Confluence cannot connect to Synchrony due to Error validating JWT

Still need help?

The Atlassian Community is here for you.

Ask the community

Platform Notice: Server and Data Center Only - This article only applies to Atlassian products on the server and data center platforms.

Problem

Confluence is unable to communicate with Synchrony due to an error validating the JWT keys. This issue may be triggered by the following actions:

  • Migrating Confluence to a new server
  • Editing confluence.cfg.xml to point to a new database
  • Changing Synchrony Service URL

The following appears in the atlassian-confluence.log:

2017-08-24 17:02:27,968 INFO [http-nio-8090-exec-5] [synchrony.service.http.SynchronyRequestExecutor] execute Initiating request PUT http://127.0.0.1:8091/synchrony/v1/data/Synchrony-7932af45-8ff9-3ecd-9ab7-b57b455a9a67/confluence-627964 HTTP/1.1 for 627964
2017-08-24 17:02:28,381 WARN [http-nio-8090-exec-5] [synchrony.service.http.SynchronyResponseHandler] failed Synchrony external changes API call returned 401: {"type":"jwt\/unknown-iss","message":"Error validating JWT"} content-id: 627964 rev: null ancestor: null merges: {"confVersion":"9","trigger":null,"type":"external"} generate-rev: true generate-reset: true
 -- space: 655364 | url: /confluence/plugins/editor-loader/editor.action | page: 627964 | traceId: a83ea4394f641bc7 | userName: admin | referer: http://localhost:8090/confluence/display/TST/test | action: editor

Environment

This article only applies to Confluence versions below 6.5.

Cause

On the Warning portion of the messages, we can see an Error validating JWT. The JWT is a key used to authenticate the communication between Confluence and Synchrony. Since the key is not being validated, the communication is failing.

Workaround Confluence 6.5 and bellow

  1. Go to Collaborative Editing page, set the mode to Off and wait for Synchrony to stop 
  2. Download the file Sec.jar
  3. Run the following command in a terminal:

    java -jar Sec.jar
  4.  Stop Confluence
  5.  Copy and paste the output into <confluence-home>/confluence.cfg.xml, we need to replace jwt.private.key and jwt.public.key properties entirely
  6.  Start Confluence
  7.  Set the Collaborative Editing mode back to On

Workaround Confluence 6.6 and above

  1. Turn off Collaborative editing in Confluence Administration
  2. Set it to On again.

Note

The JWT keys have not been used in the communication between Confluence and Synchrony since version 6.5. If you are seeing similar errors in versions above that, these instructions are not valid. Reach out to the support team to investigate it further if the workaround for version 6.6 and up does not help.


Last modified on Dec 31, 2019

Was this helpful?

Yes
No
Provide feedback about this article
Powered by Confluence and Scroll Viewport.