PROXY_CONTEXT_PATH env var to dockerhub and dockermaven start.sh scripts
- Added documentation for NIFI_WEB_PROXY_CONTEXT_PATH to dockerhub README.md
- Updated ApplicationResource to handle a port specified in X-ProxyPort and X-Forwarded-Port headers
This closes#3129.
Signed-off-by: Kevin Doran <kdoran@apache.org>
- Removing needClientAuth property since cluster comms now requires two way ssl. Jetty client auth settings are based on configured features.
- Removing dead code.
- Updating documentation.
- Removing references to needClientAuth property in all test resources.
- Removing overloaded util method with strict parameter.
This closes#3102.
NIFI-5468 add keypasswd with the default of keystorepasswd for bc compatibility
NIFI-5468 Use ARG instead of ENV for PATH variables as those need to be controlled in the build
NIFI-5468 Use BASE_URL for the default case when MIRROR_BASE_URL is not defined (and replace ARCHIVE_BASE_URL)
This closes#2921
Signed-off-by: Andrew I. Christianson <andy@andyic.org>
* Merging unnecessary layers
* MAINTAINER is deprecated
* Using JRE as base since JDK is not necessary
* Set GID=1000 since openjdk image already defines 50
* Add ability to specify Apache mirror site to reduce load on Apache Archive
* Created templates directory since this is not included in the binary
This closes#1910.
Signed-off-by: Aldrin Piri <aldrin@apache.org>
markap14
exceptionfactory
Joey Frazee
Joe Witt
Emilio Setiadarma
Karthick Narendran
Mike Thomsen
Matthew Burgess
Kevin Doran
Aldrin Piri
Andy LoPresto
Mike Thomsen
Craig Davidson
Jeff Storck
Matt Gilman
pepov
Jordan Moore