Support Questions
Find answers, ask questions, and share your expertise
Alert: Welcome to the Unified Cloudera Community. Former HCC members be sure to read and learn how to activate your account here.

Implement oauth 2.0 in NiFi without exporting secrets.

Implement oauth 2.0 in NiFi without exporting secrets.

New Contributor


I'm new to NiFi and trying to implement a flow such oauth 2.0 mechanism in order to connect to a 3rd party vendor api we are working with. I went over some articles that explain how to do that, but in all of them I found that the secret is not encrypted.

the flow look like this:

1. Call to request token api with already known secret (that I don't want to store not encrypted).

2. Extract the token from the response (without exposing it or without write it to the provenance repo).

3. Use the token as an Authorization header in order to call the desire api.

Does anyone can help me understanding how can I implement this flow without expose my secret / token?