The Atlassian Marketplace server is not reachable

お困りですか?

アトラシアン コミュニティをご利用ください。

コミュニティに質問

症状

When going to manage/add new add-ons page, this error is displayed:

The Atlassian Marketplace server is not reachable. To avoid problems when loading this page, you can disable the connection to the Marketplace server

 

The Bamboo logs contain the following errors:

# Please, refer to "Resolution 1"
2015-02-11 14:26:28,892 WARN [http-bio-8085-exec-12] [AsynchronousTaskManager] Configured application base URL (http://192.168.2.135:8085/bamboo) does not match base URL from request (http://192.168.2.135:8085)
# Please, refer to "Resolution 2"
2013-10-29 14:30:17,194 WARN  [http-bio-7990-exec-5] user 870x497x1 1lzkc13 XXX.XXX.XXX.XXX,127.0.0.1 "GET /plugins/servlet/upm/marketplace HTTP/1.0" com.atlassian.upm.pac.PacClientImpl Error when querying application info from MPAC: com.atlassian.marketplace.client.MpacException: javax.net.ssl.SSLPeerUnverifiedException: peer not authenticated

ソリューション 1

Please, update Bamboo's base URL under "Bamboo administration >> System >> General configuration >> Base URL"

原因

The Atlassian Marketplace needs to verify the SSL connection between Bamboo and itself. This occurs because the certificate is missing or has been tampered with by the local Proxy.

ソリューション 2

If you are running Bamboo on a Unix environment ...

1- Fetch the certificate from where you are running your Bamboo instance

From the machine where you are running Bamboo, export the certificates for the marketplace.atlassian.com:443, plugins.atlassian.com:443 and dq1dnt4af4eyy.cloudfront.net:443 websites:

openssl s_client -connect marketplace.atlassian.com:443 < /dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > marketplace.atlassian.com.crt
openssl s_client -connect plugins.atlassian.com:443 < /dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > plugins.atlassian.com.crt
openssl s_client -connect dq1dnt4af4eyy.cloudfront.net:443 < /dev/null | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > dq1dnt4af4eyy.cloudfront.net.crt

2- Import the certificates into your Java keystore:

After you fetched the certificate, import it into the JAVA_HOME you are using to run your Bamboo instance:

keytool -import -alias marketplace.atlassian.com:443 -keystore /path/to/keystore -file /path/to/marketplace.atlassian.com.cert
keytool -import -alias plugins.atlassian.com:443 -keystore /path/to/keystore -file /path/to/plugins.atlassian.com.cert
keytool -import -alias dq1dnt4af4eyy.cloudfront.net:443 -keystore /path/to/keystore -file /path/to/dq1dnt4af4eyy.cloudfront.net

Default Password

Where is my keystore?

  • Windows/Linux: $JAVA_HOME/jre/lib/security/cacerts
  • Mac OS (not supported): $JAVA_HOME/lib/security/cacerts

What is the password?

  • The default password for the Java TrustStore password is changeit.

Where is my JAVA_HOME?

  • To check for the <JAVA_HOME> value, generate a Support Zip for your instance and look for the <java.home> tag within the <system-information> tag. That's the Java being used by your Bamboo instance.
If you are running Bamboo on a Windows environment...

Alternative 1: Using Portecle

What you need to do to get around this issue is to export the certificates for the marketplace.atlassian.com:443, plugins.atlassian.com:443 and dq1dnt4af4eyy.cloudfront.net:443 websites and import them into your Java keystore. There are detailed steps on how to do so using Portacle on the JIRA documentation below. Executing this procedure will take you through the whole export/import process (thus executing step #2 below is not required):

Alternative 2: Using command line

2.1- Fetch the certificate

If you prefer the command line as an alternative, you could do so by issuing:

openssl s_client -connect stash.com:443 < NUL | sed -ne '/-BEGIN CERTIFICATE-/,/-END CERTIFICATE-/p' > public.crt

(info) The command above will only be executed on Windows if you have Sed for Windows as well as OpenSSL installed on your environment. If you don't have Sed or OpenSSL and you don't want to install it, use the instructions below as an alternative. Issue the following command:

  • Use your browser to hit the URL's above.
  • Save the certificate content into a file called public.cert file. The file should contain only what is between the BEGIN CERTIFCATE and END CERTIFICATE lines. This is how your file should look like after you edited it:

 

-----BEGIN CERTIFICATE-----
< Certificate content as fetched by the command line. 
Don't change this content, only remove what is before 
and after the BEGIN CERTIFICATE and END CERTIFICATE. 
That's what your Sed command is doing for you :-) >
-----END CERTIFICATE-----

2.2- Import the certificate into your Java keystore:

After you fetch the certificate, import it into the $JAVA_HOME you are using to run Bamboo:

keytool -import -alias marketplace.atlassian.com:443 -keystore /path/to/keystore -file /path/to/marketplace.atlassian.com.cert
keytool -import -alias plugins.atlassian.com:443 -keystore /path/to/keystore -file /path/to/plugins.atlassian.com.cert
keytool -import -alias dq1dnt4af4eyy.cloudfront.net:443 -keystore /path/to/keystore -file /path/to/dq1dnt4af4eyy.cloudfront.net

Default Password

Where is my keystore?

  • Windows/Linux: $JAVA_HOME/jre/lib/security/cacerts
  • Mac OS (not supported): $JAVA_HOME/lib/security/cacerts

What is the password?

  • The default password for the Java TrustStore password is changeit.

Where is my JAVA_HOME?

  • To check for the <JAVA_HOME> value, generate a Support Zip for your instance and look for the <java.home> tag within the <system-information> tag. That's the Java being used by your Bamboo instance.

Default Password

Please see the following question on Atlassian Answers and Problems Connecting to the Atlassian Marketplace for more information.

 

 

最終更新日 2016 年 11 月 29 日

この内容はお役に立ちましたか?

はい
いいえ
この記事についてのフィードバックを送信する
Powered by Confluence and Scroll Viewport.