Copado backend has 2 static IP addresses. If you have IP restrictions in your Salesforce Org, you may need to whitelist them in Setup > Network Settings.
Make sure of the following:
- If there are IP Restrictions at the Profile level, you will also need to add these addresses in the Login IP Ranges section of the Profile
- In Setup > Session Settings, the "Enforce login IP ranges on every request" is not enabled
- In Setup > Session Settings, the "Lock sessions to the IP address from which they originated" is not enabled
Hosted Git Repository (On Premise)
To connect a hosted Git repository behind a firewall you will need to whitelist the Copado IP addresses and open the corresponding port (port 443 for HTTPS).
For the HTTPS connection to be successful, the SSL certificate must be properly installed and issued by a trusted SSL Certification Authority (not a self-signed SSL Certificate).
If after configuring the SSL, Copado cannot connect to your Git Repository, you can download this jar file in a computer* and execute it on the command line to see if there are any HTTPS connection errors, as follows:
java -jar testHTTPS.jar https://github.mycopmany.com
You will need to change https://github.mycopmany.com with your server URL (make sure it's an HTTPS url).
If you see a messages "OK. SSL certificate is trusted." then you are good.
Otherwise follow the recommendations done by the program.
If the certificate is not properly installed or java doesn't trust it, you will get an error message like:
Exception in thread "main" javax.net.ssl.SSLException: ......
If this is the case, troubleshoot the error until the connection is successful*.
*Make sure that the machine where the program runs doesn't have any custom certificates installed.
*Copado does not provide support for SSL Certificate installation/configuration or whitelisting IP Addresses in your network.