[GitHub] [nifi] alopresto commented on issue #4099: NIFI-7170: Add option to disable anonymous authentication

alopresto commented on issue #4099: NIFI-7170: Add option to disable anonymous authentication URL: https://github.com/apache/nifi/pull/4099#issuecomment-612962685 Matt, can you explain in what scenario(s) a user would be able to authenticate as `anonymous`? My understanding is there is

[GitHub] [nifi] alopresto commented on issue #4099: NIFI-7170: Add option to disable anonymous authentication

alopresto commented on issue #4099: NIFI-7170: Add option to disable anonymous authentication URL: https://github.com/apache/nifi/pull/4099#issuecomment-612251616 Good catch Matt. Yes, I think we need to parse the proxied request until we get the ultimate origin of the request and

[GitHub] [nifi] alopresto commented on issue #4099: NIFI-7170: Add option to disable anonymous authentication

alopresto commented on issue #4099: NIFI-7170: Add option to disable anonymous authentication URL: https://github.com/apache/nifi/pull/4099#issuecomment-612146506 I don't think Nathan meant unit/integration tests. I suggested he create a custom `AnonymousAuthorizer` (basically mocking

[GitHub] [nifi] alopresto commented on issue #4099: NIFI-7170: Add option to disable anonymous authentication

alopresto commented on issue #4099: NIFI-7170: Add option to disable anonymous authentication URL: https://github.com/apache/nifi/pull/4099#issuecomment-594110779 Is there any code that prevents a valid user identity from being the string ``?