Application modernization and Cloud migration

Blog by Sylvain Leroy about Cloud, Software Quality, Refactoring, Legacy Software Migration, and Application Modernization

Software Quality Technologies

SonarQube Scanner and Invalid SSL Certificates

By sleroy #certpath, #HTTPS, #IDE, #PKIX, #security, #SonarQube, #SunCertPathBuilderException
Internet Explorer access to certificates
Internet Explorer access to certificates

Struggling with SonarQube scanner and your invalid SSL certificate ? Here is a way to handle it.

Issue with SonarQube scanner

The SonarQube Scanner is NOT supporting invalid certificates and unfortunately our SonarQube server is delivered with an invalid SSL certificate.

INFO: ------------------------------------------------------------------------
INFO: EXECUTION FAILURE
INFO: ------------------------------------------------------------------------
INFO: Total time: 0.504s
INFO: Final Memory: 4M/123M
INFO: ------------------------------------------------------------------------
ERROR: Error during SonarQube Scanner execution
ERROR: Unable to execute SonarQube
ERROR: Caused by: Fail to get bootstrap index from server
ERROR: Caused by: sun.security.validator.ValidatorException: PKIX path building
failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to fi
nd valid certification path to requested target
ERROR: Caused by: PKIX path building failed: sun.security.provider.certpath.SunC
ertPathBuilderException: unable to find valid certification path to requested ta
rget
ERROR: Caused by: unable to find valid certification path to requested target
ERROR:
ERROR: Re-run SonarQube Scanner using the -X switch to enable full debug logging
.

To circumvent this error, you will have to upload all certificates in your cacerts.

Solution

Here are the steps to load your certificates : 

  • Unzip the files into the jre/lib/security of the SonarRunner installation, overwrite the exisiting ones.
  • Open the file jre/lib/security/cacerts using portecle (default password is changeit)
  • Download your own certificate using your browser and obtain a .cer or pkx certificate.
    Internet Explorer access to certificates
    • Import them using portecle.
    Screenshot how to use portecle
    Screenshot how to use portecle
    • DONEYour Sonarqube Scanner should be able to connect itself to the SonarQube server.

    Interesting SonarQube articles : SonarQube and ReactJSSonarQube plugins for AngularJS and Javascript you may not know

    By sleroy

    Related Post

    Application Lifecycle Management Opensource Technologies

    Bintray shutdown : your own cheap Maven repository with Google App Engine.

    sleroy
    Libraries Software Factory Software Technologies State of the art Technologies Testing Trends

    7 Test frameworks to follow in 2021 for Java/Fullstack developers

    sleroy
    Software Quality

    How does Embold v2 radically improve the code analysis of your IT projects?

    sleroy

    Leave a Reply

    Your email address will not be published. Required fields are marked *

    You Missed

    Java Development Software Technologies

    Formation Quarkus disponible

    Framework Software Technologies

    Hibernate fail with Postgresql : Row comparison operators must be associated with btree operator families.

    Application Lifecycle Management Opensource Technologies

    Bintray shutdown : your own cheap Maven repository with Google App Engine.

    Libraries Software Factory Software Technologies State of the art Technologies Testing Trends

    7 Test frameworks to follow in 2021 for Java/Fullstack developers