Predefined controller-level policies for NiFi Registry
You can review the predefined Ranger policies for NiFi Registry to determine the appropriate policy to assign to a user.
The following table lists the pre-defined Ranger access policies for NiFi Registry. If you
create a custom policy, refer to the Resource Descriptor column in this
table to enter the value in the NiFi Registry Resource Identifier field on
the New Policy page.
Ranger controller-level policy | Description | Resource descriptor |
---|---|---|
Actuator | Allows users to access the Spring Boot Actuator end-points. | /actuator |
Buckets | Allows users to view and modify all buckets. | /buckets |
Policies | Allows users to view the policies for all components. | /policies |
Proxies | Allows NiFi Registry and Knox hosts to proxy user requests. Does not apply to users or user groups. | /proxy |
Swagger | Allows users to access the self-hosted Swagger UI. | /swagger |
Tenants | Allows users to view and modify user accounts and user groups. | /tenants |