nifi-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Andy LoPresto <>
Subject Re: Why is there no SSL Context Service for the GetSQS Processor?
Date Mon, 10 Jun 2019 18:17:04 GMT
Hi John,

You’re right, it looks like the absence of an SSL Context Service was an oversight from
the initial contributor. If you’re comfortable opening a Jira ticket [1] and documenting
this need, we can start working on it. Thanks for bringing this to our attention. 

In the meantime, if you need an immediate fix, I would suggest using an ExecuteScript processor
using Groovy with the AWS Java SDK (basically copy/paste from the existing GetSQS processor
body) (if you need help with the code, let us know). 

The certificate issue would likely only be NiFi trusting the certificate presented by the
AWS SQS instance; unless you have mutual authentication TLS enabled (which is uncommon in
AWS for client connections), NiFi isn’t presenting a certificate for the connection handshake


Andy LoPresto
PGP Fingerprint: 70EC B3E5 98A6 5A3F D3C4  BACE 3C6E F65B 2F7D EF69

> On Jun 10, 2019, at 11:03 AM, <>
> Hello nice nifi dev folks,
> I'm trying to use GetSQS to pull SQS messages from an SQS queue whose URL begins with
> I get the following error when I run the processor: "Unable to execute HTTP request:
Remote host closed connection during handshake"
> And I'm having a hard time figuring out where nifi is getting its certificates, or even
which certificate it's presenting, if any.
> It's a curious thing that the GetSQS processor does NOT let you choose an SSL Context
Service, but other AWS-related processors such as "FetchS3Object" do have the "SSL Context
Service" property.
> I have valid AWS credentials. I can "FetchS3Object" all day long. But this GetSQS processor
isn't working at all and I suspect it's because of this missing property.
> Does anyone know why it's missing or how I can work around it?
> Thanks!
> John

  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message