Eclipse Community Forums
Forum Search:

Search      Help    Register    Login    Home
Home » Eclipse Projects » EGit » http.sslcainfo config option
http.sslcainfo config option [message #1058841] Wed, 15 May 2013 11:39 Go to next message
R Shapiro is currently offline R ShapiroFriend
Messages: 386
Registered: June 2011
Senior Member
Is the configuration option http.sslcainfo supposed to be working in EGit/JGit? It doesn't seem to be working for me with .pem files in EGit 3.0.0.201305112223. Command-line Git (1.8.2.1) is happy with these files.

If it's not implemented yet, is it in the queue of pending tasks?
Re: http.sslcainfo config option [message #1060195 is a reply to message #1058841] Thu, 23 May 2013 13:05 Go to previous messageGo to next message
Christian Halstrick is currently offline Christian HalstrickFriend
Messages: 113
Registered: July 2009
Senior Member
Currently http.sslcainfo is not supported by JGit. I have some ooold proposals [1], [2] which add client and server side support for certificate based authentication to JGit. They'll bring http.sslcainfo. Somehow I had not enough time to finish this and forgot about them. From my perspective the demand for this feature was also not so high. But I think it's time not to get this through. I'll continue to work on these two changes and propose some updated commits.

[1] https://git.eclipse.org/r/#/c/3199
[1] https://git.eclipse.org/r/#/c/3200


Ciao
Chris
Re: http.sslcainfo config option [message #1060640 is a reply to message #1060195] Mon, 27 May 2013 12:41 Go to previous messageGo to next message
R Shapiro is currently offline R ShapiroFriend
Messages: 386
Registered: June 2011
Senior Member
The main utility of http.sslcainfo is for servers that for whatever reason need to use self-signed certs for https access. In this case remote operations like clone, push and fetch won't work without this feature, unless you disable verification altogether (http.sslVerify=false), which is vulnerable to man-in-the-middle attacks.

Re: http.sslcainfo config option [message #1414605 is a reply to message #1060195] Sun, 31 August 2014 22:06 Go to previous messageGo to next message
Rene Malmgren is currently offline Rene MalmgrenFriend
Messages: 1
Registered: August 2014
Junior Member
Yes, this is exactly what I am looking 4. Any chans this will be supportet any time soon? I promise to send you a pizza worth in bitcoin if you do Smile
Re: http.sslcainfo config option [message #1419917 is a reply to message #1414605] Tue, 09 September 2014 08:43 Go to previous message
Matthias Sohn is currently offline Matthias SohnFriend
Messages: 612
Registered: July 2009
Senior Member
Did you try to import the cert into the Java keystore of the JVM you are using ?
Previous Topic:Custom merge commit message
Next Topic:SymlinksNotSupportedException when resetting to HEAD
Goto Forum:
  


Current Time: Thu Nov 20 22:57:16 GMT 2014

Powered by FUDForum. Page generated in 0.02760 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software