Details
-
New Feature
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
1.7.1
Description
In order to make NiFi more dynamically scalable in conjunction with tools like Docker and Kubernetes, the "encrypted config" handling should be enhanced to integrate with other secure configuration providers. The original design encompassed this idea, and the SensitivePropertyProvider interface is designed to be extended by various provider implementations. A provider which integrates with the Hashicorp Vault is a good next step.
Vault is free and open source, widely adopted, and provides a CLI, HTTP API, and community-supported Java client library vault-java-driver - MIT License and Spring Vault - Apache 2.0 License.
Attachments
Issue Links
- causes
-
NIFI-7193 Tls-toolkit refers to NiFi properties loader 1.11.0-snapshot
-
- Resolved
-
- fixes
-
-
- Resolved
-
- is a parent of
-
-
- Resolved
-
- is related to
-
NIFI-5458 Improve NiFi TLS and certificate management
-
- Resolved
-
- relates to
-
-
- Resolved
-
- links to
1.
|
Add Hashicorp Vault SPP |
|
Resolved | Joe Gresock |
|
|||||||
2.
|
Add AWS KMS SPP |
|
Resolved | Emilio Setiadarma |
|
|||||||
3.
|
Add Hadoop Credential Provider SPP |
|
Resolved | Unassigned | ||||||||
4.
|
Integrate ConfigEncryption Toolkit with New SPP |
|
Resolved | Troy Melhase |
|
|||||||
5.
|
Update Login Identity Provider and Authorizers to use SSPP |
|
Resolved | Unassigned | ||||||||
6.
|
Add SPP which uses JCEKS as container for encryption key for sensitive properties |
|
Closed | Troy Melhase | ||||||||
7.
|
Add Azure SPP |
|
Resolved | Emilio Setiadarma |
|
|||||||
8.
|
Add GCP SPP |
|
Resolved | Emilio Setiadarma |
|
|||||||
9.
|
Refactor Shared Methods in Sensitive Property Providers |
|
Resolved | David Handermann |
|
|||||||
10.
|
Add AWS SecretsManager SPP |
|
Resolved | Joe Gresock |
|
|||||||
11.
|
Add Azure Key Vault Secrets SPP |
|
Resolved | David Handermann |
|
