Configuring single user authentication
Single user authentication is NiFi’s most basic authentication option, sufficient for individual development clusters and also production clusters where flows are deployed in a controlled manner, such as continuous integration (CI) or site reliability engineering (SRE). A single user is granted all permissions on the NiFi cluster, no other users can be configured.
- Configuration snippet for letting NiFi generate the password.
You find the generated username and password in the app-log container logs.spec: security: singleUserAuth: enabled: true
- Configuration snippet for setting NiFi username and password using a Secret:
spec:
security:
singleUserAuth:
enabled: true
credentialsSecretName: [***YOUR CREDENTIALS SECRET***]
Replace:
- [***YOUR CREDENTIALS SECRET***]
-
Create your credentials secret with the following command:
kubectl create secret generic [***YOUR CREDENTIALS SECRET***] --from-literal=username=[***YOUR USER NAME***] --from-literal=password=[***YOUR PASSWORD***]
Replace:
- [***YOUR CREDENTIALS SECRET***]
- with the desired credentials secret name
- [***YOUR USER NAME***]
- with the generated username in the app-log container logs
- [***YOUR PASSWORD***]
- with the generated password in the app-log container logs