Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[BUG] "Consume insecure Maven repositories" feature in repository/maven tab is not working #92

Open
1 task done
Neilhamza opened this issue Mar 20, 2024 · 2 comments
Open
1 task done

[BUG] "Consume insecure Maven repositories" feature in repository/maven tab is not working #92

Neilhamza opened this issue Mar 20, 2024 · 2 comments
Labels
kind/bug Categorizes issue or PR as related to a bug. needs-priority Indicates an issue or PR lacks a `priority/foo` label and requires one. needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one.

Comments

@Neilhamza
Copy link

Is there an existing issue for this?

  • I have searched the existing issues

Konveyor version

rc.0.3

Priority

Blocker

Current Behavior

enabling the feature (administrator/repositories/maven) ->Consume insecure Maven repositories
and then using an unsecured url for analysis (http) causes analysis to fail
currently only secured (https) urls are being analysed

Expected Behavior

after enabling the feature analysis should be completed successfully

How Reproducible

Always (Default)

Steps To Reproduce

No response

Environment

- OS:fedora9

Anything else?

image
image
@Neilhamza Neilhamza added kind/bug Categorizes issue or PR as related to a bug. needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one. labels Mar 20, 2024
@konveyor-ci-bot
Copy link

This issue is currently awaiting triage.
If contributors determine this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.
The triage/accepted label can be added by org members.

@konveyor-ci-bot konveyor-ci-bot bot added the needs-priority Indicates an issue or PR lacks a `priority/foo` label and requires one. label Mar 20, 2024
@ibolton336 ibolton336 assigned ibolton336 and mguetta1 and unassigned ibolton336 Apr 1, 2024
@ibolton336 ibolton336 transferred this issue from konveyor/tackle2-ui Apr 10, 2024
@mansam
Copy link
Contributor

mansam commented Apr 10, 2024

I am not completely sure if this should be considered a Konveyor bug, although perhaps the option could be more clear. "Consume insecure Maven repositories" corresponds to a Maven setting to disable TLS certificate verification for HTTPS connections in order to facilitate using repositories that are protected by self-signed certificates.

Since version 3.8.1, Maven blocks HTTP connections and requires HTTPS unless given special configuration on a per-repository basis to circumvent the block. Since this is expected behavior from Maven, it seems reasonable to expect that the user should provide a Maven settings file with whatever configuration changes are necessary to access their HTTP repository.

@jortel jortel transferred this issue from konveyor/tackle2-hub Jun 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
kind/bug Categorizes issue or PR as related to a bug. needs-priority Indicates an issue or PR lacks a `priority/foo` label and requires one. needs-triage Indicates an issue or PR lacks a `triage/foo` label and requires one.
Projects
Planning
Status: 📋 Backlog
Milestone
No milestone
Development

No branches or pull requests
4 participants
@mansam @ibolton336 @mguetta1 @Neilhamza