Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

> I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name letsencryptisrgx1, so you shouldn't need to manually add it./FISH-8097 #6465

Open
rlfnb opened this issue Oct 24, 2023 · 1 comment
Open

> I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name letsencryptisrgx1, so you shouldn't need to manually add it./FISH-8097 #6465

rlfnb opened this issue Oct 24, 2023 · 1 comment
Assignees
@shub8968
Labels
Status: Accepted Confirmed defect or accepted improvement to implement, issue has been escalated to Platform Dev

Comments

@rlfnb
Copy link

rlfnb commented Oct 24, 2023

unable to reopen the existing issue, sorry...

          > I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name `letsencryptisrgx1`, so you shouldn't need to manually add it.

Seems like thw wrong one? I'm forced to add the following cert to the keystore to access a webservice secured by letsencrypt. Otherwise it will fail. Maybe you have a look?

https://letsencrypt.org/de/certificates/ ISRG Root X1 (RSA 4096, O = Internet Security Research Group, CN = ISRG Root X1)
for completeness

Originally posted by @rlfnb in #6420 (comment)
@github-actions github-actions bot added the Status: Open Issue has been triaged by the front-line engineers and is being worked on verification label Oct 24, 2023
@shub8968 shub8968 changed the title > I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name letsencryptisrgx1, so you shouldn't need to manually add it. > I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name letsencryptisrgx1/FISH-8097, so you shouldn't need to manually add it. Nov 27, 2023
@shub8968
Copy link
Contributor

I have escalated this issue to our Platform Development team as FISH-8097.

@shub8968 shub8968 changed the title > I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name letsencryptisrgx1/FISH-8097, so you shouldn't need to manually add it. > I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name letsencryptisrgx1, so you shouldn't need to manually add it./FISH-8097 Dec 1, 2023
@shub8968 shub8968 added Status: Accepted Confirmed defect or accepted improvement to implement, issue has been escalated to Platform Dev and removed Status: Open Issue has been triaged by the front-line engineers and is being worked on verification labels Dec 1, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@shub8968 shub8968

Labels
Status: Accepted Confirmed defect or accepted improvement to implement, issue has been escalated to Platform Dev
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rlfnb @shub8968