We are trying to connect Confluence to MySQL 5.7 using SSL via a google MySQL managed instance. We have 3 files, server-ca.pem, client-cert,pem, client-key.pem. I've imported the server certificate into the trust store and created a pkcs12 file with the cert files. This file was then imported into a keystore.
https://cloud.google.com/sql/docs/mysql/connect-admin-ip#connect-ssl
I'm having trouble passing the keystore location to Confluence java via the setenv.sh file in confluence/bin. Adding useSSL=true onto the jdbc url in dbconfig.xml gives me an access denied for confluence user message on MySQL. If I allow insecure connections Confluence user is able to connect. I was able to get this to work with Jira by following this article but its not working for Confluence:
https://stackoverflow.com/questions/41790254/mysqlgoogle-cloud-sql-user-access-denied-only-from-java
Any ideas on how to pass the keystore location variables? Here is my setenv.sh lines currently which aren't working:
CATALINA_OPTS="-Djavax.net.ssl.keyStore=/usr/lib/jvm/jdk1.8.0_271/bin/generated/keystore ${CATALINA_OPTS}"
CATALINA_OPTS="-Djavax.net.ssl.keyStorePassword=password ${CATALINA_OPTS}"
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.