It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

Webwork returns wrong protocol in $action.getBaseUrl()

It returns "http://my.jira.dom" when I use $action.getBaseUrl() in the Velocity template. Wrong url from the template is used in a Ajax request which causes the following error:

SEC7111: [Mixed-Content] The origin 'https://my.jira.dom' was loaded in a secure context but tried to load an insecure resource at 'http://my.jira.dom/rest/whatever'.

JIRA is accessed via https.

What might be wrong?

BTW AJS.contextPath() in js resource returns a correct url, which uses https.

1 answer

1 accepted

1 vote
Answer accepted
Andy Heinzer Atlassian Team Oct 10, 2019

Hi Dmirtril,

I understand you are seeing this mixed-content error message in Jira.  The nature of this message indicates that there is likely somewhere within Jira that is not yet configured to use HTTPS here.  

  1. First I'd want to check that the administration panel in Jira is configured to use this https address.  You can confirm this by following the steps in Configuring the Base URL.  I would expect this to be your https://my.jira.dom address.
  2. Once you confirm #1, try checking out the $JIRAINSTALL/conf/server.xml file.  This file will have <Connector> tags that govern what ports Jira opens up in the Apache Tomcat web server that Jira uses.  For HTTPS connections, I typically expect that you will have a <Connector> tag here that will have three parameters: proxyName, proxyPort, and scheme. 

The lack of these parameters could cause this mixed content error.  Essentially Jira's Tomcat is not aware that end users are using HTTPS here, and we need to update that connector, save that file, and restart Jira for this to work correctly.

I would expect you to have a connector that has these parameters:

scheme="https" proxyName="my.jira.dom" proxyPort="443"

Try adding this to the connector.   This detail is explained in the documentation we have on Integrating Jira with Apache using SSL.  I'm not sure if you're using an Apache proxy with Jira here, some other proxy, or even just natively using SSL directly in Tomcat.  If you're using a proxy, you'll likely need all three of these.  But if you're terminating SSL in Tomcat, you will at least need that scheme parameter on the connector here.

If you have more than one <Connector> tag in that file, let me know, you can share them here and perhaps I can offer some more specific advice as to how you could configure this to avoid this error.

Andy

Hi Andy,

 

Thanks a lot for such a detailed answer!

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted in Jira

Demo Den Ep. 7: New Jira Cloud Reports

Learn how to use two new reports for next-gen projects in Jira Cloud:  Cumulative flow diagram and Sprint burndown chart. Ivan Teong, Product Manager, Jira Software, demos the Cumulative ...

314 views 1 3
Join discussion

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you