Sending request via a HTTPS Proxy not working

Tue, 13 Oct 2020 22:30:01 -0700 

Hi guys,

I am having trouble using a HTTPS proxy server with Camel.
HTTP is working quite nice. As soon as I switch to proxyAuthScheme=https.

The proxy is using a valid Letsencrypt SSL Cert on port 3128.


Request:

.toD("https://target.domain.com";
                                + "?httpMethod=POST"
                                + "&proxyHost=proxy.mydomain.de"
                                + "&proxyPort=3128"
                                + "&proxyAuthUsername="+ 
System.getenv("PROXY_UserName")
                                + "&proxyAuthPassword="+ 
System.getenv("PROXY_Password")
                                + "&proxyAuthMethod=Basic"
                                + "&proxyAuthScheme=https"
                         )

Error Message:

---------------------------------------------------------------------------------------------------------------------------------------
   
21:42:28 web.1   |  javax.net.ssl.SSLHandshakeException: PKIX path building 
failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to 
find valid certification path to requested target
21:42:28 web.1   |      at 
java.base/sun.security.ssl.Alert.createSSLException(Alert.java:131) ~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:326) 
~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:269) 
~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:264) 
~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:645)
 ~[na:na]        
21:42:28 web.1   |      at 
java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.onCertificate(CertificateMessage.java:464)
 ~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.consume(CertificateMessage.java:360)
 ~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:392) ~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:444) 
~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:422) 
~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.TransportContext.dispatch(TransportContext.java:183) 
~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:171) ~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1403) 
~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.SSLSocketImpl.readHandshakeRecord(SSLSocketImpl.java:1309)
 ~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:440) 
~[na:na]
21:42:28 web.1   |      at 
java.base/sun.security.ssl.SSLSocketImpl.startHandshake(SSLSocketImpl.java:411) 
~[na:na]
...


What can I do?
Is this a bug?

Best regards
-Marko

Reply via email to