Cloudera Community
ravi_tadepally
user rank
Contributor

Accessing NIFI Metrics endpoint for Prometheus wit...

by Contributor in Support Questions
‎01-06-2025 10:21 AM
‎01-06-2025 10:21 AM
Hi  We are currently in the process of upgrading our NIFI version to 2.0.0. But as per the below NIFI jira task PrometheusReportingTask has been completely removed from version 2.0.0 and added as a NIFI rest api endpoint. https://issues.apache.org/jira/browse/NIFI-13507 The issue we are currently facing is that with old version 2.0.0-M2 metrics was exposed through PrometheusReportingTask which can be accessed without the need for any authentication and we were able to scrape the metrics to Prometheus. But with the latest versions from 2.0.0 we have to provide the Bearer Token(Using OIDC) to access the metrics as it is a Rest API endpoint which is causing difficulties to integrate with Prometheus as we need to add an extra layer to get the token. So my question here is, If there is any way to access the nifi-api/flow/metrics/prometheus without the need to provide any authentication which will solve our issue. Any Suggestions are appreciated.   ... View more
Labels:

Re: NIFI StandardSSLContextService - Update Keysto...

by Contributor in Support Questions
‎12-26-2023 08:41 AM
‎12-26-2023 08:41 AM
Hi @MattWho  thank you for your prompt response. I will try to add this onto Apache NIFI Jira as suggested. Thanks Ravi ... View more

NIFI StandardSSLContextService - Update Keystore a...

by Contributor in Support Questions
‎12-22-2023 05:08 AM
‎12-22-2023 05:08 AM
Hi, We are currently working on scenario to connect to secured Rabbitmq server for consuming messages. We have used StandardSSLContextService for that purpose and configured both truststore and keystore properties.  These certs are created specific to Rabbitmq connection. Everything is working fine as expected but the only issue we are facing is that when both keystore and truststore are expired and we need to update the certs currently the only way we see is to restart the server or controller service. But we would like to know if there is any other way the NIFI StandardSSLContextService can check if the cert is expired and if we provide a new keystore and truststore then it will reload the latest certs without the need for restarts. Any suggestions on this issue is greatly appreciated. ... View more
Labels:

Re: NIFI Toolkit not working with OIDC configurati...

by Contributor in Support Questions
‎08-10-2023 01:30 PM
‎08-10-2023 01:30 PM
Hi @MattWho,   Thank you for your prompt response. The solution you have provided actually worked.   thanks for your help! ... View more

Re: NIFI Toolkit not working with OIDC configurati...

by Contributor in Support Questions
‎08-10-2023 10:39 AM
‎08-10-2023 10:39 AM
Hi,   Any suggestions on the above topic is greatly appreciated. ... View more

Re: NIFI Toolkit not working with OIDC configurati...

by Contributor in Support Questions
‎07-19-2023 07:12 AM
‎07-19-2023 07:12 AM
Hi Lorecrook5,   Thank you for your reply.   I have verified the OIDC configuration used for NIFI and toolkit. In case of NIFI I am able to login to UI using OIDC configuration without any issues. But when using toolkit commands especially when running  "access-token" cli command from toolkit I am getting below error.    "ERROR: Error executing command 'get-access-token' : Error performing login: Username/Password login not supported by this NiFi."   So my question here is if there is any command or endpoint that NIFI provides to get the OIDC token which can be used as a bearer token to pass on to rest of the commands? Without the token we are not able to perform any operations using other commands.   Appreciate your help on this. Thanks in advance. ... View more

NIFI Toolkit not working with OIDC configuration

by Contributor in Support Questions
‎06-21-2023 09:51 AM
‎06-21-2023 09:51 AM
Hi NIFI Team,   We have currently installed NIFI with OIDC configuration which is working perfectly fine using the UI without any issues.   But when using NIFI toolkit commands and providing Bearer token we are receiving ''Unauthorized error".   Does NiFI provide any endpoint to get the OIDC Token separately which can then be used in the Toolkit commands? or please suggest if there is any other approach by which we can make a successful call to NIFI from Nifi Toolkit.   Thanks in advance         ... View more
Labels:

Re: NIFI - Invalid scopes while connecting through...

by Contributor in Support Questions
‎06-07-2023 04:07 PM
1 Kudo
‎06-07-2023 04:07 PM
1 Kudo
Thank you Bryce. Appreciate your help in looking into this.   ... View more

NIFI - Invalid scopes while connecting through OID...

by Contributor in Support Questions
‎05-16-2023 03:59 PM
‎05-16-2023 03:59 PM
Hi Team,   We are currently facing an issue in NIFI with OIDC as an authentication mechanism. Below is what we are seeing when NIFI URL redirects to OIDC(keycloak) url.   OIDC works perfectly well with 1.20.0 version but when upgraded to 1.21.0 we are getting below error.   ERROR:  Unauthorized error="invalid_scope", error_description="Invalid scopes: openid address email web-origins profile user phone microprofile-jwt roles groups offline_access"  Please suggest if there is any significant change made from 1.20.0 to 1.21.0 nifi oidc configuration which might have caused the issue.   Appreciate your help in advance. ... View more
Labels:

NIFI Professional Support with Pricing

by Contributor in Support Questions
‎09-01-2022 08:54 AM
‎09-01-2022 08:54 AM
Hi NIFI Team,   We are fairly new to apache NIFI and planning to onboard it into our production environment soon. And we are actually in need of a dedicated professional from the Apache NIFI team who can support or troubleshoot in case of any issues.   Please let us know where I can find the appropriate information for professional services provided by NIFI and its pricing.   Thanks in advance!    ... View more
Labels:
Contact Me
Online
Offline
Last Visited
‎04-11-2025 09:19 PM
Community Statistics
Member Since ‎11-11-2020 08:27 AM
Last Visited ‎04-11-2025 09:19 PM
Posts 14
Kudos received 2