Activity Stream (via https) is blocked by external firewall ruleset as in iframe

samcolak October 16, 2012

A TMG (Threat Management Gateway) with login management sits infront of the JIRA Server.

When viewing the dashboard (after login) the activity stream shows the TMG home page/challenge as the applet is in the form of an iframe (which doesnt inheirt the TMG cookie).

Any ideas?

3 answers

0 votes
Mehmet Kazgan
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
April 14, 2014

Hi Samuel,

I have found couple links with workarounds for this very same problem we are having from TMG side and they all point out clearing the block high-bit characters and normalization settings. These two changes worked for my case.

http://support.microsoft.com/kb/837865/en-usThis one suggest to clear the “Block high-bit characters” check box, which I think might be a fix.

http://donalconlon.wordpress.com/tag/forefront-tmg/This link exactly talks about item 1 + Normalization

0 votes
Norman Abramovitz
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
October 18, 2012

Not sure if this relevant or not or if Atlassian has changed their philosophy, but I remember this note from Greenhopper release 5.5 that atlassian will stop testing with iframes.

https://confluence.atlassian.com/display/GH/GreenHopper+5.5+Release+Notes#GreenHopper5.5ReleaseNotes-JIRAiframeRemoved

JIRA 4.2 onwards includes functionality that is not designed and/or tested for use within an iframe. As such GreenHopper can no longer ensure that the page displayed in the iframe will behave as expected.

0 votes
David at David Simpson Apps
Marketplace Partner
Marketplace Partners provide apps and integrations available on the Atlassian Marketplace that extend the power of Atlassian products.
October 18, 2012

So, your JIRA server is mainly on HTTP, but the activity stream is on HTTPS which doesn't share the HTTP cookies?

Suggest an answer

Log in or Sign up to answer