You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "Andy LoPresto (JIRA)" <ji...@apache.org> on 2018/05/17 18:36:00 UTC

[jira] [Created] (NIFI-5211) Create JSON reader, writer, signer, and verifier

Andy LoPresto created NIFI-5211:
-----------------------------------

             Summary: Create JSON reader, writer, signer, and verifier
                 Key: NIFI-5211
                 URL: https://issues.apache.org/jira/browse/NIFI-5211
             Project: Apache NiFi
          Issue Type: Sub-task
          Components: Extensions
    Affects Versions: 1.6.0
            Reporter: Andy LoPresto
             Fix For: 1.7.0


This piece should accept a TLS configuration object and serialize/deserialize it to/from JSON, and should provide a signature generation and verification service to ensure it is trusted and has not been manipulated. 

* JSON de/serialization
* Read arbitrary JSON and verify an HMAC/SHA-512 signature before parsing
* Generate a signature over JSON and persist in place
* Derive the signature key from the master key in {{bootstrap.conf}} with a one-way transformation (i.e. {{HMAC/SHA-512("JSON TLS key", MK) -> TLSK}})



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)