exceptionfactory opened a new pull request, #11148: URL: https://github.com/apache/nifi/pull/11148
# Summary [NIFI-15845](https://issues.apache.org/jira/browse/NIFI-15845) Removes component authorization handling from the framework for the `Restricted` annotation and associated Required Permissions. This removal follows approval of [NIP-24](https://issues.apache.org/jira/browse/NIP-24) deprecating the `Restricted` annotation, which was released in Apache NiFi API 2.8.0, and was incorporated in the release of Apache NiFi 2.9.0. The removal does not require any changes to existing installations on subsequent upgrades. The changes remove checking for the `Restricted` annotation on extension component classes and remove computation of required permissions from those classes. All other authorization checks remain, meaning that components with the `Restricted` annotation now fall under the same authorization requirements as any other component class. This initial set of changes is scoped to framework classes responsible for verifying restricted authorization, without involving any changes to REST API payloads, frontend features, or component classes. Changes to these other areas can be addressed independently after making these framework changes. Key changes include the following: - Removal of Restricted Components policies from the `FileAccessPolicyProvider` and `ResourceType` - Removal of Restricted interface methods from `ComponentAuthorizable` and implementations - Added checking for `/restricted-components` policies in `StandardAuthorizableLookup` for legacy policy definitions # Tracking Please complete the following tracking steps prior to pull request creation. ### Issue Tracking - [Apache NiFi Jira](https://issues.apache.org/jira/browse/NIFI) issue created ### Pull Request Tracking - Pull Request title starts with Apache NiFi Jira issue number, such as `NIFI-00000` - Pull Request commit message starts with Apache NiFi Jira issue number, as such `NIFI-00000` - Pull request contains [commits signed](https://docs.github.com/en/authentication/managing-commit-signature-verification/signing-commits) with a registered key indicating `Verified` status ### Pull Request Formatting - Pull Request based on current revision of the `main` branch - Pull Request refers to a feature branch with one commit containing changes # Verification Please indicate the verification steps performed prior to pull request creation. ### Build - [X] Build completed using `./mvnw clean install -P contrib-check` - [X] JDK 21 - [X] JDK 25 ### Licensing - [ ] New dependencies are compatible with the [Apache License 2.0](https://apache.org/licenses/LICENSE-2.0) according to the [License Policy](https://www.apache.org/legal/resolved.html) - [ ] New dependencies are documented in applicable `LICENSE` and `NOTICE` files ### Documentation - [ ] Documentation formatting appears as expected in rendered files -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
