Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Deleted user
0 / 0 points
badges earned

Your Points Tracker
  • Global
  • Feed

Badge for your thoughts?

You're enrolled in our new beta rewards program. Join our group to get the inside scoop and share your feedback.

Join group
Give the gift of kudos
You have 0 kudos available to give
Who do you want to recognize?
Why do you want to recognize them?
Great job appreciating your peers!
Check back soon to give more kudos.

Past Kudos Given
No kudos given
You haven't given any kudos yet. Share the love above and you'll see it here.

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Periodic authentication failures with preemptive basic authentication Edited


I'm seeing periodic failures when connecting to Jira on premise, using Crowd for authentication, via the REST API. I am using preemptive basic authentication, and I'm also passing the session cookie in subsequent responses. Because the authentication failures are periodic (the same credentials will mostly pass but occasionally fail), I'm thinking that the preemptive basic authentication might be overloading the Crowd servers and causing them to occasionally return authentication failures.

If I pass both the Authorization header and the session cookie, will it cause Crowd to re-authenticate with every request, or will the cookie be used instead? Is preemptive basic authentication not recommended for high load applications where the Crowd servers might be overloaded?


The failures that I'm seeing in Jira access logs are:

login : '<username>' tried to login but they do not have USE permission or weren't found. Deleting remember me cookie.

The user '<username>' has FAILED authentication. Failure count equals 1


The HTTP request I'm sending contains these headers:


Cookie: JSESSIONID=****; atlassian.xsrf.token=****; <crowd.token_key>=****


The HTTP response contains these headers:

Set-Cookie: <crowd.token_key>=****; Domain=****; Expires=****; Path=****; HttpOnly[\r][\n]

X-Seraph-LoginReason: OUT

Set-Cookie: <crowd.token_key>=****; Domain=****; Path=****; HttpOnly[\r][\n]


0 answers

Suggest an answer

Log in or Sign up to answer
Community showcase

The benefits of using Jira in different departments

Jira is a great tool to use across different departments. Forget that paperwork – switch to Jira and get that tasks done smoothly. Marketing Jira allows for a complete digital transformation of you...

108 views 0 7
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you