jira + nginx - can't login via https
-
I'm trying to setup jira server via nginx proxy.
made a A dns record for it, made an port forwarding to NGINX (with certbot installed),
at nginx i got this jira.blabla.com. conf config[server { server_name jira.blabla.com; location / { proxy_set_header X-Forwarded-Host $host; proxy_set_header X-Forwarded-Server $host; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_pass http://172.16.1.19:8080; } listen 443 ssl; # managed by Certbot ssl_certificate /etc/letsencrypt/live/jira.blabla.com/fullchain.pem; # managed by Certbot ssl_certificate_key /etc/letsencrypt/live/jira.blabla.com/privkey.pem; # managed by Certbot ssl_protocols TLSv1 TLSv1.1 TLSv1.2; } server { listen 80; server_name jira.blabla.com; return 301 https://$server_name$request_uri;]
/opt/atlassian/jira/conf/server.xml
<Connector port="8080" relaxedPathChars="[]|" relaxedQueryChars="[]|{}^\`"<>" maxThreads="150" minSpareThreads="25" connectionTimeout="20000" enableLookups="false" maxHttpHeaderSize="8192" protocol="HTTP/1.1" useBodyEncodingForURI="true" redirectPort="8443" acceptCount="100" disableUploadTimeout="true" bindOnInit="false" secure="true" scheme="https" proxyName="jira.blabla.com" proxyPort="443"/>
old one is commented
<!-- <Connector port="8080" relaxedPathChars="[]|" relaxedQueryChars="[]|{}^\`"<>" maxThreads="150" minSpareThreads="25" connectionTimeout="20000" enableLookups="false" maxHttpHeaderSize="8192" protocol="HTTP/1.1" useBodyEncodingForURI="true" redirectPort="8443" acceptCount="100" disableUploadTimeout="true" bindOnInit="false"/> -->
i opening https://jira.blabla.com
and i can't login with no error
with the sane credentials i can login at http://jira.blabla.lan:8080/ -
@emoxam said in jira + nginx - can't login via https:
I'm trying to setup jira server via nginx proxy.
made a A dns record for it, made an port forwarding to NGINX (with certbot installed),
at nginx i got this jira.blabla.com. conf config[server { server_name jira.blabla.com; location / { proxy_set_header X-Forwarded-Host $host; proxy_set_header X-Forwarded-Server $host; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_pass http://172.16.1.19:8080; } listen 443 ssl; # managed by Certbot ssl_certificate /etc/letsencrypt/live/jira.blabla.com/fullchain.pem; # managed by Certbot ssl_certificate_key /etc/letsencrypt/live/jira.blabla.com/privkey.pem; # managed by Certbot ssl_protocols TLSv1 TLSv1.1 TLSv1.2; } server { listen 80; server_name jira.blabla.com; return 301 https://$server_name$request_uri;]
/opt/atlassian/jira/conf/server.xml
<Connector port="8080" relaxedPathChars="[]|" relaxedQueryChars="[]|{}^\`"<>" maxThreads="150" minSpareThreads="25" connectionTimeout="20000" enableLookups="false" maxHttpHeaderSize="8192" protocol="HTTP/1.1" useBodyEncodingForURI="true" redirectPort="8443" acceptCount="100" disableUploadTimeout="true" bindOnInit="false" secure="true" scheme="https" proxyName="jira.blabla.com" proxyPort="443"/>
old one is commented
<!-- <Connector port="8080" relaxedPathChars="[]|" relaxedQueryChars="[]|{}^\`"<>" maxThreads="150" minSpareThreads="25" connectionTimeout="20000" enableLookups="false" maxHttpHeaderSize="8192" protocol="HTTP/1.1" useBodyEncodingForURI="true" redirectPort="8443" acceptCount="100" disableUploadTimeout="true" bindOnInit="false"/> -->
i opening https://jira.blabla.com
and i can't login with no error
with the sane credentials i can login at http://jira.blabla.lan:8080/You're using https but you don't have any information for proxying tcp 443 assigned in the nginx config.
-
@pete-s said in jira + nginx - can't login via https:
You're using https but you don't have any information for proxying tcp 443 assigned in the nginx config.
It is, you even quoted it
-
@emoxam said in jira + nginx - can't login via https:
secure="true" scheme="https"
proxyName="jira.blabla.com" proxyPort="443"/>Are you sure this part is right for enabling Jira behind a proxy?
-
@jaredbusch said in jira + nginx - can't login via https:
@pete-s said in jira + nginx - can't login via https:
You're using https but you don't have any information for proxying tcp 443 assigned in the nginx config.
It is, you even quoted it
My bad. I thought his internal server running jira was setup to use https (self-signed certificate) on port 8443 (with redirect on 8080).