You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@nifi.apache.org by "Nimrod Avni (JIRA)" <ji...@apache.org> on 2019/01/12 20:41:00 UTC
[jira] [Updated] (NIFI-5923) Nifi tls toolkit in client mode should
have option to output nifi.properties
[ https://issues.apache.org/jira/browse/NIFI-5923?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Nimrod Avni updated NIFI-5923:
------------------------------
Description:
When using the nifi toolkit to setup my secured cluster, I noticed there is a big difference from when using it in server/client mode then using it in standalone mode. The client mode does not have the option to output a nifi.properties file like the standalone mode offers.
The standalone mode offers an easy deployment after generating the certificate, while the client mode requires tedious copying of the security properties from the config.json file into the nifi.properties
My suggestions are:
* Have better documentation on the config.json file, how to use it, it's structure and so one
* Have a flag when using the tls toolkit in client mode to generate a nifi.properties file from a base nifi.properties file or a brand new one (same as standalone mode)
* Or, alternatively, have the option to configure nifi to read security properties from the config.json file instead of the nifi.properties file, allowing for easier deployment
It would be great if these features will be added to the nifi toolkit.
This discussion on the hortonworks forum ([https://community.hortonworks.com/questions/231221/nifi-security-configuration.html]) can be used for reference of the problem
was:
When using the nifi toolkit to setup my secured cluster, I noticed there is a big difference from when using it in server/client mode then using it in standalone mode. The client mode does not have the option to output a nifi.properties file like the standalone mode offers.
The standalone mode offers an easy deployment after generating the certificate, while the client mode requiers tedious copying of the security properties from the config.json file into the nifi.propertiesy
My suggestio are:
* Have better documentation on the config.json file, how to use it, it's structure and so one
* Have a flag when using the tls toolkit in client mode to generate a nifi.properties file from a base nifi.properties file or a brand new one (same as standalone mode)
* Or, alternatively, have the option to configure nifi to read security properties from the config.json file instead of the nifi.properties file, allowing for easier deployment
It would be great if these features will be added to the nifi toolkit.
This discussion on the hortonworks forum (https://community.hortonworks.com/questions/231221/nifi-security-configuration.html) can be used for reference of the problem
> Nifi tls toolkit in client mode should have option to output nifi.properties
> ----------------------------------------------------------------------------
>
> Key: NIFI-5923
> URL: https://issues.apache.org/jira/browse/NIFI-5923
> Project: Apache NiFi
> Issue Type: Improvement
> Reporter: Nimrod Avni
> Priority: Minor
> Labels: Cerificate, Security, TLS, toolkit
>
> When using the nifi toolkit to setup my secured cluster, I noticed there is a big difference from when using it in server/client mode then using it in standalone mode. The client mode does not have the option to output a nifi.properties file like the standalone mode offers.
> The standalone mode offers an easy deployment after generating the certificate, while the client mode requires tedious copying of the security properties from the config.json file into the nifi.properties
> My suggestions are:
> * Have better documentation on the config.json file, how to use it, it's structure and so one
> * Have a flag when using the tls toolkit in client mode to generate a nifi.properties file from a base nifi.properties file or a brand new one (same as standalone mode)
> * Or, alternatively, have the option to configure nifi to read security properties from the config.json file instead of the nifi.properties file, allowing for easier deployment
> It would be great if these features will be added to the nifi toolkit.
> This discussion on the hortonworks forum ([https://community.hortonworks.com/questions/231221/nifi-security-configuration.html]) can be used for reference of the problem
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)