当我尝试在bitbcuket服务器上克隆时只有HTTP选项,而在我的server.xml上我配置了ssl: server.xml:
<Connector port="8443"
maxHttpHeaderSize="8192"
SSLEnabled="true"
maxThreads="150"
minSpareThreads="25"
maxSpareThreads="75"
enableLookups="false"
disableUploadTimeout="true"
useBodyEncodingForURI="true"
acceptCount="100"
scheme="https"
secure="true"
clientAuth="false"
sslProtocol="TLS"
redirectPort="443"
proxyName="dev-services.domainname.es"
proxyPort="443"
keystorePass="keystorePassword"
keyPass="keyPassword"
keyAlias="le-55fd1606-33ed-47fd-b23c-11443dc6f5ec"
keystoreFile="/etc/nginx/cert/bitbucket.jks" />
我们有一个nginx运行,配置如下:
server {
listen 443;
server_name dev-services.domainname.es;
ssl on;
ssl_certificate /etc/nginx/cert/cert.crt;
ssl_certificate_key /etc/nginx/cert/cert.rsa;
ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
ssl_prefer_server_ciphers on;
location /
{
proxy_pass https://localhost:8443;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Forwarded- Host $host;
proxy_set_header X-Forwarded-Server $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Real-IP $remote_addr; proxy_redirect off;
}
}
一切正常,但是当我们尝试制作git clone它显示: 服务器证书验证失败。 CAfile:/etc/nginx/cert/ca-certificates.crt CRLfile:none
当我们在bitbucket服务器上进行克隆时,我们只有http(内部有https)
注意:我们有一个通配符证书“* .domainname.es”
答案 0 :(得分:0)
这里的HTTP,也许是令人困惑的,在这种情况下指的是HTTP和HTTPS(而不是SSH) - 实际的URL反映了正确的事情。