mirror of https://github.com/apache/nifi.git
a652280fbb
- Replaced per-user symmetric-key HS256 with shared and rotated RSA asymmetric-key RS512 implementation - Added nifi.security.user.jws.key.rotation.period property for RSA Key Pair rotation - Added JSON Web Tokens section to Administration Guide - Implemented persistent storage of RSA Public Keys for verification using Local State Manager - Implemented JWT revocation on logout with persistence using Local State Manager - Refactored JWT implementation using Spring Security OAuth2 and Nimbus JWT - Refactored Spring Security Provider configuration using Java instead of XML - Removed H2 storage of per-user keys - Upgraded nimbus-jose-jwt from 7.9 to 9.11.2 NIFI-8766 Corrected AuthenticationException handling in AccessResource.getAccessStatus - Added nifi.user.security.jws.key.rotation.period to default nifi.properties - Updated logging statements and clarified configuration and method documentation NIFI-8766 Changed Algorithm to PS512 and updated documentation Signed-off-by: Nathan Gough <thenatog@gmail.com> This closes #5262. |
||
|---|---|---|
| .. | ||
| nifi-bootstrap-utils | ||
| nifi-data-provenance-utils | ||
| nifi-expression-language | ||
| nifi-flow-encryptor | ||
| nifi-flowfile-packager | ||
| nifi-hl7-query-language | ||
| nifi-json-utils | ||
| nifi-logging-utils | ||
| nifi-metrics | ||
| nifi-parameter | ||
| nifi-properties | ||
| nifi-property-encryptor | ||
| nifi-property-utils | ||
| nifi-record | ||
| nifi-record-path | ||
| nifi-rocksdb-utils | ||
| nifi-schema-utils | ||
| nifi-security-kerberos | ||
| nifi-security-kerberos-api | ||
| nifi-security-kms | ||
| nifi-security-socket-ssl | ||
| nifi-security-utils | ||
| nifi-security-utils-api | ||
| nifi-sensitive-property-provider | ||
| nifi-single-user-utils | ||
| nifi-site-to-site-client | ||
| nifi-socket-utils | ||
| nifi-utils | ||
| nifi-uuid5 | ||
| nifi-vault-utils | ||
| nifi-web-utils | ||
| nifi-write-ahead-log | ||
| pom.xml | ||