Foundry Certificate Installation

From OpenUru
Revision as of 16:21, 15 March 2011 by Mac Fife (talk | contribs) (Typo)
Jump to: navigation, search
This page contains draft content
The content of this page is a "work-in-progress" and is subject to change. Do not place undue reliance on the completeness or accuracy of the material presented here!

The OpenUru Foundry tools use SSL (Secure Sockets Layer) to encrypt transactions and to give confidence that you are connected to the correct server. Currently, this is a "self-signed" certificate and not one that has been validated by the main certificate authorities, so most browsers will display a warning when you navigate to one of the Foundry pages.

You can avoid these warnings by installing the certificate in your browser's certificate store. This can be done when you first visit the foundry, but the methods vary greatly across browsers. It is perhaps easier to manually install the certificate before visting the Foundry. The certificate will also need to installed in repository tools (Mercurial or Subversion) using SSL to access the Foundry repositories.

Obtaining the Certificate

(For manual installation into applications not listed below)

Download a copy of the certificate using this link: Foundry Certificate

Browser Installation

Please read the instructions so you know what to do before clicking on the link to the certificate, or right click the link and open it in a new tab or window.


Click on the following link: Foundry Certificate A popup will appear titled "Downloading Certificate". Mark the check box for "Trust this CA to identify web sites" then click "OK" (you may wish to click "View" to check the certificate details first). The certificate is now installed, and when visiting the Foundry you should see the padlock symbol at the bottom right of your browser: hovering the mouse pointer over this should show "Authenticated by"

Note: Firefox 3.6.0 contains a bug which may cause loss of data when using JIRA - users should upgrade their Firefox installation to 3.6.2 or later.

Internet Explorer

Click on the following link: Foundry Certificate A popup will appear titled "File Download - Security Warning". Click "Open" and the certificate details will be displayed in a new popup wher you can inspect them. On the "General" tab, click "Install Certificate...". When the Certificate Import Wizard appears click "Next>", then on the Certificate Store page select "Automatically select the certificate store based on the type of certificate" and click "Next>" and then "Finish". Another popup will appear titled "Security Warning" and asking "Do you want to install this certificate?" - Click "Yes". You should get a message telling you that the import was successful. Click "OK" on any remaining dialog boxes. The certificate is now installed, and when visiting the Foundry you should see the padlock symbol to the right of the URL bar with a blue background.

Google Chrome

Apple Safari


Repository Installation

TortoiseHg 2.0.x (Mercurial)

Open the TortoiseHg Workbench, and open the ProjectName repository at You will probably see an error message at the bottom of the window indicating that the command was aborted - ignore this. In the middle section, under "Remote Repository", there is a drop-down to select the protocol (keep it "https"), and then click on the padlock icon. A popup titled "Security:" will appear. Select "Verify with stored host fingerprint (good)", then click the "Query" button to obtain the certificate signature from This will fill in the field with the fingerprint data which should match the example given below. Fill in your User Authentication information (only Username and Password are required and are the same as your JIRA account details) and click "Save". Now your pull/push operations should succeed. You can verify the command has succeeded by selecting "View -> Show Output Log" to show the output from the underlying Mercurial commands; they always should announce a successful completion.

Host Fingerprint:


TortoiseSVN (Subversion)