Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
4,299,231
Community Members
 
Community Events
165
Community Groups

Can't log in in Crowd after adding trusted proxies

Hi,

 

I've set up Crowd to run behind Apache HTTP and to get Crowd to use the IP address from the calls from applications (Jira, BitBucket, etc). I added 127.0.0.1 and 

0:0:0:0:0:0:0:1 as trusted proxies. After doing so all calls from the applications works just fine, but when I can't no longer log in to Crowd as a user or admin. Then I enter username and password I just gets redirected to the log in page again with no error message. This is what appears in the log when I try to authenticate with my user 'heka':

2018-07-10 11:29:34,238 http-nio-8095-exec-17 DEBUG [crowd.manager.application.ApplicationServiceGeneric] Trying to authenticate user heka in directory Crowd server (163841) for application crowd                

2018-07-10 11:29:34,240 http-nio-8095-exec-17 DEBUG [crowd.manager.application.ApplicationServiceGeneric] User heka does not exist in directory Crowd server (163841), continuing

2018-07-10 11:29:34,240 http-nio-8095-exec-17 DEBUG [crowd.manager.application.ApplicationServiceGeneric] Trying to authenticate user heka in directory Pulsen AD (557057) for application crowd

2018-07-10 11:29:34,315 http-nio-8095-exec-17 DEBUG [crowd.manager.application.ApplicationServiceGeneric] Authenticated user heka in directory Pulsen AD (557057) for application crowd

2018-07-10 11:29:34,324 http-nio-8095-exec-17 DEBUG [crowd.manager.application.ApplicationServiceGeneric] Located user 'heka' in directory 557057 'Pulsen AD'

2018-07-10 11:29:34,350 http-nio-8095-exec-17 DEBUG [crowd.manager.application.ApplicationServiceGeneric] Storing user attributes for user <heka> and application <crowd>

2018-07-10 11:29:34,402 http-nio-8095-exec-17 DEBUG [crowd.manager.application.ApplicationServiceGeneric] Located user 'heka' in directory 557057 'Pulsen AD'

 

As I can't access the GUI I managed to remove the trusted proxies from the database and after restarting crowd I can log in again, but then all request from applications fail...

 

Regards,

Henrik Karlsson

1 answer

0 votes
AnnWorley Atlassian Team Jul 10, 2018

Hi Henrik,

If you have SSO enabled the resolutions in this article may help: Redirected to the login screen with no errors when attempting to log in to any Atlassian applications

It says the most common cause of the behavior is browser caching so please clear your browser cache first.

The article mentions this symptom which is similar to yours:

No errors thrown in the application's logs or Crowd's logs, or in the UI. In fact, based on the logs, authentication should be successful

This entry you posted looks like a successful login to Crowd from an external Active Directory user directory:

Authenticated user heka in directory Pulsen AD (557057) for application crowd

Thanks,

Ann

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Confluence

An update on Confluence Cloud customer feedback – June 2022

Hi everyone, We’re always looking at how to improve Confluence and customer feedback plays an important role in making sure we're investing in the areas that will bring the most value to the most c...

260 views 2 5
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you