Spring Cloud Config Spring cloud config not able to connect to vault using app role

Hi guys :)

is this actually working. I'm trying to switch from token to app role but not able to make it working.

    vault:
      order: 2
      scheme: https
      port: 443
      host: ${VAULT_HOST:**********}
      kvVersion: 2
      namespace: ${VAULT_NAMESPACE:****}
      backend: ${VAULT_BACKEND:secret}
      profile-separator: /
      skip-ssl-validation: true
      authentication: APPROLE
      app-role:
        role-id: ***********************
        secret-id: ******************
        role: approle-dev
        app-role-path: approle

    <dependency>
        <groupId>org.springframework.vault</groupId>
        <artifactId>spring-vault-core</artifactId>
        <version>2.2.2.RELEASE</version>
    </dependency>

SSLHandshakeException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target"

Using java 15 and latest vault dependency and spring cloud config. With token based everything is working just fine :) any ideas?

Comment From: spencergibb

I haven't the slightest idea. @mp911de or @scottfrederick any thoughts?

Comment From: mp911de

Looks like the server server certificate is signed and you don't have the intermediate/CA certificate in your trust store. You can either import these in the JRE truststore or configure one that is dedicated to your app.

Not sure whether the skip ssl validation flag does what it is supposed to do though.

Comment From: VladislavBorisov

Looks like the server server certificate is signed and you don't have the intermediate/CA certificate in your trust store. You can either import these in the JRE truststore or configure one that is dedicated to your app.

Not sure whether the skip ssl validation flag does what it is supposed to do though.

Probably this can be a solution but have to test it again. Actually I was trying almost everything and finally stayed with token instead of approle :)

Comment From: spring-cloud-issues

If you would like us to look at this issue, please provide the requested information. If the information is not provided within the next 7 days this issue will be closed.

Comment From: spring-cloud-issues

Closing due to lack of requested feedback. If you would like us to look at this issue, please provide the requested information and we will re-open the issue.