we are using Bitbucket server over HTTPS behind reverse proxy (Netscaler). The site/page is not secure if there is default avatar on page because the request is over http and not https.
Our base url is https:\\bitbucket.[companyname].de
Everything works fine and is secure except requesting default avatar:
so that page results in not-secure page!
Other avatars will be directly requested as https:
What is the correct configuration to get requests over https to get secure pages?
We are using v4.14.3 of Bitbucket
I have had similar problem with jira in past. Configured reverse proxy with ssl but the pictures have been delivered over http.
I forgot to set the "scheme" in server.xml connector to https.
proxyPort="443" secure="true" scheme="https"
Thanks for your answer, Stefan, but it doesn't work. The effects are same (default avatar images will be requested over http not https).
My server.xml contains following configuration:
<Service name="Catalina"> <Connector port="7990" SSLEnabled="false" scheme="https" secure="true" proxyPort="443" proxyHost="bitbucket.[companyname].de" connectionTimeout="20000" redirectPort="8443" maxThreads="48" minSpareThreads="10" enableLookups="false" acceptCount="10" debug="0" URIEncoding="UTF-8" protocol="org.apache.coyote.http11.Http11NioProtocol" />
I renamed .default-server.xml to server.xml in \conf-folder.
For Bitbucket Server, the server.xml is read from $BITBUCKET_HOME/shared/server.xml first, not from the installation directory. If you make the same changes to the shared directory and restart Bitbucket Server, the avatar should be loaded over HTTPS.
More details available at https://confluence.atlassian.com/bitbucketserver0414/securing-bitbucket-server-behind-haproxy-using-ssl-895368117.html#SecuringBitbucketServerbehindHAProxyusingSSL-step3Step3:ConfiguretheTomcatConnector
As a project manager, I have discovered that different developers want to bring their previous branching method with them when they join the team. Some developers are used to performing individual wo...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs