Some Eclipse Foundation services are deprecated, or will be soon. Please ensure you've read this important communication.

Bug 369805

Summary: [upstream] certificate authentication with custom keystore fails behind proxy
Product: z_Archived Reporter: Steffen Pingel <steffen.pingel>
Component: MylynAssignee: Project Inbox <mylyn-triaged>
Status: CLOSED MOVED QA Contact:
Severity: normal    
Priority: P3    
Version: unspecified   
Target Milestone: ---   
Hardware: PC   
OS: Linux   
Whiteboard:
Attachments:
Description Flags
mylyn/context/zip none

Description Steffen Pingel CLA 2012-01-26 09:16:02 EST 
If certificate authentication is used behind a proxy the keystore information is not available when the socket factory is created hence authentication fails. When HttpClient establishes the connection to the host PollingSslProtocolSocketFactory.createLayeredSocket() is invoked which does not receive an instance of HttpParams.

The work around is to configure the default keystore using system properties.
Comment 1 Steffen Pingel CLA 2012-01-26 09:31:33 EST 
I have filed an upstream bug here to clarify if an HttpParams parameter could be added: https://issues.apache.org/jira/browse/HTTPCLIENT-1160. 

I'll set the default keystore in the test environment for now to make tests on the Eclipse.org Hudson pass.
Comment 2 Steffen Pingel CLA 2012-01-26 18:22:58 EST 
Created attachment 210159 [details]
mylyn/context/zip
Comment 3 Steffen Pingel CLA 2012-02-09 16:31:07 EST 
This will be fixed in HttpClient 4.2. We'll need to wait for the upstream fix in order to address this.
Comment 4 Eclipse Webmaster CLA 2022-11-15 11:45:08 EST 
Mylyn has been restructured, and our issue tracking has moved to GitHub [1].

We are closing ~14K Bugzilla issues to give the new team a fresh start. If you feel that this issue is still relevant, please create a new one on GitHub.

[1] https://github.com/orgs/eclipse-mylyn