marianogedisman
New Member
Hello! I've followed this instructions to enable SSL (through my CloudFlare domain) on my Jira DC instance (Server version: Apache/2.4.58 (Linux/SUSE))
https://thejiraguy.com/2021/10/14/adding-ssl-to-jira/
(here's the vhost code pastebin: https://pastebin.com/u7yyeBUx
Unfortunately it didn't work. I get a constant 301 loop (I guess http sends to https and so on?).
I have an A record setup on the server's pub_ip address, it works just fine with Zabbix for example.
I'm going a bit crazy trying to figure out where the loop happens. I've tried a few options like setting ProxyRequests Off and also setting my domain directly as HTTPS:
But that didn't work either.
All my our other tools (Zabbix, Grafana, WikiJS) work just fine on reverse proxy Apache, not sure what's the deal with Jira not wanting to kick into work. Maybe an issue with Cloudflare?
Should Tomcat be listening on 443 instead of Apache??
When I try to hit the application, apache log shows:
So the server is reachable, it's just the config that is wrong. Not sure what could be though, tried several options but nothing.
https://thejiraguy.com/2021/10/14/adding-ssl-to-jira/
(here's the vhost code pastebin: https://pastebin.com/u7yyeBUx
Unfortunately it didn't work. I get a constant 301 loop (I guess http sends to https and so on?).
I have an A record setup on the server's pub_ip address, it works just fine with Zabbix for example.
I'm going a bit crazy trying to figure out where the loop happens. I've tried a few options like setting ProxyRequests Off and also setting my domain directly as HTTPS:
Code:
ProxyPass / https://jira.mediasoft.com:8080/
ProxyPassReverse / https://jira.mediasoft.com:8080/
But that didn't work either.
All my our other tools (Zabbix, Grafana, WikiJS) work just fine on reverse proxy Apache, not sure what's the deal with Jira not wanting to kick into work. Maybe an issue with Cloudflare?
Should Tomcat be listening on 443 instead of Apache??
Code:
ss -tulpn
Netid State Recv-Q Send-Q Local Address:Port Peer Address:Port Process
udp UNCONN 3584 0 0.0.0.0%eth0:68 0.0.0.0:* users:(("wickedd-dhcp4",pid=892,fd=8))
udp UNCONN 0 0 127.0.0.1:323 0.0.0.0:* users:(("chronyd",pid=1448,fd=5))
udp UNCONN 0 0 [::1]:323 [::]:* users:(("chronyd",pid=1448,fd=6))
tcp LISTEN 0 128 0.0.0.0:22 0.0.0.0:* users:(("sshd",pid=13260,fd=3))
tcp LISTEN 0 10 *:8090 *:* users:(("java",pid=27041,fd=45))
tcp LISTEN 0 100 *:8080 *:* users:(("java",pid=4508,fd=121))
tcp LISTEN 0 128 [::]:22 [::]:* users:(("sshd",pid=13260,fd=4))
tcp LISTEN 0 4096 *:80 *:* users:(("httpd-prefork",pid=5470,fd=4),("httpd-prefork",pid=5469,fd=4),("httpd-prefork",pid=5468,fd=4),("httpd-prefork",pid=5467,fd=4),("httpd-prefork",pid=5466,fd=4),("httpd-prefork",pid=5452,fd=4))
tcp LISTEN 0 4096 *:443 *:* users:(("httpd-prefork",pid=5470,fd=6),("httpd-prefork",pid=5469,fd=6),("httpd-prefork",pid=5468,fd=6),("httpd-prefork",pid=5467,fd=6),("httpd-prefork",pid=5466,fd=6),("httpd-prefork",pid=5452,fd=6))
tcp LISTEN 0 1 [::ffff:127.0.0.1]:8000 *:* users:(("java",pid=27041,fd=79))
tcp LISTEN 0 1 [::ffff:127.0.0.1]:8005 *:* users:(("java",pid=4508,fd=506))
When I try to hit the application, apache log shows:
[10/Sep/2024:16:15:40 +0000] "GET / HTTP/1.1" 500 - "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/17.6 Safari/605.1.15"
So the server is reachable, it's just the config that is wrong. Not sure what could be though, tried several options but nothing.