bbende opened a new pull request #4758: URL: https://github.com/apache/nifi/pull/4758
Was originally planning to add some type of property to control whether x509 should come before JWT, but it seems as though we should be able to just move JWT in front of it. The only scenario that would change behavior is if you were previously submitting a request to the API with a client cert AND also sending the Authorization header. Previously the Authorization header would be ignored, so arguably should not have been sent anyway. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
