Example

In the NiFi binary distribution, the login-identity-providers.xml file comes with a provider with the identifier ldap-provider and a property called Manager Password:

            <provider>
        <identifier>ldap-provider</identifier>
        <class>org.apache.nifi.ldap.LdapProvider</class>
        ...
        <property name="Manager Password"/>
        ...
    </provider>
      

Similarly, the authorizers.xml file comes with a ldap-user-group-provider and a property also called Manager Password:

             <userGroupProvider>
        <identifier>ldap-user-group-provider</identifier>
        <class>org.apache.nifi.ldap.tenants.LdapUserGroupProvider</class>
        ...
        <property name="Manager Password"/>
        ...
    </userGroupProvider>
      

If the Manager Password is desired to reference the same exact property (e.g., the same Secret in the HashiCorp Vault K/V provider) but still be distinguished from any other Manager Password property unrelated to LDAP, the following mapping could be added:

         nifi.bootstrap.protection.context.mapping.ldap=ldap-.*
      

This would cause both of the above to be assigned a context of "ldap/Manager Password" instead of "default/Manager Password".