問題

Confluence logs is flooded with the following messages:

WARN: Establishing SSL connection without server's identity verification is not recommended. According to MySQL 5.5.45+, 5.6.26+ and 5.7.6+ requirements SSL connection must be established by default if explicit option isn't set. For compliance with existing applications not using SSL the verifyServerCertificate property is set to 'false'. You need either to explicitly disable SSL by setting useSSL=false, or set useSSL=true and provide truststore for server certificate verification.

診断

Confluence is connected to MySQL 5.5+ and the connection string doesn't have the parameter describing usage of SSL defined. 

原因

This is warning coming from newer versions of MySQL.

ソリューション

Ensure that we explicitly specify to disable or enable SSL usage. 

1. Confluence をシャットダウンします。
2.  Backup confluence.cfg.xml located in <confluence_home>
3. confluence.cfg.xml  を編集します。

4. Look for the database connection string similar to the following:

   <property name="hibernate.connection.url">jdbc:mysql://<database-IP>/<databasename></property>

5. Ensure that we have specified usage of SSL. 

   
   

   1. DISABLE - for example, this is to explicitly specify not to use SSL:

      <property name="hibernate.connection.url">jdbc:mysql://<database-IP>/<databasename>?useSSL=false</property>

   2. ENABLE - for example, this is to explicitly specify to use SSL:

      <property name="hibernate.connection.url">jdbc:mysql://<database-IP>/<databasename>?useSSL=true</property>

      In addition, you must set up certificates and configure the truststore: https://dev.mysql.com/doc/connector-j/8.0/en/connector-j-reference-using-ssl.html

6. Confluence を再起動します。