Problem with Jira and confluence on SSL

Jakob Jensen April 23, 2016

Hi
Im trying to set up JIRA and confluence on a windows server with ssl.

I manage to install both and its working.
Now im trying to get it to work with SSL.
I followed the tutorial and created a certificate and a keystore.

I added this to my web.xml

<security-constraint>
  <web-resource-collection>
    <web-resource-name>Restricted URLs</web-resource-name>
    <url-pattern>/</url-pattern>
  </web-resource-collection>
  <user-data-constraint>
    <transport-guarantee>CONFIDENTIAL</transport-guarantee>
  </user-data-constraint>
</security-constraint>

 

My JIRA server.xml looks like this

<?xml version="1.0" encoding="UTF-8"?>

<Server port="8005" shutdown="SHUTDOWN">
    <Listener className="org.apache.catalina.startup.VersionLoggerListener"/>
  
    <Listener SSLEngine="on" className="org.apache.catalina.core.AprLifecycleListener"/>
    <!-- Prevent memory leaks due to use of particular java/javax APIs-->
    <Listener className="org.apache.catalina.core.JreMemoryLeakPreventionListener"/>
    <Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener"/>
    <Listener className="org.apache.catalina.core.ThreadLocalLeakPreventionListener"/>

    -->
    <Service name="Catalina">

  
      
            <Connector SSLEnabled="true" acceptCount="100" clientAuth="false" 
            connectionTimeout="20000" disableUploadTimeout="true" 
            enableLookups="false" keyAlias="alias" keystoreFile="PATH TO JKS" 
            keystorePass="PASSWORD" keystoreType="JKS" 
            maxHttpHeaderSize="8192" maxSpareThreads="75" maxThreads="150" minSpareThreads="25" 
            port="8443" protocol="org.apache.coyote.http11.Http11Protocol" scheme="https" 
            secure="true" sslProtocol="TLS" useBodyEncodingForURI="true"/>
       

        <Engine defaultHost="localhost" name="Catalina">
            <Host appBase="webapps" autoDeploy="true" name="localhost" unpackWARs="true">

                <Context docBase="${catalina.home}/atlassian-jira" path="/jira" reloadable="false" useHttpOnly="true">



                    <Resource auth="Container" factory="org.objectweb.jotm.UserTransactionFactory" 
                    jotm.timeout="60" name="UserTransaction" type="javax.transaction.UserTransaction"/>
                    <Manager pathname=""/>
                </Context>

            </Host>

         
            <Valve className="org.apache.catalina.valves.AccessLogValve" 
            pattern="%a %{jira.request.id}r %{jira.request.username}r %t "%m %U%q %H" %s %b %D "%{Referer}i" "%{User-Agent}i" "%{jira.request.assession.id}r""/>

        </Engine>
    
    <Connector acceptCount="100" connectionTimeout="20000" disableUploadTimeout="true" 
    enableLookups="false" maxHttpHeaderSize="8192" maxSpareThreads="75" maxThreads="150" 
    minSpareThreads="25" port="8009" protocol="HTTP/1.1" redirectPort="8443" useBodyEncodingForURI="true"/>
    </Service>
</Server>

 

my confluence server.xml looks like this'

<Server port="8000" shutdown="SHUTDOWN" debug="0">
    <Service name="Tomcat-Standalone">
        <Connector port="8090" connectionTimeout="20000" redirectPort="8443"
                maxThreads="200" minSpareThreads="10"
                enableLookups="false" acceptCount="10" debug="0" URIEncoding="UTF-8"
                protocol="org.apache.coyote.http11.Http11NioProtocol" />
        <Engine name="Standalone" defaultHost="localhost" debug="0">
            <Host name="localhost" debug="0" appBase="webapps" unpackWARs="true" autoDeploy="false">
                <Context path="/confluence" docBase="../confluence" debug="0" reloadable="false" useHttpOnly="true">
                    <!-- Logger is deprecated in Tomcat 5.5. Logging configuration for Confluence is specified in confluence/WEB-INF/classes/log4j.properties -->
                    <Manager pathname="" />
                    <Valve className="org.apache.catalina.valves.StuckThreadDetectionValve" threshold="60" />
                </Context>
            </Host>
        </Engine>
        
        <Connector port="8010" redirectPort="8443" enableLookups="false" protocol="AJP/1.3" URIEncoding="UTF-8"/>
       
        <Connector acceptCount="100" 
                   connectionTimeout="20000"
                   disableUploadTimeout="true"
        enableLookups="false" maxHttpHeaderSize="8192" 
                   maxThreads="150"
        minSpareThreads="25" port="8080" protocol="HTTP/1.1" 
                   redirectPort="8090" useBodyEncodingForURI="true"/>
        <Connector port="8443" 
                   maxHttpHeaderSize="8192"
                   maxThreads="150" 
                   minSpareThreads="25"
                   protocol="org.apache.coyote.http11.Http11NioProtocol"
                   enableLookups="false" 
                   disableUploadTimeout="true"
                   acceptCount="100" 
                   scheme="https" 
                   secure="true"
                   clientAuth="false" 
                   sslProtocols="TLSv1,TLSv1.1,TLSv1.2" 
                   sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" 
                   SSLEnabled="true"
                   URIEncoding="UTF-8" 
                   keyAlias="alias" 
                   keystoreFile="PATH TO JKS" 
                   keystorePass="PASSWORD" 
                   keystoreType="JKS"/>
  <!--   -->
    </Service>
</Server>

 

Hope someone can help smile

Regards

jakob

2 answers

0 votes
Jakob Jensen April 24, 2016

The problem is that it dont work smile

I got different kind of errors, and was not able to set it up.

JIRA is causing a 502, and confluence is not being redirected to https

0 votes
Steve Behnke [DiscoverEquip.com]
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
April 24, 2016

Well what's the problem?

Suggest an answer

Log in or Sign up to answer