We have a JIRA Data Center instance (8.20.X) accessed with reverse proxy (F5) + Azure authentication.
We are trying to enable the mobile App. - from cell phones that are not connected to the org VPN.
According to Atlassian support, for the App to work - there is a need to enable unauthenticated access to https://<base url>/jdc/rest/nativemobile/1.1/info/login
According to our networking and security teams - such access can provide a backdoor for attacks on the internal network.
Have anyone encountered/resolved such problem (on any reverse proxy).