The target of my webhook post is using ssl with a self signed certificate. Is there anyway to tell the plugin to ignore ssl certificate errors?
Community moderators have prevented the ability to post new answers.
Hi Adam,
Ignoring SSL is probably not the way to go, as it would you vulnerable to a MITM attack. Instead, you should add the self-signed certificate to your Stash JVM's keystore. There's some instructions for using the JVM keytool in this JIRA documentation:
https://confluence.atlassian.com/display/JIRA043/Running+JIRA+over+SSL+or+HTTPS#RunningJIRAoverSSLorHTTPS-ImportCertificateIntoTheTruststore
cheers,
Tim
Thanks for the pointer to the keystore info. However in my case, I would like to post to a place that may be rebuilt at anytime, thus may have new certificates at anytime. I'm posting to a development puppet master server to initiate code pulls. Preventing man-in-the-middle is not important for this situation.
I agree that certificate checking should be the default, but it would also be handy to override this default in cases like mine.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Fair enough. Another option would be to fork the simple Stash Webhook Plugin and write some custom code to override java's default SSL handling. I don't know of a way to configure Stash to do it without writing some java code.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Ahh!! Perfect, I was looking for the source, but didnt find it until you shared the link. Thanks, I will definately fork it and add the option.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
I ended up using the External hooks plugin (https://marketplace.atlassian.com/plugins/com.ngs.stash.externalhooks.external-hooks) to accomplish my task. To make it work for my intended use, there is also a helper script (https://github.com/acidprime/r10k/blob/master/files/stash_mco.rb).
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.