https://github.com/zeroae/nifi-cognito-bundle

NiFi Authorization Extension using AWS Cognito
https://github.com/zeroae/nifi-cognito-bundle

cognito nifi nifi-registry

Last synced: 3 days ago
JSON representation

NiFi Authorization Extension using AWS Cognito

• Host: GitHub
• URL: https://github.com/zeroae/nifi-cognito-bundle
• Owner: zeroae
• Created: 2022-04-10T18:44:09.000Z (almost 3 years ago)
• Default Branch: main
• Last Pushed: 2022-08-11T18:20:45.000Z (over 2 years ago)
• Last Synced: 2024-11-10T14:13:01.311Z (2 months ago)
• Topics: cognito, nifi, nifi-registry
• Language: Java
• Homepage:
• Size: 128 KB
• Stars: 0
• Watchers: 0
• Forks: 0
• Open Issues: 3
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

        
# nifi-cognito-bundle

NiFi Authorization Extension using AWS Cognito

## Build/Install Instructions

1. Ensure you have AWS Credentials available

    ```

    mvn clean install

    ```

2. The binaries are located in `nifi-cognito-nar/target` and `nifi-registry-cognito-assembly`

## Usage

1. Add new `userGroupProvider` and `accessPolicyProvider` elements to `authorizers.xml`.

    ```xml

    

        

        

            cognito-configurable-user-group-provider

            co.zeroae.nifi.authorization.cognito.CognitoUserGroupProvider

            

            ./conf/bootstrap-aws.conf

            us-east-1_XXXXXXX

            50

            CN=administrator, OU=NIFI

            CN=localhost, OU=NIFI

            CN=localhost2, OU=NIFI

            Cluster

            

                UUID:2,

                UUID:3

            

        

        

        

            cognito-access-policy-provider

            co.zeroae.nifi.authorization.cognito.CognitoAccessPolicyProvider

            

            ./conf/bootstrap-aws.conf

            us-east-1_edD0TJEd0

            cognito-configurable-user-group-provider

            CN=administrator, OU=NIFI

            Cluster

        

    

    ```

   

2. Updadte `nifi.properties` 

    ```properties

    nifi.nar.library.directory.cognito=/nifi-cognito-bundle/nifi-cognito-nar/target

    nifi.security.identity.mapping.pattern.dn=^CN=(.*?), OU=(.*?)$

    nifi.security.identity.mapping.value.dn=$1@$2

    nifi.security.identity.mapping.transform.dn=LOWER

    ```

3. Update `nifi-registry.properties`

    ```properties

    nifi.registry.extension.dir.cognito=/nifi-cognito-bundle/nifi-registry-cognito-assembly/target/cognito/lib

    nifi.registry.security.identity.mapping.pattern.dn=^CN=(.*?), OU=(.*?)$

    nifi.registry.security.identity.mapping.value.dn=$1@$2

    nifi.registry.security.identity.mapping.transform.dn=LOWER

    ```

   

4. Start NiFi and the Registry