nifi-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Guillaume Pool <gp...@live.co.za>
Subject New Authorizations & Autorizers configuration
Date Sun, 15 May 2016 18:29:51 GMT
Hi Guys,

I am busy testing the current branch  (as at last Thursday) and trying to get the authorization
working in a clustered environment.

On my single instance test environment the configuration is working as expected.

In the clustered instance I get the following error when trying to connect to ncm.

{noformat}
2016-05-14 22:21:06,381 INFO [NiFi Web Server-324] o.a.n.w.s.NiFiAuthenticationFilter Attempting
request for (eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOiJndWlsbGF1bWUucG9vbEBTVVBFUkdSUC5ORVQiL      
                                                                                    CJpc3MiOiJLZXJiZXJvc1Byb3ZpZGVyIiwiYXVkIjoiS2VyYmVyb3NQcm92aWRlciIsInByZWZlcnJlZF91c2VybmFtZSI6Imd1aWxsYXVtZS5wb29sQFNVUEVSR1JQLk5FVCIsImtpZCI6MSwiZXhwIjoxNDYzMjk3NzE1LCJpYXQiOjE0N
                                                                                         
jMyNTQ1MTV9.GpvsRywu8tDXwNAlkgmllaPuXRtDm1IKXPWd5qIu43k) GET https://sv-hdpdf.hdp.supergrp.net:8443/nifi-api/process-groups/root/controller-services/ncm
(source ip: 10.150.0.2)
2016-05-14 22:21:06,382 INFO [NiFi Web Server-324] o.a.n.w.s.NiFiAuthenticationFilter Authentication
success for org.apache.nifi.web.security.token.NiFiAuthenticationToken@ffffffc4          
                                                                                : Principal:
org.apache.nifi.authorization.user.NiFiUserDetails@48e734a8; Credentials: [PROTECTED]; Authenticated:
true; Details: org.apache.nifi.authorization.user.NiFiUserDetails                        
                                                                  @48e734a8; Not granted any
authorities
2016-05-14 22:21:06,389 ERROR [NiFi Web Server-324] o.a.nifi.web.api.config.ThrowableMapper
An unexpected error has occurred: java.lang.NullPointerException. Returning Internal Ser 
                                                                                         ver
Error response.
java.lang.NullPointerException: null
        at org.apache.nifi.web.dao.impl.ComponentDAO.locateProcessGroup(ComponentDAO.java:61)
~[classes/:na]
        at org.apache.nifi.web.dao.impl.StandardProcessGroupDAO.getProcessGroup(StandardProcessGroupDAO.java:61)
~[classes/:na]
        at org.apache.nifi.web.dao.impl.StandardProcessGroupDAO$$FastClassBySpringCGLIB$$10a99b47.invoke(<generated>)
~[classes/:na]
        at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204) ~[spring-core-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:720)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:92)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:655)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.apache.nifi.web.dao.impl.StandardProcessGroupDAO$$EnhancerBySpringCGLIB$$5275080d.getProcessGroup(<generated>)
~[classes/:na]
        at org.apache.nifi.web.StandardNiFiServiceFacade.lambda$getGroup$46(StandardNiFiServiceFacade.java:583)
~[classes/:1.0.0-SNAPSHOT]
        at org.apache.nifi.web.revision.NaiveRevisionManager.get(NaiveRevisionManager.java:291)
~[nifi-web-optimistic-locking-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
        at org.apache.nifi.web.StandardNiFiServiceFacade.getGroup(StandardNiFiServiceFacade.java:583)
~[classes/:1.0.0-SNAPSHOT]
        at org.apache.nifi.web.StandardNiFiServiceFacade.getControllerServices(StandardNiFiServiceFacade.java:2404)
~[classes/:1.0.0-SNAPSHOT]
        at org.apache.nifi.web.StandardNiFiServiceFacade$$FastClassBySpringCGLIB$$358780e0.invoke(<generated>)
~[classes/:1.0.0-SNAPSHOT]
        at org.springframework.cglib.proxy.MethodProxy.invoke(MethodProxy.java:204) ~[spring-core-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.CglibAopProxy$CglibMethodInvocation.invokeJoinpoint(CglibAopProxy.java:720)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:157)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.aspectj.MethodInvocationProceedingJoinPoint.proceed(MethodInvocationProceedingJoinPoint.java:85)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.apache.nifi.web.NiFiServiceFacadeLock.getLock(NiFiServiceFacadeLock.java:150)
~[classes/:1.0.0-SNAPSHOT]
        at sun.reflect.GeneratedMethodAccessor73.invoke(Unknown Source) ~[na:na]
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
~[na:1.8.0_71]
        at java.lang.reflect.Method.invoke(Method.java:497) ~[na:1.8.0_71]
        at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethodWithGivenArgs(AbstractAspectJAdvice.java:621)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.aspectj.AbstractAspectJAdvice.invokeAdviceMethod(AbstractAspectJAdvice.java:610)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.aspectj.AspectJAroundAdvice.invoke(AspectJAroundAdvice.java:68)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:92)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:179)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.aop.framework.CglibAopProxy$DynamicAdvisedInterceptor.intercept(CglibAopProxy.java:655)
~[spring-aop-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.apache.nifi.web.StandardNiFiServiceFacade$$EnhancerBySpringCGLIB$$a5c71b74.getControllerServices(<generated>)
~[classes/:1.0.0-SNAPSHOT]
        at org.apache.nifi.web.api.ProcessGroupResource.getControllerServices(ProcessGroupResource.java:2577)
~[classes/:na]
        at sun.reflect.GeneratedMethodAccessor70.invoke(Unknown Source) ~[na:na]
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
~[na:1.8.0_71]
        at java.lang.reflect.Method.invoke(Method.java:497) ~[na:1.8.0_71]
        at com.sun.jersey.spi.container.JavaMethodInvokerFactory$1.invoke(JavaMethodInvokerFactory.java:60)
~[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.model.method.dispatch.AbstractResourceMethodDispatchProvider$ResponseOutInvoker._dispatch(AbstractResourceMethodDispatchProvider.java:205)
~[j                                                                                      
    ersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:75)
~[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:302)
~[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:147)
~[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:108)
~[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:147)
~[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:84)
~[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:1542)
[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:1473)
[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:1419)
[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:1409)
[jersey-server-1.19.jar:1.19]
        at com.sun.jersey.spi.container.servlet.WebComponent.service(WebComponent.java:409)
[jersey-servlet-1.19.jar:1.19]
        at com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:558)
[jersey-servlet-1.19.jar:1.19]
        at com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:733)
[jersey-servlet-1.19.jar:1.19]
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) [javax.servlet-api-3.1.0.jar:3.1.0]
        at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:808) [jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1669)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.apache.nifi.web.filter.NodeRequestFilter.doFilter(NodeRequestFilter.java:69)
[classes/:na]
        at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.servlets.UserAgentFilter.doFilter(UserAgentFilter.java:83) [jetty-servlets-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.servlets.GzipFilter.doFilter(GzipFilter.java:364) [jetty-servlets-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.apache.nifi.web.filter.RequestLogger.doFilter(RequestLogger.java:66) [classes/:na]
        at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:316)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.invoke(FilterSecurityInterceptor.java:126)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEA                                       
                                                   SE]
        at org.springframework.security.web.access.intercept.FilterSecurityInterceptor.doFilter(FilterSecurityInterceptor.java:90)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELE                                        
                                                  ASE]
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.springframework.security.web.session.SessionManagementFilter.doFilter(SessionManagementFilter.java:122)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.springframework.security.web.authentication.AnonymousAuthenticationFilter.doFilter(AnonymousAuthenticationFilter.java:111)
[spring-security-web-4.0.3.RELEASE.jar:4.0                                               
                                           .3.RELEASE]
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.apache.nifi.web.security.NiFiAuthenticationFilter.doFilter(NiFiAuthenticationFilter.java:58)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.apache.nifi.web.security.NiFiAuthenticationFilter.authenticate(NiFiAuthenticationFilter.java:82)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
        at org.apache.nifi.web.security.NiFiAuthenticationFilter.doFilter(NiFiAuthenticationFilter.java:56)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.apache.nifi.web.security.NiFiAuthenticationFilter.authenticate(NiFiAuthenticationFilter.java:82)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
        at org.apache.nifi.web.security.NiFiAuthenticationFilter.doFilter(NiFiAuthenticationFilter.java:56)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.apache.nifi.web.security.node.NodeAuthorizedUserFilter.doFilter(NodeAuthorizedUserFilter.java:113)
[nifi-web-security-1.0.0-SNAPSHOT.jar:1.0.0-SNAPSHOT]
        at org.springframework.security.web.FilterChainProxy$VirtualFilterChain.doFilter(FilterChainProxy.java:330)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:213)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:176)
[spring-security-web-4.0.3.RELEASE.jar:4.0.3.RELEASE]
        at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:346)
[spring-web-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.springframework.web.filter.DelegatingFilterProxy.doFilter(DelegatingFilterProxy.java:262)
[spring-web-4.2.4.RELEASE.jar:4.2.4.RELEASE]
        at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.apache.nifi.web.filter.ThreadLocalFilter.doFilter(ThreadLocalFilter.java:38)
[classes/:na]
        at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.apache.nifi.web.filter.TimerFilter.doFilter(TimerFilter.java:52) [classes/:na]
        at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1652)
[jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:585) [jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) [jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:577) [jetty-security-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:223)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1127)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:515) [jetty-servlet-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:185)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1061)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) [jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:110)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:97)
[jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.Server.handle(Server.java:499) [jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:310) [jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:257) [jetty-server-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.io.AbstractConnection$2.run(AbstractConnection.java:540) [jetty-io-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:635)
[jetty-util-9.2.11.v20150529.jar:9.2.11.v20150529]
        at org.eclipse.jetty.util.thread.QueuedThreadPool$3.run(QueuedThreadPool.java:555)
[jetty-util-9.2.11.v20150529.jar:9.2.11.v20150529]
        at java.lang.Thread.run(Thread.java:745) [na:1.8.0_71]
2016-05-14 22:21:06,510 INFO [NiFi Web Server-321] o.a.n.w.s.NiFiAuthenticationFilter Attempting
request for (eyJhbGciOiJIUzI1NiJ9.eyJzdWIiOiJndWlsbGF1bWUucG9vbEBTVVBFUkdSUC5ORVQiL      
                                                                                    CJpc3MiOiJLZXJiZXJvc1Byb3ZpZGVyIiwiYXVkIjoiS2VyYmVyb3NQcm92aWRlciIsInByZWZlcnJlZF91c2VybmFtZSI6Imd1aWxsYXVtZS5wb29sQFNVUEVSR1JQLk5FVCIsImtpZCI6MSwiZXhwIjoxNDYzMjk3NzE1LCJpYXQiOjE0N
                                                                                         
jMyNTQ1MTV9.GpvsRywu8tDXwNAlkgmllaPuXRtDm1IKXPWd5qIu43k) GET https://sv-hdpdf.hdp.supergrp.net:8443/nifi-api/controller/reporting-tasks/node
(source ip: 10.150.0.2)
2016-05-14 22:21:06,511 INFO [NiFi Web Server-321] o.a.n.w.s.NiFiAuthenticationFilter Authentication
success for org.apache.nifi.web.security.token.NiFiAuthenticationToken@ffffffc4          
                                                                                : Principal:
org.apache.nifi.authorization.user.NiFiUserDetails@55a61dd5; Credentials: [PROTECTED]; Authenticated:
true; Details: org.apache.nifi.authorization.user.NiFiUserDetails                        
                                                                  @55a61dd5; Not granted any
authorities{noformat}

Has anyone tried using this in a clustered environment and is there anything additional that
needs to be granted access to?

Thanks


Sent from Mail for Windows 10


Mime
View raw message