Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

jira behind a proxy - known workarounds to see IP address of user sessions ?

AM12
AM
Contributor
February 26, 2012

To quote Nick Mason [Atlassian]

"Currently if JIRA is running behind Apache or another proxy server, the "User Sessions" page will show only the IP address of the reverse proxy itself, not the user."

Any ideas / known workarounds ..?

----

Quote taken from:

User Sessions page should read/show X-Forwarded-For HTTP header
https://jira.atlassian.com/browse/JRA-22399

Answer
Watch
Like Be the first to like this
3559 views

6 answers

0 votes
AM12
AM
Contributor
March 25, 2012

Atlassian should point this out in the docs until JRA-22399 is fixed

https://confluence.atlassian.com/display/JIRA/Integrating+JIRA+with+Apache

Reply
0 votes
AM12
AM
Contributor
March 25, 2012

Okay, no workaround for a JIRA application admin (I'm not talking about access to logs via shell etc.).

Community,

this is a simple piece of work but could help a lot in proxy environments - please help by voting and writing comments:

https://jira.atlassian.com/browse/JRA-22399

Thanks
A-M

Reply
0 votes
AM12
AM
Contributor
February 27, 2012

Nic, you wrote:

"No - you'd need to configure all of the proxies in the chain to add/retain the information for Jira to pick up."

Would you explain how to this in general except (e.g. using Apache ) using http://en.wikipedia.org/wiki/X-Forwarded-For (or any other reverse proxy and proxy feature) ?

Reply
0 votes
Ivar
Ivar
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 26, 2012

This was actually the main reason why we discontinued Crowd. The users IP address was unavailable to us unless we spent another 2000 € on a plug-in to ISA 2006 server to forward the original client IP adr. Without this - no SSO for our Confluence/Jira setup.

View More Comments
Ivar
Ivar
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 26, 2012

@Nic; say that to Atlassian, not me. It is their solution for SSO that uses IP-adr, not mine :) We just tried to comply with the given security model they've implemented, without success.

Like
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 26, 2012

You shouldn't be doing any form of security (including SSO authentication) with IP addresses, it's an absolute doddle to bypass and hack (assuming you're not on a completely physically closed network)

Like
Reply
0 votes
Nic Brough -Adaptavist-
Nic Brough -Adaptavist-
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 26, 2012

No - you'd need to configure all of the proxies in the chain to add/retain the information for Jira to pick up. The only workaround I know of is to read the proxy logs to find out what the incoming connections present (and bear in mind IP addresses are only useful for debugging on your local network, and shouldn't be used for much else)

View More Comments
AM12
AM
Contributor
February 27, 2012

Nic, you wrote:

"No - you'd need to configure all of the proxies in the chain to add/retain the information for Jira to pick up."

Would you explain how to this in general except (e.g. using Apache ) using http://en.wikipedia.org/wiki/X-Forwarded-For (or any other reverse proxy and proxy feature) ?

Like
Reply
0 votes
Radu Dumitriu
Radu Dumitriu
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
February 26, 2012

None that I know.

Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.