Sonar-scanner fails with self-signed certificate

That’s definitely the stupidest thing I’ve read today after wasting 2 days trying to get it work…
Like the alternatives would be really better. Especially when using sonar-scanner in docker container where you have absolutely no rights to change sonar-scanner truststore…
It should be up to users how they wan’t to connect to the sonar server. Especially the option to bind external trust store with javax.net.ssl.trustStore was useful. Pretty legit solution. Now only option is to unsecure the route and use plain http. As requesting the certificate for development purposes in this case makes no sense.

4 Likes