Using AJP with FishEye

You can use the AJP protocol to proxy inbound requests from a web server through to an application server that sits behind the web server. The Apache Tomcat servlet container and the Jetty servlet container both support AJP.

AJP expects requests to be pre-authenticated via an external server before arriving at FishEye. Typically, this would be a web server (e.g. Apache) configured to perform password and role checking for a given URL. If successful, the server forwards the request to the FishEye server using the AJP protocol.

FishEye configuration

For FishEye to use AJP authentication, the following two values must be configured:

• The AJP Bind Address must be set per FishEye instance. See also Server Settings.
• The user's Auth Type must be set to 'ajp'.

Apache configuration

mod_proxy_ajp

To configure Apache Httpd to forward all requests for /fisheye to a Fisheye instance with an AJP Bind address of localhost:8009, on the same machine, ensure that the Apache proxy_ajp_module module is enabled, and add these lines to the VirtualHost you wish to serve FishEye through:

ProxyPass /fisheye/ ajp://localhost:8009/fisheye/ nocanon

mod_jk

To configure Apache Httpd so that all requests to Apache Httpd for the path /fisheye are forwarded to a FishEye instance on the same machine with an AJP Bind Address of localhost:8009, add these lines to your Apache configuration:

LoadModule jk_module modules/mod_jk.so

JkWorkersFile /path/to/workers.properties
JkLogFile /var/log/mod_jk.log
JkLogLevel debug
JkLogStampFormat "[%a %b %d %H:%M:%S %Y] "
JkMount /fisheye/* worker1

JkOptions +ForwardURICompatUnparsed

Then create a file under /path/to/workers.properties and add:

worker.list=worker1
worker.worker1.type=ajp13
worker.worker1.host=localhost
worker.worker1.port=8009