Problem creating an Application Link from JIRA to a HTTPS Stash (or vice-versa)

症状

Trying to create an Application Link from JIRA to Stash can result in the following ERROR:

The host is unknown. Verify that the URL is correct.

And when attempting to create the same Application Link from Stash to JIRA the below error may occur:

The Remote application is not able to connect to 'Repository Manager'(Stash) by using the URL 'https://<HOST_NAME>.<DOMAIN>:8443'.

原因

This happens because JIRA doesn't have the Stash Certificate on its Trusted Certs (Cacerts file).

ソリューション

To successfully connect JIRA with Stash using the Application Links it is needed to import the Stash Certificate into the JIRA Server Cacerts file.

1. Export the Stash Certificate:

   $JAVA_HOME/bin/keytool -export -alias tomcat -file file.cer

2. Import the Stash's Certificate into JIRA Server Cacerts file:

   $JAVA_HOME/bin/keytool -import -alias tomcat -file file.cer

3. Configure JAVA_OPTS variable with the path to Cacerts file:

   export JAVA_OPTS=-Djavax.net.ssl.trustStore="$JAVA_HOME/jre/lib/security/cacerts" -Djavax.net.ssl.trustStorePassword="changeit"
   

   If the JIRA instance is also configured to use HTTPS the same procedure has to be repeated on the Stash Server (export JIRA Certificate, Import JIRA Certificate into Stash Cacerts and configure the JAVA_OPTS variable on the Stash Server).