A C D E F G H I L N O P R S T U V X

A

ANONYMOUS_KEY - Static variable in class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

anonymousUserFilterLogger - Static variable in class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

applyAnonymousForThisRequest(HttpServletRequest) - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

Only supports anonymous users for non-secure requests or one way ssl.

authenticationDetailsSource - Variable in class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

C

certificateExtractor - Variable in class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

certificateExtractor - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

CertificateStatusException - Exception in org.apache.nifi.web.security.x509.ocsp

Represents the exceptional case when a users certificate status is not GOOD.

CertificateStatusException() - Constructor for exception org.apache.nifi.web.security.x509.ocsp.CertificateStatusException

CertificateStatusException(String) - Constructor for exception org.apache.nifi.web.security.x509.ocsp.CertificateStatusException

CertificateStatusException(String, Throwable) - Constructor for exception org.apache.nifi.web.security.x509.ocsp.CertificateStatusException

CertificateStatusException(Throwable) - Constructor for exception org.apache.nifi.web.security.x509.ocsp.CertificateStatusException

CertificateStatusException(String, Throwable, boolean, boolean) - Constructor for exception org.apache.nifi.web.security.x509.ocsp.CertificateStatusException

certificateValidator - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

client - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

commence(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.apache.nifi.web.security.authentication.NiFiAuthenticationEntryPoint

Always returns a 403 error code to the client.

CONNECT_TIMEOUT - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

CONTENT_TYPE_HEADER - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

createAuthentication(HttpServletRequest) - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

D

DnUtils - Class in org.apache.nifi.web.security

DnUtils() - Constructor for class org.apache.nifi.web.security.DnUtils

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

doFilter(ServletRequest, ServletResponse, FilterChain) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

Override doFilter in order to properly handle when users could not be authenticated.

E

equals(Object) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest

extractClientCertificate(HttpServletRequest) - Method in class org.apache.nifi.web.security.x509.X509CertificateExtractor

Extract the client certificate from the specified HttpServletRequest or null if none is specified.

extractPrincipal(X509Certificate) - Method in class org.apache.nifi.web.security.x509.SubjectDnX509PrincipalExtractor

Extracts the principal from the specified client certificate.

F

formatProxyDn(String) - Static method in class org.apache.nifi.web.security.DnUtils

Formats the specified DN to be set as a HTTP header using well known conventions.

G

getAuthorities() - Method in class org.apache.nifi.web.security.user.NiFiUserDetails

Returns the authorities that this NiFi user has.

getAuthorities() - Static method in class org.apache.nifi.web.security.user.NiFiUserUtils

Return the authorities for the current user.

getIssuerCertificate(X509Certificate[]) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

Gets the issuer certificate.

getIssuerCertificate() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest

getNiFiUser() - Method in class org.apache.nifi.web.security.user.NiFiUserDetails

Get the user for this UserDetails.

getNiFiUser() - Static method in class org.apache.nifi.web.security.user.NiFiUserUtils

Returns the current NiFiUser or null if the current user is not a NiFiUser.

getNiFiUserDetails(String) - Method in class org.apache.nifi.web.security.authorization.NiFiAuthorizationService

Loads the user details for the specified dn.

getOcspCertificate(NiFiProperties) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

Loads the ocsp certificate if specified.

getOcspStatus(OcspRequest) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

Gets the OCSP status for the specified subject and issuer certificates.

getPassword() - Method in class org.apache.nifi.web.security.user.NiFiUserDetails

Not used.

getPreAuthenticatedCredentials(HttpServletRequest) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

getPreAuthenticatedPrincipal(HttpServletRequest) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

getResponseStatus() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

getSubjectCertificate(X509Certificate[]) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

Gets the subject certificate.

getSubjectCertificate() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest

getTrustedCAs(NiFiProperties) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

Loads the trusted certificate authorities according to the specified properties.

getTrustedResponderCertificate(X509Certificate, X509Certificate) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

Gets the trusted responder certificate.

getUsername() - Method in class org.apache.nifi.web.security.user.NiFiUserDetails

Gets the user name.

getValidationStatus() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

getVerificationStatus() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

getXProxiedEntitiesChain(HttpServletRequest) - Static method in class org.apache.nifi.web.security.DnUtils

Gets the X-ProxiedEntitiesChain from the specified request.

H

handleMissingCertificate(HttpServletRequest, HttpServletResponse) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

Handles requests that failed because they were bad input.

handleUnsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

Handles requests that were unable to be authorized.

handleUserServiceError(HttpServletRequest, HttpServletResponse, int, String) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

Handles requests that failed because of a user service error.

hashCode() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspRequest

HTTPS - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

I

isAccountNonExpired() - Method in class org.apache.nifi.web.security.user.NiFiUserDetails

isAccountNonLocked() - Method in class org.apache.nifi.web.security.user.NiFiUserDetails

isCredentialsNonExpired() - Method in class org.apache.nifi.web.security.user.NiFiUserDetails

isEnabled() - Method in class org.apache.nifi.web.security.user.NiFiUserDetails

isNewAccountRequest(HttpServletRequest) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

Determines if the specified request is attempting to register a new user account.

issuerCertificate - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspRequest

L

loadUserByUsername(String) - Method in class org.apache.nifi.web.security.authorization.NiFiAuthorizationService

Loads the user details for the specified dn.

logger - Static variable in class org.apache.nifi.web.security.authentication.NiFiAuthenticationEntryPoint

logger - Static variable in class org.apache.nifi.web.security.authorization.NiFiAuthorizationService

LOGGER - Static variable in class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

logger - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

logger - Variable in class org.apache.nifi.web.security.x509.X509CertificateExtractor

N

NiFiAnonymousUserFilter - Class in org.apache.nifi.web.security.anonymous

Custom AnonymouseAuthenticationFilter used to grant additional authorities depending on the current operating mode.

NiFiAnonymousUserFilter() - Constructor for class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

NiFiAuthenticationEntryPoint - Class in org.apache.nifi.web.security.authentication

This is our own implementation of org.springframework.security.web.AuthenticationEntryPoint that allows us to send the response to the client exactly how we want to and log the results.

NiFiAuthenticationEntryPoint() - Constructor for class org.apache.nifi.web.security.authentication.NiFiAuthenticationEntryPoint

NiFiAuthorizationService - Class in org.apache.nifi.web.security.authorization

UserDetailsService that will verify user identity and grant user authorities.

NiFiAuthorizationService() - Constructor for class org.apache.nifi.web.security.authorization.NiFiAuthorizationService

NiFiUserDetails - Class in org.apache.nifi.web.security.user

User details for a NiFi user.

NiFiUserDetails(NiFiUser) - Constructor for class org.apache.nifi.web.security.user.NiFiUserDetails

Creates a new NiFiUserDetails.

NiFiUserUtils - Class in org.apache.nifi.web.security.user

Utility methods for retrieving information about the current application user.

NiFiUserUtils() - Constructor for class org.apache.nifi.web.security.user.NiFiUserUtils

NodeAuthorizedUserFilter - Class in org.apache.nifi.web.security.authorization

Custom filter to extract a user's authorities from the request where the user was authenticated by the cluster manager and populate the threadlocal with the authorized user.

NodeAuthorizedUserFilter() - Constructor for class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

O

OCSP_REQUEST_CONTENT_TYPE - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

ocspCache - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

OcspCertificateValidator - Class in org.apache.nifi.web.security.x509.ocsp

OcspCertificateValidator(NiFiProperties) - Constructor for class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

OcspRequest - Class in org.apache.nifi.web.security.x509.ocsp

A request to verify/validate the specified subject certificate via OCSP.

OcspRequest(X509Certificate, X509Certificate) - Constructor for class org.apache.nifi.web.security.x509.ocsp.OcspRequest

OcspStatus - Class in org.apache.nifi.web.security.x509.ocsp

OcspStatus() - Constructor for class org.apache.nifi.web.security.x509.ocsp.OcspStatus

OcspStatus.ResponseStatus - Enum in org.apache.nifi.web.security.x509.ocsp

OcspStatus.ResponseStatus() - Constructor for enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus

OcspStatus.ValidationStatus - Enum in org.apache.nifi.web.security.x509.ocsp

OcspStatus.ValidationStatus() - Constructor for enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus

OcspStatus.VerificationStatus - Enum in org.apache.nifi.web.security.x509.ocsp

OcspStatus.VerificationStatus() - Constructor for enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus

org.apache.nifi.web.security - package org.apache.nifi.web.security

org.apache.nifi.web.security.anonymous - package org.apache.nifi.web.security.anonymous

org.apache.nifi.web.security.authentication - package org.apache.nifi.web.security.authentication

org.apache.nifi.web.security.authorization - package org.apache.nifi.web.security.authorization

org.apache.nifi.web.security.user - package org.apache.nifi.web.security.user

org.apache.nifi.web.security.x509 - package org.apache.nifi.web.security.x509

org.apache.nifi.web.security.x509.ocsp - package org.apache.nifi.web.security.x509.ocsp

P

principalExtractor - Variable in class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

principalExtractor - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

properties - Variable in class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

properties - Variable in class org.apache.nifi.web.security.authorization.NiFiAuthorizationService

properties - Variable in class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

properties - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

PROXY_ENTITIES_ACCEPTED - Static variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

PROXY_ENTITIES_CHAIN - Static variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

PROXY_ENTITIES_DETAILS - Static variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

PROXY_USER_DETAILS - Static variable in class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

proxyChainPattern - Static variable in class org.apache.nifi.web.security.DnUtils

R

READ_TIMEOUT - Static variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

responseStatus - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

S

setCertificateValidator(OcspCertificateValidator) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

setProperties(NiFiProperties) - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

setProperties(NiFiProperties) - Method in class org.apache.nifi.web.security.authorization.NiFiAuthorizationService

setProperties(NiFiProperties) - Method in class org.apache.nifi.web.security.authorization.NodeAuthorizedUserFilter

setProperties(NiFiProperties) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

setResponseStatus(OcspStatus.ResponseStatus) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

setUserService(UserService) - Method in class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

setUserService(UserService) - Method in class org.apache.nifi.web.security.authorization.NiFiAuthorizationService

setUserService(UserService) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

setValidationStatus(OcspStatus.ValidationStatus) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

setVerificationStatus(OcspStatus.VerificationStatus) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

subjectCertificate - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspRequest

SubjectDnX509PrincipalExtractor - Class in org.apache.nifi.web.security.x509

Principal extractor for extracting a DN.

SubjectDnX509PrincipalExtractor() - Constructor for class org.apache.nifi.web.security.x509.SubjectDnX509PrincipalExtractor

successfulAuthentication(HttpServletRequest, HttpServletResponse, Authentication) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

Sets the response headers for successful proxied requests.

T

tokenizeProxyChain(String) - Static method in class org.apache.nifi.web.security.DnUtils

Tokenizes the specified proxy chain.

toString() - Method in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

trustedCAs - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

U

unsuccessfulAuthentication(HttpServletRequest, HttpServletResponse, AuthenticationException) - Method in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

Sets the response headers for unsuccessful proxied requests.

UntrustedProxyException - Exception in org.apache.nifi.web.security

UntrustedProxyException(String) - Constructor for exception org.apache.nifi.web.security.UntrustedProxyException

UntrustedProxyException(String, Throwable) - Constructor for exception org.apache.nifi.web.security.UntrustedProxyException

user - Variable in class org.apache.nifi.web.security.user.NiFiUserDetails

userService - Variable in class org.apache.nifi.web.security.anonymous.NiFiAnonymousUserFilter

userService - Variable in class org.apache.nifi.web.security.authorization.NiFiAuthorizationService

userService - Variable in class org.apache.nifi.web.security.x509.X509AuthenticationFilter

V

validate(HttpServletRequest) - Method in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

Validates the specified certificate using OCSP if configured.

validationAuthorityURI - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspCertificateValidator

validationStatus - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

valueOf(String) - Static method in enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus

Returns the enum constant of this type with the specified name.

valueOf(String) - Static method in enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus

Returns the enum constant of this type with the specified name.

valueOf(String) - Static method in enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus

Returns the enum constant of this type with the specified name.

values() - Static method in enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.ResponseStatus

Returns an array containing the constants of this enum type, in the order they are declared.

values() - Static method in enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.ValidationStatus

Returns an array containing the constants of this enum type, in the order they are declared.

values() - Static method in enum org.apache.nifi.web.security.x509.ocsp.OcspStatus.VerificationStatus

Returns an array containing the constants of this enum type, in the order they are declared.

verificationStatus - Variable in class org.apache.nifi.web.security.x509.ocsp.OcspStatus

X

X509AuthenticationFilter - Class in org.apache.nifi.web.security.x509

Custom X509 filter that will inspect the HTTP headers for a proxied user before extracting the user details from the client certificate.

X509AuthenticationFilter() - Constructor for class org.apache.nifi.web.security.x509.X509AuthenticationFilter

X509CertificateExtractor - Class in org.apache.nifi.web.security.x509

Extracts client certificates from Http requests.

X509CertificateExtractor() - Constructor for class org.apache.nifi.web.security.x509.X509CertificateExtractor

A C D E F G H I L N O P R S T U V X