Level 2

Solved

FileVault over https for AEM 6.1

Forum|Forum|8 years ago
June 7, 2017
8 replies
3392 views

Hi,

i am unable to sync contents via filevault over https , however over http it works fine. Any idea how to fix the issue over https?

below is the exception

javax.jcr.RepositoryException: URL scheme https not supported. only http

Help is appreciated!

Thanks,

Chaitan

This post is no longer active and is closed to new replies. Need help? Start a new post to ask your question.

Best answer by smacdonald2008

Log a feature enhancement ticket - say you need this to work using HTTPS protocol.

smacdonald2008

Level 10

Looking at the doc and communities articles -- such as: CQ-OPS - CQ's FileVault Tool vlt - How to Convert JCR... - it does not like Https is supported.

C

chaitanyac9677Author

Level 2

Is there any fix coming up future release ? any workaround ?

smacdonald2008Accepted solution

Level 10

Log a feature enhancement ticket - say you need this to work using HTTPS protocol.

C

chaitanyac9677Author

Level 2

okay thanks for your reply. Is there any workaround for current AEM versions that you are aware of ?

saraindia

Same here as well - trying to copy content between two repositories but all traffic is only through SSL so our vlt rcp jobs are failing.

But the release notes for VLT RCP says

jackrabbit-filevault/RELEASE-NOTES.txt at trunk · apache/jackrabbit-filevault · GitHub

Changes in Jackrabbit FileVault 3.1.24
	--------------------------------------
	Bug Fixes:
	* [JCRVLT-91] - HTTPS Support for CLI

FishEye: changeset 1678848

[JCRVLT-91] HTTPS Support - ASF JIRA

The error I get is

[ERROR] Error while retrieving src repository https://hostname:port/crx/server/-/jcr:root/etc: javax.jcr.RepositoryException: javax.net.ssl.SSLHandshakeException: sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

joerghoh

Adobe Employee

This exception means that it is not possible to validate the server certificate. You should provide matching CA certificates so you can validate the server certificate. This is not specific to AEM.

kind regards,
Jörg

saraindia

Hi Jörg,

Thanks for getting back. Jörg, you are right it's not AEM related though.

I used the vlt rcp command

sh vlt rcp -r https://username:password@hostname:4502/crx/-/jcr:root/content/dam/test https://username:password@hostname:4502/crx/-/jcr:root/content/dam/test

How do I pass the CA certificates along with the vlt rcp command is probably my question and am sure it's not AEM related, but definitely something to do with how we use the vlt rcp tool particularly through https.

I guess everyone in this thread is along the same as I do struggling to sync content between two repositories via https.

You response and findings would be much helpful for the community.

Thanks Jörg

joerghoh

Adobe Employee

Hi,

first you need to create a keystore and add all relevant certificates to it. See Working with Certificates and SSL (Sun Java System Application Server Platform Edition 8.2 Administration Guide) for some details (especially how to use the keytool program). You probably want to omit the passphrase/password for this (local) keystore.

When you have created a keystore, you can make Java use this keystore with these command line parameters:

-Djavax.net.ssl.keyStore=/path/to/the/keystore.file

-Djavax.net.ssl.trustStore=/path/to/the/keystore.file

When you use maven, you should add these settings to the MAVEN_OPTS environment variable; on Mac/Linux it can look like this:

$ MAVEN_OPTS="-Djavax.net.ssl.keyStore=/path/to/the/keystore.file -Djavax.net.ssl.trustStore=/path/to/the/keystore.file" mvn clean install

kind regards,
Jörg

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded