payara / Payara

Payara Server is an open source middleware platform that supports reliable and secure deployments of Java EE (Jakarta EE) and MicroProfile applications in any environment: on premise, in the cloud or hybrid.
http://www.payara.fish
Other
883 stars 305 forks source link

> I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name `letsencryptisrgx1`, so you shouldn't need to manually add it./FISH-8097 #6465

Open rlfnb opened 1 year ago

rlfnb commented 1 year ago

unable to reopen the existing issue, sorry...

          > I have checked the cacerts.p12 file bundled with Payara Server 6.2023.9, and I can see that we already bundle the letsencrypt to the CA store, under the name `letsencryptisrgx1`, so you shouldn't need to manually add it.

Seems like thw wrong one? I'm forced to add the following cert to the keystore to access a webservice secured by letsencrypt. Otherwise it will fail. Maybe you have a look?

https://letsencrypt.org/de/certificates/ ISRG Root X1 (RSA 4096, O = Internet Security Research Group, CN = ISRG Root X1) for completeness

Originally posted by @rlfnb in https://github.com/payara/Payara/issues/6420#issuecomment-1775520585

shub8968 commented 11 months ago

I have escalated this issue to our Platform Development team as FISH-8097.