Application without port only with URL and SSL

It was all right with me but I tried everything 1000x even my technician did not get it in 8 hours.

I work with Apache2 and I want to include a SSL / Https and not reprogram the whole system.

I dont believe free nginx supports SAML

Ok, that's something we can work with. The error usually means that the proxy is misconfigured and refusing to talk to your browser.  In some cases, it might be trying to talk to the browser, but being told by your Jira's Tomcat that it should not.

Could you confirm that Jira was ok when running on http://<a.server>:8080 though?  No ssl, just the plain server and port?  If this is true, it means we can focus on where the error really is with the proxy and its connection back to Jira.

Yes I can reach Jira perfectly without SSL under 7070 and 8080.
I added that in the server.xml ...

<!-- Apache Proxy Connector with values for scheme, proxyName and proxyPort -->
<Connector acceptCount="100" connectionTimeout="20000" disableUploadTimeout="true" enableLookups="false" maxHttpHeaderSize="8192" maxThreads="150" minSpareThreads="25" port="8443" protocol="HTTP/1.1" redirectPort="8443" useBodyEncodingForURI="true"
scheme="https" proxyName="system.meinedomain.com" proxyPort="443"/>

8843 is fail 8080 is ok.

8843 is a control port, don't worry about it.  The best option for proxying is generally to stick to 8080

The next step is to get the proxy to work without SSL.  Two things to do here:

1.  Change back to http temporarily for getting the basics to work.  Change "scheme" to http, and proxyPort to 80 in the server.xml

2.  What do your Apache proxy settings say?

I do not work with Microsoft ?!

Ok, that's just silly, it has nothing to do with the question.

I do not work with Microsoft products but with Linux.
My Apache2 is running.

<VirtualHost *:80>
ServerAdmin webmaster@localhost
DocumentRoot /var/www/html
ErrorLog ${APACHE_LOG_DIR}/error.log
CustomLog ${APACHE_LOG_DIR}/access.log combined
RewriteEngine on
RewriteCond %{SERVER_NAME} =domain.tdl [OR]
RewriteCond %{SERVER_NAME} =domain.tdl [OR]
RewriteCond %{SERVER_NAME} =domain.tdl
RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
</VirtualHost>

There's no proxying set up in there.  You need to actually add the lines in the docs to proxy the system.

Proxying Jira is done by leveraging existing technology stacks Tomcat and your web server of choice. This is not difficult and should not take longer than 10 minutes for someone who isn't familiar with Jira.

If you have no idea what you're doing with Tomcat and Apache, perhaps you should involve a consulting group or your team.

There's a chunk of documentation that has not been followed.  The Apache config is only half done - it's not been configured to act as a proxy for Jira (unless we're missing a pile of further config which hasn't been mentioned here)

"does not work" tells us nothing.

The fact is it does work (there's a fully SSL enabled Jira running in a tab right next to this one), but you've got something wrong.

The instructions are, I'd agree, not incredibly simple, but SSL itself is not simple.

The question becomes what are you doing differently to the standard docs, not "it doesn't work".  Because the docs do describe how to make it work.

I tried it 50x and did everything according to the instructions but it does not work that also says my friend the hat tried it too.
Also had a good guide.

You don't tell us what you tried, or what guide you have used, or what you have done differently to the guides.

We can't help you with this without you telling us what you're doing differently. I could easily write a full guide, but there's no point, because it would be mostly a copy of the documentation.

I tried everything.

https://confluence.atlassian.com/adminjiraserver071/running-jira-applications-over-ssl-or-https-802593051.html

https://confluence.atlassian.com/adminjiraserver071/integrating-jira-with-apache-using-ssl-802593043.html

https://community.atlassian.com/t5/Jira-Core-questions/Jira-dosen-t-redirect-properly-to-HTTPS/qaq-p/28774

Which one of those methods do you want to use?  Proxy or Tomcat?

Which ever you choose, what did you do differently to the documentation?

I have a Ubuntu 17.10 Linux system and I want to do it with Apache2 so I think I should use proxy right?
Unfortunately I do not know exactly which instructions are correct.

Ok, so you should follow the instructions in the second guide.

Broadly, the steps are:

• Get Jira working on the default port
• Install apache and make sure you get the default page from it when you visit the server
• Create a new proxy setup in Apache, pointing back to Jira
• Reconfigure Jira's Tomcat so that it knows its behind a proxy
• Check this all works for plain http, then add in the SSL parts (there's basically a handful of lines to add to the configs once you have them running without ssl)

I have tried the second manual manual link everything often but without success, the instructions are incomprehensible and not executable as it refuses to other instructions.

It's the doc I use to create SSL Atlassian applications.  What are you doing differently to what it says?

I have the SSL certificate created by letsencrypt.org and then I have all the .pem data and I want to embed it in Jiira and then call the portal without a port or https.
I follow only the instructions but I can not do it.

Setting up Apache in front of jira should take 10 minutes, including a restart of jira. 

What are you seeing? 

Do you have any error messages? 

-Lars 

As Lars says, you need to tell us what "can not do" means.

What have you configured?  What errors do you get?

A good start on an explanation would be to describe how far down the list I gave earlier you get.  Does Jira run ok on an 8080 port?  Does Apache gives you a "Hi, I'm a clean apache" message when you visit the server in a browser?  Then it fails when you try to make it proxy through?  Or not until you try to add SSL?  Please tell us where you have got to!

I have also tried to let Jira run on port 443 and then point to the jira directory but that does not work.