Constantly logged out of Bamboo

Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.

Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

Summary

Symptoms

Bamboo User is constantly logged out of Bamboo when switching Between Bamboo and another Atlassian application.

Also the following error can be seen numerous times throughout the logs.

atlassian-bamboo.log:

1 Authorization failed: org.acegisecurity.AccessDeniedException: Access is denied; authenticated principal: org.acegisecurity.providers.anonymous.AnonymousAuthenticationToken@6fabe8e0: Username: anonymousUser; Password: [PROTECTED]; Authenticated: true; Details: org.acegisecurity.ui.WebAuthenticationDetails@fffe9938: RemoteIpAddress: XXXXXXXXX; SessionId: FD4C889BC711D2F68CC6E9E6D291BD15; Granted Authorities: ROLE_ANONYMOUS; secure object: com.atlassian.bamboo.webwork.StarterAction@38b0321f; configuration attributes: [WW_READ, GLOBAL_READ]

Diagnosis

This occurs when Bamboo and another Tomcat wrapped Atlassian application are accessible at the exact same domain with only differentiating ports.

Cause

The JSESSIONID portion of the cookie does not retain the port number:

(Auto-migrated image: description temporarily unavailable)

If another application is located at the same domain (in this case localhost) and is accessed/logged into, the JSESSIONID will change and Bamboo will reject the entire cookie, requiring the user to login again.

Solution

Workaround

  1. Select the "Remember Me" option when logging into the application so it saves your session and won't rely on the cookies.

  2. Route your Bamboo application (host_address:8085 for example) to a different URL (host_address/bamboo for example) and do the same with the other Atlassian applications

Updated on April 2, 2025
Platform
Data Center only
Product
Bamboo Data Center
On this pageSummaryDiagnosisCauseSolution

Still need help?

The Atlassian Community is here for you.
Ask the Community