Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Automatically adds custom certificates to a Java trust store #23555

Closed
Closed
Automatically adds custom certificates to a Java trust store#23555
Assignees
tolusha
Labels
area/udiIssues and PRs related to the universal developer image https://github.com/devfile/developer-imageskind/taskInternal things, technical debt, and to-do tasks to be performed.new&noteworthyFor new and/or noteworthy issues that deserve a blog post, new docs, or emphasis in release notesseverity/P2Has a minor but important impact to the usage or development of the system.team/BThis team is responsible for the Web Terminal, the DevWorkspace Operator.
@tolusha

Description

@tolusha
tolusha
opened on Sep 16, 2025

Is your task related to a problem? Please describe

Custom certificates [1] are not automatically added to the Java trust store.
The approach suggested in [2] is not ideal, as it requires creating an additional ConfigMap and manually running a bash script.

[1] https://eclipse.dev/che/docs/stable/administration-guide/importing-untrusted-tls-certificates/
[2] https://eclipse.dev/che/docs/stable/end-user-guide/enabling-maven-artifact-repositories/

Describe the solution you'd like

  • Automatically add certificates to a Java trust store in entrypoint of UDI. For script ideas, see [1] [2].
  • Review [3] if we can improve something, clean up the doc.
  • Fix verification steps in [4], to take into account different bundle mount path

[1] https://github.com/eclipse-che/che-server/blob/main/build/dockerfiles/entrypoint.sh#L360
[2] https://gist.github.com/tolusha/6c68d907a52d235b311f196478ce08b6
[3] https://eclipse.dev/che/docs/stable/end-user-guide/enabling-artifact-repositories-in-a-restricted-environment/
[4] https://eclipse.dev/che/docs/stable/administration-guide/importing-untrusted-tls-certificates/

Describe alternatives you've considered

No response

Additional context

No response

Metadata

Metadata

Assignees

Labels

area/udiIssues and PRs related to the universal developer image https://github.com/devfile/developer-imageskind/taskInternal things, technical debt, and to-do tasks to be performed.new&noteworthyFor new and/or noteworthy issues that deserve a blog post, new docs, or emphasis in release notesseverity/P2Has a minor but important impact to the usage or development of the system.team/BThis team is responsible for the Web Terminal, the DevWorkspace Operator.

Type

No type

Fields

No fields configured for issues without a type.

Projects

Eclipse Che Team B Backlog

Status

✅ Done

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions