Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

NiFi 1.25.0 UI access unstable with more than one replica #630

Open
maltesander opened this issue Jun 18, 2024 · 0 comments
Open

NiFi 1.25.0 UI access unstable with more than one replica #630

maltesander opened this issue Jun 18, 2024 · 0 comments
Labels
type/bug

Comments

@maltesander
Copy link
Member

maltesander commented Jun 18, 2024
edited
Loading

In NiFi 1.25.0 the access JWT changed its issuer/sub to a specific pod. Due to the round robin of the service / nodeport (it should be fine with load balancers and sticky sessions), it happens that you are connecting with a JWT from pod X to pod Y which is rejected and basically logs you out or results in strange behavior... This makes the UI more or less not usable for proper production.

We should create a single pod service (or adapt the create-reporting-task service that talks to only one pod) to avoid this behavior. It probably makes sense to deploy one (single-pod) service per pod (listener??).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
type/bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@maltesander