Insecure Content Warning in Browser on an SSL Instance

お困りですか?

アトラシアン コミュニティをご利用ください。

コミュニティに質問

症状

When accessing the dashboard on a JIRA instance displaying an activity stream, the browser may display a warning similar to:

  • This page has insecure content
  • Mixed content warning
  • Only secure content is displayed

原因

The activity stream displays content using the Base URL configured in the JIRA instance.  This may cause the browser to flag the page as insecure due to the mixed SSL and non-SSL content.  A user can see the mixed URL content when using the developer tools to inspect a page.

In Chrome the dev tools can be accessed by  right clicking the page, then >> Inspect element 


ソリューション

  • Update the Base URL configuration to use the https url.  This setting is is found in Administration >> System >> General Configuration >> Base URL.
  • For user who are integrated JIRA with Proxy SSL such as Nginx or Apache, please add this variables (proxyName, proxyPort, scheme and secure) in your JIRA server.xml like below:

    <!-- OPTIONAL Proxy Connector with https -->
    <Connector port="8080" maxThreads="150" minSpareThreads="25" connectionTimeout="20000" enableLookups="false" maxHttpHeaderSize="8192" protocol="HTTP/1.1" useBodyEncodingForURI="true" redirectPort="8443" acceptCount="100" disableUploadTimeout="true"
    proxyName="www.atlassian.com" proxyPort="443" scheme="https" secure="true"/>

最終更新日 2017 年 3 月 14 日

この内容はお役に立ちましたか?

はい
いいえ
この記事についてのフィードバックを送信する
Powered by Confluence and Scroll Viewport.