当git clone时,Bitbucket服务器服务器证书验证上的HTTPS失败

时间:2016-03-01 11:57:49

标签: ssl https server.xml bitbucket-server

当我尝试在bitbcuket服务器上克隆时只有HTTP选项,而在我的server.xml上我配置了ssl: server.xml:

<Connector port="8443" 
maxHttpHeaderSize="8192" 
SSLEnabled="true"
maxThreads="150" 
minSpareThreads="25" 
maxSpareThreads="75"
enableLookups="false" 
disableUploadTimeout="true" 
useBodyEncodingForURI="true"
acceptCount="100" 
scheme="https" 
secure="true"
clientAuth="false" 
sslProtocol="TLS"
redirectPort="443"
proxyName="dev-services.domainname.es"
proxyPort="443"
keystorePass="keystorePassword"
keyPass="keyPassword"
keyAlias="le-55fd1606-33ed-47fd-b23c-11443dc6f5ec"
keystoreFile="/etc/nginx/cert/bitbucket.jks" />

我们有一个nginx运行,配置如下:

server {
  listen 443;
  server_name dev-services.domainname.es;
  ssl on;
  ssl_certificate /etc/nginx/cert/cert.crt;
  ssl_certificate_key /etc/nginx/cert/cert.rsa;
  ssl_session_timeout 5m;
  ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
  ssl_ciphers HIGH:!aNULL:!MD5;
  ssl_prefer_server_ciphers on;
  location /
  { 
     proxy_pass https://localhost:8443;
     proxy_set_header Host $host;
     proxy_set_header X-Forwarded-Proto $scheme;
     proxy_set_header X-Forwarded-   Host $host;
     proxy_set_header X-Forwarded-Server $host;
     proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
     proxy_set_header X-Real-IP $remote_addr; proxy_redirect off;
   }
}

一切正常,但是当我们尝试制作git clone它显示: 服务器证书验证失败。 CAfile:/etc/nginx/cert/ca-certificates.crt CRLfile:none

当我们在bitbucket服务器上进行克隆时,我们只有http(内部有https) enter image description here

注意:我们有一个通配符证书“* .domainname.es”

1 个答案:

答案 0 :(得分:0)

这里的HTTP,也许是令人困惑的,在这种情况下指的是HTTP和HTTPS(而不是SSH) - 实际的URL反映了正确的事情。

相关问题
最新问题