Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

JIRA 7.9.0: SSL, no PadLock

Maik Barz
Maik Barz
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
April 11, 2018

Hey guys,

I have installed now JIRA Software 7.9.0 and Service Desk 3.12.0.

My domain is something like jira.mydomain.eu

During the login and several pages I have the PadLock shown in the browser bar. But not on every page. There seems to be mixed content every now and then.

My server.xml has the following connectors:

<Connector 

                acceptCount="100" 
                connectionTimeout="20000" 
                disableUploadTimeout="true" 
                enableLookups="false" 
                maxHttpHeaderSize="8192" 
                maxThreads="150" 
                minSpareThreads="25" 
                port="8080" 
                protocol="HTTP/1.1" 
                redirectPort="8443" 
                useBodyEncodingForURI="true" 
                scheme="https" 
                proxyName="jira.mydomain.eu" 
                proxyPort="443"
                secure="true"/>
<Connector 
                port="8081" 
                maxThreads="150" 
                minSpareThreads="25" 
                connectionTimeout="20000" 
                enableLookups="false"
                maxHttpHeaderSize="8192" 
                protocol="HTTP/1.1" 
                useBodyEncodingForURI="true" 
                redirectPort="8443"
                acceptCount="100" 
                disableUploadTimeout="true"
                bindOnInit="false"/> 


My Apache virtual host look like this:

<VirtualHost *:80>
   ServerAdmin xyz@gmail.com
   ServerName jira.mydomain.eu
   ErrorLog ${APACHE_LOG_DIR}/jira-error.log
   LogLevel warn
   CustomLog ${APACHE_LOG_DIR}/jira-access.log combined
   <Proxy *>
     Order deny,allow
     Allow from all
   </Proxy>
   RewriteEngine On
   RewriteCond %{HTTPS} !=on
   RewriteRule ^/?(.*) https://%{SERVER_NAME}/$1 [R,L]
</VirtualHost>

<VirtualHost *:443>
   ServerAdmin xyz@@gmail.co
   ServerName jira.mydomain.eu
   SSLProxyEngine On
   ProxyRequests Off
   ProxyPreserveHost On

# setup the proxy
   <Proxy *>
     Order allow,deny
     Allow from all
   </Proxy>
   SSLEngine on
   SSLCertificateKeyFile /etc/ssl/mydomain_eu.key
   SSLCertificateFile /etc/ssl/mydomain_eu.crt
   SSLCertificateChainFile /etc/ssl/mydomain_eu.ca-bundle
# setup the proxy
   ProxyPass / http://mydomain.eu:8081/
   ProxyPassReverse / http://mydomain.eu:8081/

   RewriteEngine On
   RewriteCond %{HTTPS} off
   RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
</VirtualHost>

The base url is correctly set up in the settings of lira to https://jira.mydomain.eu

Has anybody a clue on how to get this completely working?

Answer
Watch
Like Be the first to like this
642 views

1 answer

1 accepted

1 vote
Answer accepted
Gonchik Tsymzhitov
Gonchik Tsymzhitov
Community Champion
April 11, 2018

Hi! 

 

I have seen one misconfiguration:

   ProxyPass / http://mydomain.eu:8081/
   ProxyPassReverse / http://mydomain.eu:8081/

better way is use 8080, because you have correct parameters in 8080 port connector

  port="8080"  
  scheme="https" 
  proxyName="jira.mydomain.eu" 
  proxyPort="443"

 Also please, remove this directive, 

SSLProxyEngine On

 because as I understand between revers proxy and jira don't have ssl connection.

This one is extra rule, for opinion.

   RewriteEngine On
   RewriteCond %{HTTPS} off
   RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}

 

 

hope it helps

 

 

Cheers,

Gonchik Tsymzhitov

View More Comments
Maik Barz
Maik Barz
I'm New Here
I'm New Here
Those new to the Atlassian Community have posted less than three times. Give them a warm welcome!
Get involved
April 12, 2018

That did the trick! Thank you!

Like
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Notice at Collection Terms Security