name:poc-yaml-apache-nifi-api-unauthorized-access manual:true transport:http rules: r0: request: cache:true method:GET path:/nifi-api/flow/current-user follow_redirects:false expression:response.status == 200 && response.content_type.contains("json") && response.body.bcontains(b"\"identity\"...
Unauthorized with explanation: null at org.apache.nifi.remote.StandardRemoteProcessGroup.refreshFlowContents(StandardRemoteProcessGroup.java:817) at org.apache.nifi.controller.FlowController.updateRemoteProcessGroups(FlowController.java:4383) at org.apache.nifi.controller.FlowController.access$10...
If you hit a NiFi rest-api endpoint like .../nifi-api/flow/cluster/summary without a bearer token or a client certificate, the client will be treated as "anonymous" and not authorized. You should see this unauthorized endpoint request logged in the nifi-user.log. When you access rest-...
2021-06-08 15:33:19,173 WARN [NiFi Web Server-15] o.a.n.w.s.NiFiAuthenticationFilter Rejecting access to web api: Untrusted proxy nifi3.{valid_domain}.com The problem you have is that your file-user-group-provider is still using the full DN when setting up your clients and po...
2021-06-08 15:33:19,173 WARN [NiFi Web Server-15] o.a.n.w.s.NiFiAuthenticationFilter Rejecting access to web api: Untrusted proxy nifi3.{valid_domain}.com The problem you have is that your file-user-group-provider is still using the full DN when setting up your clients and po...