Data Center How to bypass a reverse proxy or SSL in Application Links
Platform notice: Server and Data Center only. This article only applies to Atlassian products on the Server and Data Center platforms.
Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.
*Except Fisheye and Crucible
Purpose
When working with Application Links, it may be necessary to bypass any existing reverse proxy or SSL configuration, without disrupting normal usage for your instances.
You may also wish to use this process to bypass a proxy during the troubleshooting process.
For details on how to do so, please refer to Bypass a proxy or SSL to test network connectivity for Jira server.
Reasons to bypass a reverse proxy or SSL configuration
- You may wish to bypass any overhead associated with the reverse proxy, or SSL configuration.
- Bypassing the reverse proxy reduces the amount of traffic incoming to the reverse proxy.
- Bypassing the reverse proxy for troubleshooting purposes.
Application links that bypass the reverse proxy can be configured with the proxied URL. This means that users of the applications will still see the proxied URL, but the applications will communicate over the unproxied URL.
Solution
<Connector port="8080" connectionTimeout="20000" maxThreads="200" minSpareThreads="10"
enableLookups="false" acceptCount="10" URIEncoding="UTF-8" />
To make use of this, edit the server.xml
file for the application in question. The connector must be added inside the Service
element. You will also need to restart the application to take effect.
You should adjust the value of the port
attribute in the new connector. Ensure to use a port that isn't already used by any application on the same physical machine. For example, if you have JIRA listening for incoming connections on port 8080 (which is in turn connected to a reverse proxy), you should change your new connector to something else, such as 8081.
Running Jira 7.12.3, 7.13.0 or higher?
In these versions of JIRA (and above) you must add some additional parameters to the connector:
relaxedPathChars="[]|" relaxedQueryChars="[]|{}^\`"<>"
For more information, please see this Jira specific KB article.
If web.xml
has been edited as per our documentation to redirect to SSL, the following lines will need to be removed:
Bitbucket Server 5.0
As of Bitbucket Server 5.0, you can't configure any Tomcat connectors directly as the application runs on Spring Boot.
The usual server.xml
configurations have been replaced by properties that need to be configured on <Bitbucket home directory>
/shared/bitbucket.properties
Similarly, you can't configure web.xml.
In order to add a new HTTP connector for this purpose, this is the only configuration you need:
server.additional-connector.1.port=8080
Please read through Migrate server.xml customizations to bitbucket.properties
server.xml
file depends on your application, operating system, and installation location. Common default installation locations for Atlassian applications are:
- Linux:
/opt/atlassian/<application-name>
- Windows:
C:\Program Files\Atlassian\<application-name>
- Windows:
C:\Atlassian\<application-name>
Locations in Atlassian application's folder structure:
Application | server.xml location |
---|---|
Bamboo | <install-path>/conf/ |
Confluence | <install-path>/conf/ |
Crowd | <install-path>/apache-tomcat/conf/ |
Crucible | As for Fisheye. |
Fisheye | The Fisheye configuration file is config.xml , see Configuring the Fisheye web server and How to enable Fisheye/Crucible to listen to web requests on additional ports. |
JIRA applications | <install-path>/conf/ |
Bitbucket Server 5.0 | N/A, replaced by Please read through Migrate server.xml customizations to bitbucket.properties |
Bitbucket Server 4.0 – 4.14 | <Bitbucket home directory> /shared/server.xml |
Stash 3.8 – 3.11 |
If you are on any of these later releases but your We recommend that you copy |
Stash 3.7 and earlier | <install-path>/conf/ |
<install-path>
refers to where the application was installed on your system.
Further Reading