Add CA certificate chain to Bitbucket image for webhook calls to Jenkins

[donovanmuller]

Add the subatomic-ca-chain.pem CA certificate chanin so that Bitbucket can call Jenkins webhooks.

Prevents:

xxx INFO  [search-indexing:thread-1]  c.a.b.s.i.i.e.DefaultIndexEventQueueProcessor Worker instructed us to retry QueuedEvent{event=RepositoryContentModifiedIndexEvent{repositoryId=1}, retries=0}, retrying in 60 s
--
  | 2018-02-19 21:16:32,086 ERROR [threadpool:thread-3] subatomic @1RW8V4Ix1276x152x0 192.168.64.1,172.17.0.1 "POST /scm/tp/test-application.git/git-receive-pack HTTP/1.1" n.t.b.api.PullRequestListener [repo: TP/test-application[1]]\| Something went wrong while posting the following body to webhook: [Jenkins hook(https://jenkins-test-team-devops.subatomic.local/bitbucket-scmsource-hook/notify )]
  | {"actor":{"username":"subatomic","displayName":"Subatomic"},"repository":{"scmId":"git","project":{"key":"TP","name":"Test Project"},"slug":"test-application","links":{"self":[{"href":"https://bitbucket.subatomic.local/projects/TP/repos/test-application/browse"}]},"owner":{"username":"TP","displayName":"TP"},"fullName":"TP/test-application","ownerName":"TP","public":false},"push":{"changes":[{"created":false,"closed":false,"new":{"type":"branch","name":"master","target":{"type":"commit","hash":"d35ed7eea0cf2ac8d3e0b0f7b976ba6dd650c3d6"}},"old":{"type":"branch","name":"master","target":{"type":"commit","hash":"b61afe69a8db97d1826caaadd4b89ab235f69e0a "}}}]}}
  | javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  | at sun.security.ssl.Alerts.getSSLException(Alerts.java:192)
  | at sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1949)
  | at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:302)
  | at sun.security.ssl.Handshaker.fatalSE(Handshaker.java:296)
  | at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1514)
  | at sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:216)
  | at sun.security.ssl.Handshaker.processLoop(Handshaker.java:1026)
  | at sun.security.ssl.Handshaker.process_record(Handshaker.java:961)
  | at sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1062)
  | at sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1375)
  | at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1403)
  | at sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:1387)
  | at org.apache.http.conn.ssl.SSLConnectionSocketFactory.createLayeredSocket(SSLConnectionSocketFactory.java:394)
  | at org.apache.http.conn.ssl.SSLConnectionSocketFactory.connectSocket(SSLConnectionSocketFactory.java:353)
  | at org.apache.http.impl.conn.DefaultHttpClientConnectionOperator.connect(DefaultHttpClientConnectionOperator.java:134)
  | at org.apache.http.impl.conn.PoolingHttpClientConnectionManager.connect(PoolingHttpClientConnectionManager.java:353)
  | at org.apache.http.impl.execchain.MainClientExec.establishRoute(MainClientExec.java:380)
  | at org.apache.http.impl.execchain.MainClientExec.execute(MainClientExec.java:236)
  | at org.apache.http.impl.execchain.ProtocolExec.execute(ProtocolExec.java:184)
  | at org.apache.http.impl.execchain.RetryExec.execute(RetryExec.java:88)
  | at org.apache.http.impl.execchain.RedirectExec.execute(RedirectExec.java:110)
  | at org.apache.http.impl.client.InternalHttpClient.doExecute(InternalHttpClient.java:184)
  | at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:82)
  | at org.apache.http.impl.client.CloseableHttpClient.execute(CloseableHttpClient.java:107)
  | at nl.topicus.bitbucket.api.PullRequestListener.sendEvents(PullRequestListener.java:315)
  | at nl.topicus.bitbucket.api.PullRequestListener.lambda$onRepositoryRefsChanged$0(PullRequestListener.java:202)
  | at com.atlassian.stash.internal.concurrent.DefaultTransferableStateManager$StateTransferringRunnable.run(DefaultTransferableStateManager.java:166)
  | at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
  | at java.util.concurrent.FutureTask.run(FutureTask.java:266)
  | at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.access$201(ScheduledThreadPoolExecutor.java:180)
  | at java.util.concurrent.ScheduledThreadPoolExecutor$ScheduledFutureTask.run(ScheduledThreadPoolExecutor.java:293)
  | at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
  | at java.lang.Thread.run(Thread.java:745)
  | ... 1 frame trimmed
  | Caused by: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  | at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:387)
  | at sun.security.validator.PKIXValidator.engineValidate(PKIXValidator.java:292)
  | at sun.security.validator.Validator.validate(Validator.java:260)
  | at sun.security.ssl.X509TrustManagerImpl.validate(X509TrustManagerImpl.java:324)
  | at sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:229)
  | at sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:124)
  | at sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1496)
  | ... 29 common frames omitted
  | Caused by: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
  | at sun.security.provider.certpath.SunCertPathBuilder.build(SunCertPathBuilder.java:141)
  | at sun.security.provider.certpath.SunCertPathBuilder.engineBuild(SunCertPathBuilder.java:126)
  | at java.security.cert.CertPathBuilder.build(CertPathBuilder.java:280)
  | at sun.security.validator.PKIXValidator.doBuild(PKIXValidator.java:382)
  | ... 35 common frames omitted