Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions
Community
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions
Forums
Home Q&A Discussion groups Articles Ask a question Search
Learning Events Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Users accesing with same IP address can login the application directly without enter credentials

Luis Mayoral
Luis Mayoral
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 3, 2018

Hello,
We have detected an extrange behaviour with our Bitbucket server (5.10.1).
Some users are connecting to the server using "the same IP address", because they are behind a NAT. When one of them access in the application and later close the browser, the next user can enter directly in the application (without login) and taking the previous user namer.

We can minimize the damage reducing the time of default session timeout, but I think this is not sufficient for us.

Is there any possibility to solve our problem?

Thank you very much

Answer
Watch
Like Be the first to like this
918 views

1 answer

0 votes
David Yu
David Yu
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Champions.
Get recognized
July 3, 2018

This is just a shot in the dark, but do you have any type of caching configured in your proxy or load-balancer? Seems like it could be recycling the same sessions between users.

View More Comments
Luis Mayoral
Luis Mayoral
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
July 26, 2018

Hi,

Finally I solved it adding the following setting in bitbucket.properties file:

server.session.cookie.name=BITBUCKETSESSIONID

 

Anyway, thank you very much for your answer

best regards

Like
Reply

Suggest an answer

Log in or Sign up to answer
Bitbucket
Bitbucket
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security