mirror of https://github.com/apache/nifi.git
ae251c1a6f
This commit fixes following two issues, that happens when a Root Group Port policy for S2S data transfer is removed at a remote NiFi, after a client NiFi has connected to that port: 1. At client side, Remote Process Group should show that authorization is failing on its bulletin, but the Exception is caught and ignored. Nothing is shown on the UI with HTTP transport protocol. RAW S2S shows error on RPG bulletin. This commit fixes HTTP S2S to behave the same. 2. At server side, corresponding input-port or output-port should show that it is accessed by an unauthorized client on its bulletin, but it's not shown with HTTP transport protocol. RAW S2S shows warning messages for this. This commit fixes HTTP S2S to behave the same. In order to fix the 2nd issue above, request authorization at DataTransferResource is changed from using DataTransferAuthorizable directly, to call RootGroupPort.checkUserAuthorization(). Because the blettin is tied to the Port instance and it's difficult to produce blettin message from this resource. Since RootGroupPort.checkUserAuthorization uses DataTransferAuthorizable inside, the check logic stays the same as before. Adding a RootGroupPortAuthorizable to provide access to necessary components for performing the authorization. This closes #996 |
||
|---|---|---|
| .. | ||
| nifi-data-provenance-utils | ||
| nifi-expression-language | ||
| nifi-flowfile-packager | ||
| nifi-hadoop-utils | ||
| nifi-hl7-query-language | ||
| nifi-logging-utils | ||
| nifi-processor-utilities | ||
| nifi-properties | ||
| nifi-security-utils | ||
| nifi-site-to-site-client | ||
| nifi-socket-utils | ||
| nifi-utils | ||
| nifi-web-utils | ||
| nifi-write-ahead-log | ||
| pom.xml | ||