NIFI-6770 - Set validator to Validator.VALID to allow empty password …#3823
NIFI-6770 - Set validator to Validator.VALID to allow empty password …#3823thenatog wants to merge 10 commits intoapache:masterfrom
Conversation
…for truststores. NIFI-6770 - Added no-password keystore for tests
|
It looks like the code changes here only affect components using a |
…re. Added a unit test to prove this.
|
Added another code change and unit test to allow for the NiFi framework to use passwordless truststores. @alopresto |
|
Reviewing... |
| .defaultValue(null) | ||
| .addValidator(StandardValidators.NON_EMPTY_VALIDATOR) | ||
| .addValidator(Validator.VALID) | ||
| .sensitive(true) |
|
While doing live PR review with @thenatog we discovered a number of legacy issues with the relevant code & unit tests. We have made additional changes available on this branch: https://github.com/alopresto/nifi/tree/NIFI-6770. |
…yStoreUtils. Added utility methods to verify keystore and key passwords. Added unit tests.
…gic. Refactored internal custom validation in StandardSSLContextService. Added and fixed unit tests.
…d keystore passwords. Added unit tests. Resolved failing unit tests.
…ps://nifi.apache.org for live testing. Resolved NPE in SSLContext generation in StandardSSLContextService Added unit tests.
…alhost for InvokeHTTP testing. Resolved TrustManagerFactoryImpl initialization error. Added unit tests.
|
Pulled in the changes Andy made and ran a contrib check. Ran some smoke tests:
|
…for truststores. Added no-password keystore for tests System NiFi truststore now allows a passwordless truststore. Added a unit test to prove this. Forgot no-password-truststore.jks file for the unit test. Refactored utility method from CertificateUtils to KeyStoreUtils. Added utility methods to verify keystore and key passwords. Added unit tests. Implemented different keystore and truststore validation logic. Refactored internal custom validation in StandardSSLContextService. Added unit test resource for keystore with different key and keystore passwords. Added unit test to generate passwordless truststore for https://nifi.apache.org for live testing. Resolved NPE in SSLContext generation in StandardSSLContextService Added unit test to generate passwordless truststore for localhost for InvokeHTTP testing. Resolved TrustManagerFactoryImpl initialization error. Fixed unit test without proper cleanup which caused RAT failures. Co-authored-by: Andy LoPresto <alopresto@apache.org> This closes apache#3823. Signed-off-by: Andy LoPresto <alopresto@apache.org>
2 participants
…for truststores.
NIFI-6770 - Added no-password keystore for tests
Thank you for submitting a contribution to Apache NiFi.
Please provide a short description of the PR here:
Description of PR
Enables X functionality; fixes bug NIFI-YYYY.
In order to streamline the review of the contribution we ask you
to ensure the following steps have been taken:
For all changes:
Is there a JIRA ticket associated with this PR? Is it referenced
in the commit message?
Does your PR title start with NIFI-XXXX where XXXX is the JIRA number you are trying to resolve? Pay particular attention to the hyphen "-" character.
Has your PR been rebased against the latest commit within the target branch (typically
master)?Is your initial contribution a single, squashed commit? Additional commits in response to PR reviewer feedback should be made on this branch and pushed to allow change tracking. Do not
squashor use--forcewhen pushing to allow for clean monitoring of changes.For code changes:
mvn -Pcontrib-check clean installat the rootnififolder?LICENSEfile, including the mainLICENSEfile undernifi-assembly?NOTICEfile, including the mainNOTICEfile found undernifi-assembly?.displayNamein addition to .name (programmatic access) for each of the new properties?For documentation related changes:
Note:
Please ensure that once the PR is submitted, you check travis-ci for build issues and submit an update to your PR as soon as possible.