Sherms
Reputation: 1646
Issue with root certificates in Boxfuse
Our service communicates with several AWS services such as KMS. Deploying our Boxfuse AMI results in this error in the logs whenever our service tries to call out to one of these AWS services:
Unable to execute HTTP request: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
! java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
Which I believe I've been able to trace back to being an SSL issue (we appear to be missing the appropriate root TLS certs)
We're using the Oracle JRE as described in the documentation by copying the JRE into the /src/main/resources directory. The JRE contains a cacerts file that should cover this, so I tried copying the cacerts file to /src/main/resources as described in the Boxfuse documentation:
You can, however, ship your own set of root certificates, by placing them in a KeyStore inside the Jar file as /cacerts. If you use Maven, this means your cacerts KeyStore file should be put into the src/main/resources directory.
However, I'm still getting the same error. Any ideas?
Upvotes: 1
Views: 107
Answers (1)
Related Questions
- How can I create an executable/runnable JAR with dependencies using Maven?
- Fastest way to determine if an integer's square root is an integer
- Could not resolve com.android.tools.build:gradle:3.1.4, react-native run-android
- Java version issues with nREPL server and clojure, Tricky version/compatibility issue
- error connecting to external https webservice