You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@maven.apache.org by "Haile, Mussie" <Ha...@Pragmatics.com> on 2004/11/11 18:47:26 UTC
[RESOLVED]: Maven Remote Repository 7 SSL
I had to pay around with JSSE parameters and maven.bat file
%MAVEN_JAVA_EXE%
-Djavax.net.ssl.trustStore=%JAVA_HOME%\jre\lib\security\jssecacert
-Djavax.net.ssl.trustStoreType=jks
When using Keytool here is the parameters
C:\Java\Sun\j2sdk1.4.2_05\jre\lib\security>keytool -import -keystore cacerts
-alias maven -trustcacerts -file c:\certificate.cer
Enter keystore password: XXXXXXXXXX
Trust this certificate? [no]: yes
Certificate was added to keystore
-----Original Message-----
From: Brett Porter [mailto:brett.porter@gmail.com]
Sent: Wednesday, November 10, 2004 2:48 PM
To: Maven Users List
Subject: Re: Maven Remote Repository 7 SSL
try setting -Djavax.net.debug=true (I think that is the option).
General Java SSL troubleshooting on google will probably help here.
I've never tried Maven over SSL, but its built into the JRE 1.4 and I
assume commons-httpclient.
- Brett
On Wed, 10 Nov 2004 12:05:47 -0500, Haile, Mussie <ha...@pragmatics.com>
wrote:
> Hej et al -
>
> I am trying to access a maven remote repository which is protected by SSL.
I
> have added my cert in the jre's keystore but still I get the following
> error:
>
> Attempting to download log4j-1.2.8.jar.
> Error retrieving artifact from
> [https://mycompany.com/repository/log4j/jars/log4j-1.2.8.jar]:
> javax.net.ssl.SSLHandshakeException: sun.security.ValidatorException: No
> trusted certificate found
>
> Here are the steps I followed:
>
> 1) %JAVA_HOME%\bin\keytool -import -keystore
> %JAVA_HOME%\jre\lib\security\jssecacert -file maven.cer -alias maven
> 2) I modified my project.properties with the following:
> maven.repo.remote=https://mycompany/repository/
>
> Do I need to specify the keystore alias any where? How does Maven know I
> have a cert stored?
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@maven.apache.org
> For additional commands, e-mail: users-help@maven.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@maven.apache.org
For additional commands, e-mail: users-help@maven.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@maven.apache.org
For additional commands, e-mail: users-help@maven.apache.org
Re: [RESOLVED]: Maven Remote Repository 7 SSL
Posted by Brett Porter <br...@gmail.com>.
I think the JRE looks for jssecacerts, so if you renamed and added the
"s", the extra options should not be needed.
If they are needed, you could add them to MAVEN_OPTS env var instead
of modifying the script.
Cheers,
Brett
On Thu, 11 Nov 2004 12:47:26 -0500, Haile, Mussie <ha...@pragmatics.com> wrote:
> I had to pay around with JSSE parameters and maven.bat file
>
> %MAVEN_JAVA_EXE%
> -Djavax.net.ssl.trustStore=%JAVA_HOME%\jre\lib\security\jssecacert
> -Djavax.net.ssl.trustStoreType=jks
>
> When using Keytool here is the parameters
> C:\Java\Sun\j2sdk1.4.2_05\jre\lib\security>keytool -import -keystore cacerts
> -alias maven -trustcacerts -file c:\certificate.cer
> Enter keystore password: XXXXXXXXXX
> Trust this certificate? [no]: yes
> Certificate was added to keystore
>
> -----Original Message-----
> From: Brett Porter [mailto:brett.porter@gmail.com]
> Sent: Wednesday, November 10, 2004 2:48 PM
> To: Maven Users List
> Subject: Re: Maven Remote Repository 7 SSL
>
> try setting -Djavax.net.debug=true (I think that is the option).
> General Java SSL troubleshooting on google will probably help here.
>
> I've never tried Maven over SSL, but its built into the JRE 1.4 and I
> assume commons-httpclient.
>
> - Brett
>
> On Wed, 10 Nov 2004 12:05:47 -0500, Haile, Mussie <ha...@pragmatics.com>
> wrote:
> > Hej et al -
> >
> > I am trying to access a maven remote repository which is protected by SSL.
> I
> > have added my cert in the jre's keystore but still I get the following
> > error:
> >
> > Attempting to download log4j-1.2.8.jar.
> > Error retrieving artifact from
> > [https://mycompany.com/repository/log4j/jars/log4j-1.2.8.jar]:
> > javax.net.ssl.SSLHandshakeException: sun.security.ValidatorException: No
> > trusted certificate found
> >
> > Here are the steps I followed:
> >
> > 1) %JAVA_HOME%\bin\keytool -import -keystore
> > %JAVA_HOME%\jre\lib\security\jssecacert -file maven.cer -alias maven
> > 2) I modified my project.properties with the following:
> > maven.repo.remote=https://mycompany/repository/
> >
> > Do I need to specify the keystore alias any where? How does Maven know I
> > have a cert stored?
> >
> > ---------------------------------------------------------------------
> > To unsubscribe, e-mail: users-unsubscribe@maven.apache.org
> > For additional commands, e-mail: users-help@maven.apache.org
> >
> >
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@maven.apache.org
> For additional commands, e-mail: users-help@maven.apache.org
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@maven.apache.org
> For additional commands, e-mail: users-help@maven.apache.org
>
>
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@maven.apache.org
For additional commands, e-mail: users-help@maven.apache.org