Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Invalid session error on OAuth callback when accessing Atlassian MCP via proxy

manikanta_ambati_accenture
manikanta_ambati_accenture
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
December 16, 2025

We are integrating Atlassian MCP Remote server with an IDE client (VS Code) and accessing it via a reverse proxy (Apigee) for security and logging.

The MCP initialization succeeds, but during the OAuth flow, the callback endpoint fails with an “invalid session” error.

The same setup works correctly when connecting directly to https://mcp.atlassian.com, without the proxy.

Error Details:
URL: mcp.atlassian.com/v1/callback?state=eyJzZXNzaW9uX2lkIjoiNDRlNzRjM2QtZDE1ZS00NWY4LTgxODYtZGUyOGQ0OGM5MjNkIiwib3JpZ2luYWxfcmVkaXJlY3RfdXJpIjoiaHR0cDovLzEyNy4wLjAuMTozMzQxOC8ifQ%3D%3D&code=eyJraWQiOiJBVVRIX...
Response: Invalid session

Comment
Watch
Like Be the first to like this
73 views

2 comments

Comment

Log in or Sign up to comment
Anthony France
Anthony France
December 16, 2025

I will also say that the oauth implementation is very unreliable.  I use it in cursor and have to restart the MCP server to refresh the token constantly.  

Please give us the option to use PATs.

Like
Ibraheem Osama
Ibraheem Osama
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
December 16, 2025

Thanks Anthony, we are working on fixing the refresh token issue plus we are also working on supporting PATs.

Like Anthony France likes this
Anthony France
Anthony France
December 17, 2025

Thanks for the information dude!

Like Ibraheem Osama likes this
Reply
Ibraheem Osama
Ibraheem Osama
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
December 16, 2025

Hi @manikanta_ambati_accenture 

Do you get the error everytime or it's an intermittent?

If the issue happens everytime, its likely that Apigee is removing certain cookies that is used for session validation.

Thanks,
Ibby

Like
manikanta_ambati_accenture
manikanta_ambati_accenture
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
December 16, 2025

Thanks for the response. This happens every time; we observed a cookie mismatch between the /authorize and /callback calls.

Like
Reply
groups-icon
Atlassian Rovo MCP Server
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security