Plugin is not processing standard maven options for disabling SSL-Certificate validations - download of allure binaries is not possible

[vinogradoff]

Describe the bug

Allure Report binaries are located in the internal enterprise Artifactory. The URL is https://artifactory.intern (SSL with non-public Certificate). Certificates are not installed on the local machine.

It seems not possible to get binaries downloaded with maven.
Plugin Version: 2.12.0

To Reproduce
On the local machine configure pom.xml to any https server with not-trusted certificate:

<configuration>
 <reportVersion>2.24.0</reportVersion>
 <allureDownloadUrl>https://artifactory.intern/io/qameta/allure/allure-commandline/%s/allure-commandline-%s.zip</allureDownloadUrl>
</configuration>  

Run mvn allure:install-> ERROR sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target - that is okay, because no certificate.

Run mvn -Dmaven.wagon.http.ssl.insecure=true allure:install -> ERROR sun.security.validator.ValidatorException: PKIX path building failed: sun.security.provider.certpath.SunCertPathBuilderException: unable to find valid certification path to requested target

Expected behavior
No errors, file is downloaded successfully

Additional context
Other dependency in the same pom.xml can be successfully downloaded from the same server with -Dmaven.wagon.http.ssl.insecure=true option.

Possible solutions

• process -Dmaven.wagon.http.ssl.insecure when downloading
• add <ignoreSSL>true</ignoreSSL> option to configuration
• always ignore SSL :-D

[TobiX]

Don't use allureDownloadUrl and this plugin will use Maven's wagon to download the command line artifact the same way as all other Maven downloads.