Details
-
Bug
-
Status: Resolved
-
Minor
-
Resolution: Information Provided
-
1.11.4
-
None
Description
Hello,
I read a lot of documentation about how configure secure nifi before reverse proxy.
But it seems missing something to work completly.
- the path to /nifi, WEB UI, processor configuration: OK
- the path to /nifi-api, stop processor, view provenance, https://xxxx:19091/nifi-api/processors/28621407-017d-1000-31a3-58539fc2e94a/run-status : KO
I use this config :
server {
listen 19091;
server_name nginx_server;
proxy_ssl_trusted_certificate /etc/nginx/certs/xxx-cert.pem;
proxy_ssl_certificate /etc/nginx/certs/xxx-cert.pem;
proxy_ssl_certificate_key /etc/nginx/certs/xxx-key.pem;
location / {
proxy_ssl_server_name on;
proxy_pass https://nifi_server:9091;
proxy_set_header X-ProxyScheme https;
proxy_set_header X-ProxyHost nifi_server;
proxy_set_header X-ProxyPort 19091;
#proxy_set_header X-ProxyContextPath /;
proxy_set_header X-ProxiedEntitiesChain $ssl_client_s_dn;
Nifi properties 1:
nifi.web.proxy.context.path= nifi.web.proxy.host=nginx_server:19091
Nifi properties 2:
nifi.web.proxy.context.path=/ nifi.web.proxy.host=nginx_server:19091
Nifi properties 3:
nifi.web.proxy.context.path=//,/nifi-api
nifi.web.proxy.host=nginx_server:19091
I read a lot time, but I don't sure that is need to push in nifi.web.proxy.context.path
What is the correct configuration to setup ?
Thanks.