Sander Bylemans created NIFI-11469:
--------------------------------------
Summary: OpenID Connect StandardClientRegistrationProvider scopes
should be configurable
Key: NIFI-11469
URL: https://issues.apache.org/jira/browse/NIFI-11469
Project: Apache NiFi
Issue Type: Bug
Components: Configuration, Security
Affects Versions: 1.21.0
Reporter: Sander Bylemans
We're integrating our NiFi instance with OpenID Connect. We didn't have an
issue on version 1.19.1.
When we get redirected from /nifi-api/oauth2/authorization/consumer, the link
includes all supported scopes found at the
nifi.security.user.oidc.discovery.url. In our case, there are a lot and this
causes an HTTP 414 (uri too long). Generally not a good idea to do this,
because the list can be very long.
Scopes of the client registration should be configurable, currently it is only
possible to add scopes. We should be able to fully configure them.
Classified as bug because situation is not workable.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
