How to create a Tomcat unproxied connector (backdoor)
プラットフォームについて: Server および Data Center のみ。この記事は、Server および Data Center プラットフォームのアトラシアン製品にのみ適用されます。
Server* 製品のサポートは 2024 年 2 月 15 日をもって終了します。Server 製品を利用している場合は、Atlassian Server のサポート終了のお知らせページにて移行オプションをご確認ください。
*Fisheye および Crucible は除く
When needing to access specific nodes in a Jira DC Cluster, it is necessary to have a separate Tomcat connector, without using the LB as proxy for access.
- Proxied address:
- Unproxied address:
You must be able to browse to the application via the unproxied URL. Some network configurations may allow communication between the two servers, but you must be able to browse to the unproxied addresses for the purpose of creating the application link.
Set up an unproxied HTTP connector in Tomcat
To bypass a reverse proxy or SSL configuration, introduce an additional HTTP connector in Tomcat. The following is a bare minimum HTTP connector for use in Tomcat across Atlassian Products:
To make use of this, edit the
server.xml file for the application in question. The connector must be added inside the
Service element. You will also need to restart the application to take effect.
You should adjust the value of the
port attribute in the new connector. Ensure to use a port that isn't already used by any application on the same physical machine. For example, if you have JIRA listening for incoming connections on port 8080 (which is in turn connected to a reverse proxy), you should change your new connector to something else, such as 8081.
Note for SSO bypass
The SSO configuration may need to be bypassed in order to log in to the node directly without redirection to SSO URL. See this page for instructions: