Forums

Articles
Create
cancel
Showing results for 
Search instead for 
Did you mean: 

Confluence HTTPs not working

Dan
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
October 13, 2019

Hi,

 

I am using a Docker Confluence container(atlassian/confluence - Confluence has the 7.0.1 version) in conjunction with a Docker Postgres SQL container(postgres 9.4). Both containers are running on a NAS Synology with the port forwarding done correctly. I am interested in using https instead of http. 

Steps that I have performed: 

1. Creating the self signed certificate on the Confluence container and storing it under a specific path

2. Added on <install-directory>/conf/server.xml the following:

<Connector port="8443"
maxHttpHeaderSize="8192"
maxThreads="150"
minSpareThreads="25"
protocol="org.apache.coyote.http11.Http11NioProtocol"
enableLookups="false"
disableUploadTimeout="true"
acceptCount="100"
scheme="https"
secure="true"
clientAuth="false"
sslProtocols="TLSv1,TLSv1.1,TLSv1.2"
sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2"
SSLEnabled="true"
URIEncoding="UTF-8"
keystorePass="<PASSWORD>"
KeystoreFile="<SPECIFICPATH>"/>

3. Modified inside of the Engine "Standalone" both rows with: 

useHttpOnly="true" -> useHttpOnly="false"

4. Confluence container has ports forwarded: 

   10000 -> 8090

   10001 -> 8091

   10002 -> 8443

5. Port changed in GUI - since I am forwarding the port from 8443 -> 10002, I have added https://192.168.1.12:10002 as base URL

6. Added the following section inside of 

<security-constraint>
<web-resource-collection>
<web-resource-name>Restricted URLs</web-resource-name>
<url-pattern>/</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>

5. Restarted Confluence using the scripts inside of the container: 

/opt/atlassian/confluence/bin/stop-confluence.sh

/opt/atlassian/confluence/bin/start-confluence.sh

 

The problem seems to be that it doesn't open the 8443 port. 

Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:8090 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:8091 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:8000 0.0.0.0:* LISTEN -

Any idea what can be ?

Thank you,
Dan

0 answers

Suggest an answer

Log in or Sign up to answer
TAGS
AUG Leaders

Atlassian Community Events