[JIRA] (JENKINS-59452) Support JIRA sites that uses a personal certificate during authentication

[t3knoid@yahoo.com (JIRA)]

Frank Refol created an issue

Jenkins / JENKINS-59452 Support JIRA sites that uses a personal certificate during authentication Issue Type: Improvement Assignee: Dan Alvizu Components: jira-ext-plugin, jira-plugin, jira-trigger-plugin Created: 2019-09-19 20:23 Priority: Major Reporter: Frank Refol In our firms Jira instance, we have to use a personal certificate (PKCS#12) in order to open the page. After I am authenticated the page is shown where I can now interface with Jira such as logging into it with my regular username and password.  Currently this is not possible using Jira plugin or any Jira plugin for that matter. The Jenkns server that I am using this on is a Windows machine. I've tried installing the personal certificate in that server in the service account that the Jenkins service is running as. I also tried adding the personal certificate in the JRE's certificate store (cacert). Albeit, I had to convert it first. I also tested that I can access Jira using the browser in the Jenkins server logged in as the Jenkins service account. Add Comment

This message was sent by Atlassian Jira (v7.13.6#713006-sha1:cc4451f)

[t3knoid@yahoo.com (JIRA)]

Frank Refol updated an issue

Jenkins / JENKINS-59452 Support JIRA sites that uses a personal certificate during authentication

Change By: Frank Refol Component/s: jira-steps-plugin

In our firms Jira instance, we have to use a personal certificate (PKCS#12) in order to open the page. After I am authenticated the page is shown where I can now interface with Jira such as logging into it with my regular username and password.  Currently this is not possible using Jira plugin or any Jira plugin for that matter. The Jenkns server that I am using this on is a Windows machine. I've tried installing the personal certificate in that server in the service account that the Jenkins service is running as. I also tried adding the personal certificate in the JRE's certificate store (cacert). Albeit, I had to convert it first. I also tested that I can access Jira using the browser in the Jenkins server logged in as the Jenkins service account.

In the Jenkins Configuration Jira plugin settings, when I try to validate the settings, I get the following exception stack (note I've obfuscated irrelevant text): {noformat} Caused by: org.apache.http.ProtocolException: Not a valid protocol version: You are not allowed to access this resource. For support please email: help...@sxxxxxx.com or call (xxx) xxx-xxxxCaused by: org.apache.http.ProtocolException: Not a valid protocol version: You are not allowed to access this resource. For support please email: help...@strozfriedberg.com or call (212) 981-2662 at org.apache.http.impl.nio.codecs.AbstractMessageParser.parse(AbstractMessageParser.java:209) at org.apache.http.impl.nio.DefaultNHttpClientConnection.consumeInput(DefaultNHttpClientConnection.java:245) at org.apache.http.impl.nio.client.InternalIODispatch.onInputReady(InternalIODispatch.java:81) at org.apache.http.impl.nio.client.InternalIODispatch.onInputReady(InternalIODispatch.java:39) at org.apache.http.impl.nio.reactor.AbstractIODispatch.inputReady(AbstractIODispatch.java:121) at org.apache.http.impl.nio.reactor.BaseIOReactor.readable(BaseIOReactor.java:162) at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvent(AbstractIOReactor.java:337) at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvents(AbstractIOReactor.java:315) at org.apache.http.impl.nio.reactor.AbstractIOReactor.execute(AbstractIOReactor.java:276) at org.apache.http.impl.nio.reactor.BaseIOReactor.execute(BaseIOReactor.java:104) at org.apache.http.impl.nio.reactor.AbstractMultiworkerIOReactor$Worker.run(AbstractMultiworkerIOReactor.java:588) {noformat}

Add Comment

[t3knoid@yahoo.com (JIRA)]

Frank Refol updated an issue

Jenkins / JENKINS-59452 Support JIRA sites that uses a personal certificate during authentication Change By: Frank Refol

In our firms Jira instance, we have to use a personal certificate (PKCS#12) in order to open the page. After I am authenticated the page is shown where I can now interface with Jira such as logging into it with my regular username and password.  Currently this is not possible using Jira plugin or any Jira plugin for that matter. The Jenkns server that I am using this on is a Windows machine. I've tried installing the personal certificate in that server in the service account that the Jenkins service is running as. I also tried adding the personal certificate in the JRE's certificate store (cacert). Albeit, I had to convert it first. I also tested that I can access Jira using the browser in the Jenkins server logged in as the Jenkins service account. In the Jenkins Configuration Jira plugin settings, when I try to validate the settings, I get the following exception stack (note I've obfuscated irrelevant text):

{quote}Caused by: org.apache.http.ProtocolException: Not a valid protocol version: You are not allowed to access this resource. For support please email: helpdesk xxx @ sxxxxxx xxxxxx .com or call (xxx) xxx- xxxxCaused xxxx Caused by: org.apache.http.ProtocolException: Not a valid protocol version: You are not allowed to access this resource. For support please email: helpdesk xxx @ strozfriedberg xxxx .com or call ( 212 xxx ) 981 xxx - 2662 xxxx at org.apache.http.impl.nio.codecs.AbstractMessageParser.parse(AbstractMessageParser.java:209) at org.apache.http.impl.nio.DefaultNHttpClientConnection.consumeInput(DefaultNHttpClientConnection.java:245) at org.apache.http.impl.nio.client.InternalIODispatch.onInputReady(InternalIODispatch.java:81) at org.apache.http.impl.nio.client.InternalIODispatch.onInputReady(InternalIODispatch.java:39) at org.apache.http.impl.nio.reactor.AbstractIODispatch.inputReady(AbstractIODispatch.java:121) at org.apache.http.impl.nio.reactor.BaseIOReactor.readable(BaseIOReactor.java:162) at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvent(AbstractIOReactor.java:337) at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvents(AbstractIOReactor.java:315) at org.apache.http.impl.nio.reactor.AbstractIOReactor.execute(AbstractIOReactor.java:276) at org.apache.http.impl.nio.reactor.BaseIOReactor.execute(BaseIOReactor.java:104) at org.apache.http.impl.nio.reactor.AbstractMultiworkerIOReactor$Worker.run(AbstractMultiworkerIOReactor.java:588) {quote}

Add Comment

[t3knoid@yahoo.com (JIRA)]

Frank Refol updated an issue

Jenkins / JENKINS-59452 Support JIRA sites that uses a personal certificate during authentication Change By: Frank Refol

In our firms Jira instance, we have to use a personal certificate (PKCS#12) in order to open the page. After I am authenticated the page is shown where I can now interface with Jira such as logging into it with my regular username and password.  Currently this is not possible using Jira plugin or any Jira plugin for that matter. The Jenkns server that I am using this on is a Windows machine. I've tried installing the personal certificate in that server in the service account that the Jenkins service is running as. I also tried adding the personal certificate in the JRE's certificate store (cacert). Albeit, I had to convert it first. I also tested that I can access Jira using the browser in the Jenkins server logged in as the Jenkins service account. In the Jenkins Configuration Jira plugin settings, when I try to validate the settings, I get the following exception stack (note I've obfuscated irrelevant text):

{ noformat quote } Caused by: org.apache.http.ProtocolException: Not a valid protocol version: You are not allowed to access this resource. For support please email: help...@sxxxxxx.com or call (xxx) xxx-xxxxCaused by: org.apache.http.ProtocolException: Not a valid protocol version: You are not allowed to access this resource. For support please email: help...@strozfriedberg.com or call (212) 981-2662 at org.apache.http.impl.nio.codecs.AbstractMessageParser.parse(AbstractMessageParser.java:209) at org.apache.http.impl.nio.DefaultNHttpClientConnection.consumeInput(DefaultNHttpClientConnection.java:245) at org.apache.http.impl.nio.client.InternalIODispatch.onInputReady(InternalIODispatch.java:81) at org.apache.http.impl.nio.client.InternalIODispatch.onInputReady(InternalIODispatch.java:39) at org.apache.http.impl.nio.reactor.AbstractIODispatch.inputReady(AbstractIODispatch.java:121) at org.apache.http.impl.nio.reactor.BaseIOReactor.readable(BaseIOReactor.java:162) at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvent(AbstractIOReactor.java:337) at org.apache.http.impl.nio.reactor.AbstractIOReactor.processEvents(AbstractIOReactor.java:315) at org.apache.http.impl.nio.reactor.AbstractIOReactor.execute(AbstractIOReactor.java:276) at org.apache.http.impl.nio.reactor.BaseIOReactor.execute(BaseIOReactor.java:104) at org.apache.http.impl.nio.reactor.AbstractMultiworkerIOReactor$Worker.run(AbstractMultiworkerIOReactor.java:588) { noformat quote }

Add Comment

[t3knoid@yahoo.com (JIRA)]

Frank Refol updated an issue

Jenkins / JENKINS-59452 Support JIRA sites that uses a personal certificate during authentication

Change By: Frank Refol Attachment: ClientCustomSSL.java

Add Comment

[t3knoid@yahoo.com (JIRA)]

Frank Refol commented on JENKINS-59452

Re: Support JIRA sites that uses a personal certificate during authentication Looking more into this. The following links might be helpful  https://stackoverflow.com/questions/18541813/how-do-i-pass-the-client-certificate-with-http-client/18542079 Downloaded code, [ClientCustomSSL.java| https://hc.apache.org/httpcomponents-client-ga/httpclient/examples/org/apache/http/examples/client/ClientCustomSSL.java], referenced in above thread and attached here, ClientCustomSSL.java

Add Comment

[t3knoid@yahoo.com (JIRA)]

Frank Refol edited a comment on JENKINS-59452

Re: Support JIRA sites that uses a personal certificate during authentication

Looking more into this. The following links might be helpful  [https://stackoverflow.com/questions/18541813/how-do-i-pass-the-client-certificate-with-http-client/18542079] Downloaded code,   [ClientCustomSSL.java|

[ https://hc.apache.org/httpcomponents-client-ga/httpclient/examples/org/apache/http/examples/client/ClientCustomSSL.java] ] , referenced in above thread and attached here, [^ClientCustomSSL.java]

Add Comment

[t3knoid@yahoo.com (JIRA)]

Frank Refol edited a comment on JENKINS-59452

Re: Support JIRA sites that uses a personal certificate during authentication

Looking more into this. The following links might be helpful  [https://stackoverflow.com/questions/18541813/how-do-i-pass-the-client-certificate-with-http-client/18542079] Downloaded code, [ClientCustomSSL.java|

https http :// hc example . apache.org/httpcomponents-client-ga/httpclient/examples/org/apache/http/examples/client/ClientCustomSSL.java com ], referenced in above thread and attached here, [^ClientCustomSSL.java]

Add Comment

[t3knoid@yahoo.com (JIRA)]

Frank Refol edited a comment on JENKINS-59452

Re: Support JIRA sites that uses a personal certificate during authentication

Looking more into this. The following links might be helpful  [https://stackoverflow.com/questions/18541813/how-do-i-pass-the-client-certificate-with-http-client/18542079]

Downloaded code, [ClientCustomSSL.java| http https :// example hc . com apache.org/httpcomponents-client-ga/httpclient/examples/org/apache/http/examples/client/ClientCustomSSL.java ], referenced in above thread and attached here, [^ClientCustomSSL.java]

Add Comment

[t3knoid@yahoo.com (JIRA)]

Frank Refol assigned an issue to Frank Refol

Jenkins / JENKINS-59452

Support JIRA sites that uses a personal certificate during authentication

Change By: Frank Refol Assignee: Dan Alvizu Frank Refol

Add Comment