Joseph Gresock created NIFI-8447:
------------------------------------
Summary: Add Vault encryption as an option in the Encrypt Tool
Key: NIFI-8447
URL: https://issues.apache.org/jira/browse/NIFI-8447
Project: Apache NiFi
Issue Type: Sub-task
Reporter: Joseph Gresock
Using the HashiCorpVaultCommunicationService, add options to the Encrypt Tool
in nifi-toolkit for the following:
# Select encryption method (aes/gcm vs. vault)
# Select vault configuration (recommended as a vault-configuration.properties
file, since there are so many configuration properties). Vault configuration
properties include:
```
nifi.sensitive.props.vault.addr=
nifi.sensitive.props.vault.transit.key=
nifi.sensitive.props.vault.auth.properties.file=
# Optional TLS options if addr is https
nifi.security.keystore=
nifi.security.keystoreType=
nifi.security.keystorPasswd=
nifi.security.keyPasswd=
nifi.security.truststore=
nifi.security.truststoreType=
nifi.security.truststorePasswd=
```
Selecting vault encryption method should set the encryption value in XML files
or the *.protected property in properties files to "vault/{transitKey}"
Additionally, the corresponding nifi.sensitive.props.vault.* properties should
be configured in the resulting nifi.properties file so that the NiFi instance
can use the same Vault configuration.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
