Cloudera Community

Support Questions

Find answers, ask questions, and share your expertise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Advanced Search
Announcements
Celebrating as our community reaches 100,000 members! Thank you!
Solved Go to solution

NIFI - policies for Connection

Labels:
avatar
author-rank maykiwogno
Rising Star

Created ‎10-25-2016 02:47 PM

Hi all,

In the WEB UI NFI, I can find where modifie the policies to have permission to list/empty queue

thanks for help.

5,960 Views
0 Kudos
1 ACCEPTED SOLUTION

avatar
author-rank MattWho author-rank
Master Mentor

Created on ‎10-25-2016 03:04 PM - edited ‎08-18-2019 06:07 AM

hide-solution

This problem has been solved!

Want to get a detailed solution you have to login/registered on the community

Register/Login
5,040 Views
12 REPLIES 12

avatar
author-rank bbende author-rank
Master Guru

Created ‎10-25-2016 03:03 PM

I believe that "List Queue" would be a "View Data" policy on the source, and "Empty Queue" would be a "Modify Data" on the source component. Also keep in mind that if you are clustered, all of the nodes in the cluster also need to be part of this policy because all entities (users + machines) involved in the request need to be authorized for the data.

4,685 Views

avatar
author-rank Sanaz_janbakhsh
Expert Contributor

Created ‎07-24-2017 09:34 PM

Hi Bryan,

What Ranger's policy should be added for the "list queue" and "empty queue"? I tried /ViewData, /flowfile-queues, /View_Data but none of them works.

Thanks, SJ

4,685 Views
0 Kudos

avatar
author-rank MattWho author-rank
Master Mentor

Created ‎07-25-2017 01:04 PM

@Sanaz Janbakhsh

This question revolves around setting the correct file based authorizer permissions for listing and emptying queues.

Since you are using Ranger , I suggest starting a new question so as not add confusion as process is different.

Thanks,

Matt

4,686 Views
0 Kudos

avatar
author-rank Sanaz_janbakhsh
Expert Contributor

Created ‎07-25-2017 01:28 PM

Hi Matt,

There is already one

https://community.hortonworks.com/questions/114805/lost-some-permission-after-integrating-ranger-and...

Thanks

SJ

4,686 Views
0 Kudos

avatar
author-rank MattWho author-rank
Master Mentor

Created on ‎10-25-2016 03:04 PM - edited ‎08-18-2019 06:07 AM

hide-solution

This problem has been solved!

Want to get a detailed solution you have to login/registered on the community

Register/Login
5,041 Views

avatar
author-rank semika
Explorer

Created ‎11-08-2020 11:07 AM

Thank you.

3,855 Views
0 Kudos

avatar
author-rank maykiwogno
Rising Star

Created on ‎10-26-2016 09:21 AM - edited ‎08-18-2019 06:07 AM

Hi all

I've set 'admin nifi' in "view the data"

It's not work, I always permissions denied.

Admin Nifi contains my user, and all nifi nodes (nifi001..nifi004)

8886-viewthedata.jpg

4,685 Views
0 Kudos

avatar
author-rank MattWho author-rank
Master Mentor

Created ‎10-26-2016 12:31 PM

@mayki wogno

view the data will give you the ability to list the queue, but will not give you the ability to empty the queue. You need to give yoru nodes and the user making teh request teh ability to "modify teh data" as well.

4,685 Views
0 Kudos

avatar
author-rank MattWho author-rank
Master Mentor

Created ‎10-26-2016 12:33 PM

If after adding "modify the data" policy it still does not work, check the nifi-user.log to see what entity it is having permissions problems with? Did you set processor level policies on the processors on each side of this queued connection?

4,685 Views
0 Kudos
webinar banner
Announcements
Community Announcements
CommunityOverCode Asia 2024 will be held in Hangzhou from Ju...
What's New @ Cloudera
Apache Flink is Now Generally Available in the Cloudera Stre...
Product Announcements
[ANNOUNCE] Cloudera Data Services 1.5.4 on Private Cloud Rel...
What's New @ Cloudera
Run your Apache NiFi and Apache Kafka workloads on Kubernete...
What's New @ Cloudera
Cloudera DataFlow now powers GenAI pipelines and supports ch...
View More Announcements
meetups banner