search

microsoft / Git-Credential-Manager-for-Mac-and-Linux

Git Credential Manager for Mac and Linux stores credentials for Git version control securely. Provides secure logon for Visual Studio Team Services (visualstudio.com).
Other
406 stars 238 forks source link

SSLHandshakeException When on Corporate Network #67

Open sunmorgus opened 7 years ago

sunmorgus commented 7 years ago

When using the credential manager while on a corporate network with a middle-tier ssl root certificate I receive the following error message:

Fatal: java.lang.Error encountered. Details: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target fatal: credential helper '!/Library/Java/JavaVirtualMachines/jdk1.8.0_121.jdk/Contents/Home/jre/bin/java -Ddebug=false -Djava.net.useSystemProxies=true -jar /usr/local/Cellar/git-credential-manager/2.0.3/libexec/git-credential-manager-2.0.3.jar' told us to quit

Typically, when I see issues like this, turning off ssl certificate validation resolves the issue, but I don't see a way to do that with the git-credential-manager. Is there some way to do so?

yacaovsnc commented 7 years ago

Unfortunately I don't think we have a way to accept untrusted ssl today. Turning off ssl is generally not safe to do. Will you consider import your cert in your truststore? This way all your java program will work on your corporate network.