Hi, in my self-managed cluster, im running ES accessible via https, I want operate to connect to it and accept self signed certificate. I have set the following env variables (based on Configuration | Camunda 8 Docs):
containers:
- env:
- name: JAVA_OPTS
value: >
-Dcamunda.operate.elasticsearch.url=https://elastic:9200
-Dcamunda.operate.zeebeElasticsearch.url=https://elastic:9200
-Dcamunda.operate.elasticsearch.ssl.selfSigned=true
-Dcamunda.operate.elasticsearch.ssl.verifyHostname=false
- name: CAMUNDA_OPERATE_ELASTICSEARCH_URL
value: https://elastic:9200
- name: CAMUNDA_OPERATE_ELASTICSEARCH_SSL_SELFSIGNED
value: 'true'
- name: CAMUNDA_OPERATE_ELASTICSEARCH_SSL_VERIFYHOSTNAME
value: 'false'
- name: CAMUNDA_OPERATE_ELASTICSEARCH_USERNAME
value: elastic
- name: CAMUNDA_OPERATE_ELASTICSEARCH_PASSWORD
value: password
However, it seems like both CAMUNDA_OPERATE_ELASTICSEARCH_SSL_SELFSIGNED and -Dcamunda.operate.elasticsearch.ssl.selfSigned=true are ignored by operate, since while connecting to elastic, its still attempting to find certificate:
PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target
any ideas what am I doing wrong?