0

Our application is deployed on PCF. I have configured the CERTIFICATE_AUTHORITIES environment variable (PFA Environment Variables). We had to configure this variables as we were facing issues after configuring the s3 variables. Below are the logs for that issue. 2020-01-13T19:41:35.699+05:30 [APP/PROC/WEB/0] [ERR] Jan 13, 2020 2:11:35 PM com.amazonaws.http.AmazonHttpClient executeHelper 2020-01-13T19:41:35.699+05:30 [APP/PROC/WEB/0] [ERR] INFO: Unable to execute HTTP request: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target 2020-01-13T19:41:35.699+05:30 [APP/PROC/WEB/0] [ERR] javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target 2020-01-13T19:41:35.699+05:30 [APP/PROC/WEB/0] [ERR] at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)   I am not sure if the format in which i have supplied the CA value is correct or not ,  can we get an example for this ? -Also in the documentation (https://github.com/mendix/cf-mendix-buildpack) it says "The contents of this variable should be a concatenated string containing a the additional CAs in PEM format that are trusted." We are not sure what does that mean, please could can anybidy throw some light on it. -The certificate in question is deployed into the droplet at this location (/etc/cf-system-certificates), is there a way we could point at that directory, it would be optimal.

asked 2020-01-15

0 answers