nifi-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Matt Gilman <matt.c.gil...@gmail.com>
Subject Re: New Authorizations & Autorizers configuration
Date Sun, 15 May 2016 18:51:59 GMT
Hi,

Thanks for writing in. The master branch is undergoing substantial work in preparation for
our 1.0.0 release. I would recommend working off the 0.x branch (which is still being released
regularly) until development on master settles down. Thanks.

Matt

Sent from my iPhone

> On May 15, 2016, at 2:29 PM, Guillaume Pool <gpool@live.co.za> wrote:
> 
> Hi Guys,
>  
> I am busy testing the current branch  (as at last Thursday) and trying to get the authorization
working in a clustered environment.
>  
> On my single instance test environment the configuration is working as expected.
>  
> In the clustered instance I get the following error when trying to connect to ncm.
>  
> {noformat}
> 2016-05-14 22:21:06,381 INFO [NiFi Web Server-324] o.a.n.w.s.NiFiAuthenticationFilter
Attempting request for (eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOiJndWlsbGF1bWUucG9vbEBTVVBFUkdSUC5ORVQiL
                                                                                         
CJpc3MiOiJLZXJiZXJvc1Byb3ZpZGVyIiwiYXVkIjoiS2VyYmVyb3NQcm92aWRlciIsInByZWZlcnJlZF91c2VybmFtZSI6Imd1aWxsYXVtZS5wb29sQFNVUEVSR1JQLk5FVCIsImtpZCI6MSwiZXhwIjoxNDYzMjk3NzE1LCJpYXQiOjE0N
                                                                                         
jMyNTQ1MTV9.GpvsRywu8tDXwNAlkgmllaPuXRtDm1IKXPWd5qIu43k) GET https://sv-hdpdf.hdp.supergrp.net:8443/nifi-api/process-groups/root/controller-services/ncm
(source ip: 10.150.0.2)
> 2016-05-14 22:21:06,382 INFO [NiFi Web Server-324] o.a.n.w.s.NiFiAuthenticationFilter
Authentication success for org.apache.nifi.web.security.token.NiFiAuthenticationToken@ffffffc4
                                                                                         
: Principal: org.apache.nifi.authorization.user.NiFiUserDetails@48e734a8; Credentials: [PROTECTED];
Authenticated: true; Details: org.apache.nifi.authorization.user.NiFiUserDetails         
                                                                                 @48e734a8;
Not granted any authorities
> 2016-05-14 22:21:06,389 ERROR [NiFi Web Server-324] o.a.nifi.web.api.config.ThrowableMapper
An unexpected error has occurred: java.lang.NullPointerException. Returning Internal Ser 
                                                                                         ver
Error response.
> java.lang.NullPointerException: null
>         at org.apache.nifi.web.dao.impl.ComponentDAO.locateProcessGroup(ComponentDAO.java:61)
~[classes/:na]
>         at org.apache.nifi.web.dao.impl.StandardProcessGroupDAO.getProcessGroup(StandardProcessGroupDAO.java:61)
~[classes/:na]
>         at org.apache.nifi.web.dao.impl.StandardProcessGroupDAO$$FastClassBySpringCGLIB$$10a99b47.invoke(<generated>)
~[classes/:na]
>         at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204) ~[spring-core-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:720)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:92)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:655)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.apache.nifi.web.dao.impl.StandardProcessGroupDAO$$EnhancerBySpringCGLIB$$5275080d.getProcessGroup(<generated>)
~[classes/:na]
>         at org.apache.nifi.web.StandardNiFiServiceFacade.lambda$getGroup$46(StandardNiFiServiceFacade.java:583)
~[classes/:1.0.0-SNAPSHOT]
>         at org.apache.nifi.web.revision.NaiveRevisionManager.get(NaiveRevisionManager.java:291)
~[nifi-web-optimistic-locking-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
>         at org.apache.nifi.web.StandardNiFiServiceFacade.getGroup(StandardNiFiServiceFacade.java:583)
~[classes/:1.0.0-SNAPSHOT]
>         at org.apache.nifi.web.StandardNiFiServiceFacade.getControllerServices(StandardNiFiServiceFacade.java:2404)
~[classes/:1.0.0-SNAPSHOT]
>         at org.apache.nifi.web.StandardNiFiServiceFacade$$FastClassBySpringCGLIB$$358780e0.invoke(<generated>)
~[classes/:1.0.0-SNAPSHOT]
>         at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204) ~[spring-core-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:720)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:85)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.apache.nifi.web.NiFiServiceFacadeLock.getLock(NiFiServiceFacadeLock.java:150)
~[classes/:1.0.0-SNAPSHOT]
>         at sun.reflect.GeneratedMethodAccessor73.invoke(Unknown Source) ~[na:na]
>         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
~[na:1.8.0_71]
>         at java.lang.reflect.Method.invoke(Method.java:497) ~[na:1.8.0_71]
>         at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:621)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:610)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:68)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:92)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:655)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.apache.nifi.web.StandardNiFiServiceFacade$$EnhancerBySpringCGLIB$$a5c71b74.getControllerServices(<generated>)
~[classes/:1.0.0-SNAPSHOT]
>         at org.apache.nifi.web.api.ProcessGroupResource.getControllerServices(ProcessGroupResource.java:2577)
~[classes/:na]
>         at sun.reflect.GeneratedMethodAccessor70.invoke(Unknown Source) ~[na:na]
>         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
~[na:1.8.0_71]
>         at java.lang.reflect.Method.invoke(Method.java:497) ~[na:1.8.0_71]
>         at com.sun.jersey.spi.container.JavaMethodInvokerFactory$1.invoke(JavaMethodInvokerFactory.java:60)
~[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.model.method.dispatch.AbstractResourceMethodDispatchProvider$ResponseOutInvoker._dispatch(AbstractResourceMethodDispatchProvider.java:205)
~[j                                                                                      
    ersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:75)
~[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:302)
~[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:147)
~[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:108)
~[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:147)
~[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:84)
~[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:1542)
[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:1473)
[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:1419)
[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:1409)
[jersey-server-1.19.jar:1.19]
>         at com.sun.jersey.spi.container.servlet.WebComponent.service(WebComponent.java:409)
[jersey-servlet-1.19.jar:1.19]
>         at com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:558)
[jersey-servlet-1.19.jar:1.19]
>         at com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:733)
[jersey-servlet-1.19.jar:1.19]
>         at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) [javax.servlet-api-3.1.0.jar:3.1.0]
>         at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:808) [jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1669)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.apache.nifi.web.filter.NodeRequestFilter.doFilter(NodeRequestFilter.java:69)
[classes/:na]
>         at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.servlets.UserAgentFilter.doFilter(UserAgentFilter.java:83)
[jetty-servlets-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.servlets.GzipFilter.doFilter(GzipFilter.java:364) [jetty-servlets-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.apache.nifi.web.filter.RequestLogger.doFilter(RequestLogger.java:66) [classes/:na]
>         at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:316)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:126)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEA                                       
                                                   SE]
>         at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:90)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELE                                        
                                                  ASE]
>         at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:122)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:111)
[spring-security-web-4.0.3.RELEASE.jar:4.0                                               
                                           .3.RELEASE]
>         at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.apache.nifi.web.security.NiFiAuthenticationFilter.doFilter(NiFiAuthenticationFilter.java:58)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
>         at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.apache.nifi.web.security.NiFiAuthenticationFilter.authenticate(NiFiAuthenticationFilter.java:82)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
>         at org.apache.nifi.web.security.NiFiAuthenticationFilter.doFilter(NiFiAuthenticationFilter.java:56)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
>         at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.apache.nifi.web.security.NiFiAuthenticationFilter.authenticate(NiFiAuthenticationFilter.java:82)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
>         at org.apache.nifi.web.security.NiFiAuthenticationFilter.doFilter(NiFiAuthenticationFilter.java:56)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
>         at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.apache.nifi.web.security.node.NodeAuthorizedUserFilter.doFilter(NodeAuthorizedUserFilter.java:113)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
>         at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:213)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:176)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
>         at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346)
[spring-web-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:262)
[spring-web-4.2.4.RELEASE.jar:4.2.4.RELEASE]
>         at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.apache.nifi.web.filter.ThreadLocalFilter.doFilter(ThreadLocalFilter.java:38)
[classes/:na]
>         at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.apache.nifi.web.filter.TimerFilter.doFilter(TimerFilter.java:52) [classes/:na]
>         at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:585)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:577)
[jetty-security-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:223)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1127)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:515)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:185)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1061)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:110)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.Server.handle(Server.java:499) [jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:310) [jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:257)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.io.AbstractConnection$2.run(AbstractConnection.java:540)
[jetty-io-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:635)
[jetty-util-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:555)
[jetty-util-9.2.11.v20150529.jar:9.2.11.v20150529]
>         at java.lang.Thread.run(Thread.java:745) [na:1.8.0_71]
> 2016-05-14 22:21:06,510 INFO [NiFi Web Server-321] o.a.n.w.s.NiFiAuthenticationFilter
Attempting request for (eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOiJndWlsbGF1bWUucG9vbEBTVVBFUkdSUC5ORVQiL
                                                                                         
CJpc3MiOiJLZXJiZXJvc1Byb3ZpZGVyIiwiYXVkIjoiS2VyYmVyb3NQcm92aWRlciIsInByZWZlcnJlZF91c2VybmFtZSI6Imd1aWxsYXVtZS5wb29sQFNVUEVSR1JQLk5FVCIsImtpZCI6MSwiZXhwIjoxNDYzMjk3NzE1LCJpYXQiOjE0N
                                                                                         
jMyNTQ1MTV9.GpvsRywu8tDXwNAlkgmllaPuXRtDm1IKXPWd5qIu43k) GET https://sv-hdpdf.hdp.supergrp.net:8443/nifi-api/controller/reporting-tasks/node
(source ip: 10.150.0.2)
> 2016-05-14 22:21:06,511 INFO [NiFi Web Server-321] o.a.n.w.s.NiFiAuthenticationFilter
Authentication success for org.apache.nifi.web.security.token.NiFiAuthenticationToken@ffffffc4
                                                                                         
: Principal: org.apache.nifi.authorization.user.NiFiUserDetails@55a61dd5; Credentials: [PROTECTED];
Authenticated: true; Details: org.apache.nifi.authorization.user.NiFiUserDetails         
                                                                                 @55a61dd5;
Not granted any authorities{noformat}
>  
> Has anyone tried using this in a clustered environment and is there anything additional
that needs to be granted access to?
>  
> Thanks
>  
>  
> Sent from Mail for Windows 10
>  

Mime
View raw message