David Handermann created NIFI-9481:
--------------------------------------
Summary: Exclude HTTP Site-to-Site Communication from DoS Filter
Key: NIFI-9481
URL: https://issues.apache.org/jira/browse/NIFI-9481
Project: Apache NiFi
Issue Type: Improvement
Components: Core Framework, Security
Reporter: David Handermann
Assignee: David Handermann
The Jetty Denial of Service Filter introduced in NiFi 1.12.0 applied rate
limiting and processing timeouts to all HTTP requests that NiFi received
through Jetty. This approach created potential problems when sending and
receiving files using Site-to-Site over HTTP, prompting the introducing of
configurable request timeout properties in NiFi 1.14.0.
Although configuring a large request timeout mitigates most issues, HTTP
Site-to-Site transmission with high data volumes can make it difficult to
select an optimal value for the request timeout property. Excluding specific
Site-to-Site HTTP REST resource methods from request timeout filtering avoids
potential problems on deployments with large volumes of data or transmission
over slow network links.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
