Support Questions

Find answers, ask questions, and share your expertise

Implement oauth 2.0 in NiFi without exporting secrets.

New Contributor

Hello,


I'm new to NiFi and trying to implement a flow such oauth 2.0 mechanism in order to connect to a 3rd party vendor api we are working with. I went over some articles that explain how to do that, but in all of them I found that the secret is not encrypted.


the flow look like this:

1. Call to request token api with already known secret (that I don't want to store not encrypted).

2. Extract the token from the response (without exposing it or without write it to the provenance repo).

3. Use the token as an Authorization header in order to call the desire api.


Does anyone can help me understanding how can I implement this flow without expose my secret / token?

Thanks,

Shmulik.

1 REPLY 1

Contributor

Hi, sorry for bumping this, there is a typo in the subject but I think i'ts understandable, any idea of how to do at least the point 1:

1. Call to request token api with already known secret (that I don't want to store not encrypted).

Thank you!

Take a Tour of the Community
Don't have an account?
Your experience may be limited. Sign in to explore more.