Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Crowd + NGINX + SSL

I have set up Crowd + NGINX for reverse proxy and doing SSL.



server {
listen 80;
return 301 https://$server_name$request_uri;

server {
listen 443 ssl;
ssl_certificate /etc/pki/tls/certs/;
ssl_certificate_key /etc/pki/tls/private/;
location / {
proxy_pass http://localhost:8095;
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-for $remote_addr;
port_in_redirect off;
proxy_redirect http://localhost:8095;


 <Connector URIEncoding="UTF-8" acceptCount="100" compressableMimeType="text/html,text/xml,application/xml,text/plain,text/css,application/json,application/javascript,application/x-javascript" compression="on" connectionTimeout="20000" disableUploadTimeout="true" enableLookups="false" maxHttpHeaderSize="8192" maxThreads="150" minSpareThreads="25" port="8095" redirectPort="8443" sendReasonPhrase="true" useBodyEncodingForURI="true" proxyName="" proxyPort="443" scheme="https"/>

<Engine defaultHost="localhost" name="Catalina">
<Host appBase="webapps" autoDeploy="true" name="localhost" unpackWARs="true">
<Context path="" docBase="../../crowd-webapp" debug="0">
<Manager pathname="" />


# Modify the attributes of this file to quickly adjust the deployment values of Crowd.

# The Hibernate database dialect to use. See

# The http port you wish to run crowd from, ie: http://localhost:8095/crowd

# Tomcat requires a unique port for shutdown

# Crowd context root

# Demo context root

# OpenID server context root


I can access the login page using HTTPS, but when I try to log in I am getting in a loop.


What is wrong with my configuration? Thanks! 

2 answers

1 accepted

I'm running into the exact same issue, only with httpd with reverse proxy instead of nginx.

For anyone running into this same problem with apache (httpd), I was able to solve it with the following changes:

In your vhost file:

ProxyRequests off
ProxyPass /
ProxyPassReverse /
ProxyPreserveHost on 


In your server.xml file, add:


to your Connector.

Suggest an answer

Log in or Sign up to answer
Community showcase
Published in Bamboo

Bamboo Data Center Apps Program coming soon

G’day Bamboo customers, As we approach GA for Bamboo Data Center , we would like to inform you that the Data Center Apps Program for Bamboo starts this quarter. How long does it take? We are g...

66 views 0 6
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you