Configuring single user authentication

Single user authentication is NiFi’s most basic authentication option, sufficient for individual development clusters and also production clusters where flows are deployed in a controlled manner, such as continuous integration (CI) or site reliability engineering (SRE). A single user is granted all permissions on the NiFi cluster, no other users can be configured.

  • Configuration snippet for letting NiFi generate the password.
    spec:
      security:
        singleUserAuth:
          enabled: true
    You find the generated username and password in the app-log container logs.
  • Configuration snippet for setting NiFi username and password using a Secret:
spec:
  security:
    singleUserAuth:
      enabled: true
      credentialsSecretName: [***YOUR CREDENTIALS SECRET***]

Replace:

[***YOUR CREDENTIALS SECRET***]

Create your credentials secret with the following command:

kubectl create secret generic [***YOUR CREDENTIALS SECRET***] --from-literal=username=[***YOUR USER NAME***] --from-literal=password=[***YOUR PASSWORD***]

Replace:

[***YOUR CREDENTIALS SECRET***]
with the desired credentials secret name
[***YOUR USER NAME***]
with the generated username in the app-log container logs
[***YOUR PASSWORD***]
with the generated password in the app-log container logs