Confluence throws JsonParseException when Updating Atlassian Secure Tunnel Plugin

Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.

Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

Summary

Updating Atlassian Secure Tunnel Plugin gets stuck and doesn't allow to update other Plugins. The stuck threads of Atlassian Secure Tunnel Plugin will not allow to update other plugins.

Diagnosis

While updating the Atlassian Secure Tunnel Plugin, the plugin update gets stuck and following error/exception is thrown in atlassian-confluence.log

1 2 3 4 5 6 2023-04-24 08:23:06,961 WARN [UpmAsynchronousTaskManager:thread-3] [tunnel.configuration.dao.EncryptingTunnelDao] deleteTunnelKey Could not delete token key -- url: /rest/plugins/1.0/ | referer: https://wiki.abcd.com/plugins/servlet/upm | traceId: 554c5779409c3 | userName: admin com.google.gson.JsonParseException: Expecting object found: "YlsMyoRm3uAlr8Z2tZ_emfj0eU-dJExLgyv-BCtg_Qbh-hA" at com.google.gson.JsonObjectDeserializationVisitor.visitFieldUsingCustomHandler(JsonObjectDeserializationVisitor.java:100) at com.google.gson.ReflectingFieldNavigator.visitFieldsReflectively(ReflectingFieldNavigator.java:63) at com.google.gson.ObjectNavigator.accept(ObjectNavigator.java:120)

Additionally you will be able to see below error/exceptions in atlassian-confluence.log

1 2 3 4 5 2023-07-14 10:59:16,042 ERROR [Caesium-1-1] [tunnel.configuration.dao.EncryptingTunnelDao] decrypt Could not decrypt token com.google.gson.JsonParseException: Expecting object found: "rO0ABXNyABlqYXZheC5jcnlwdG8uU2VhbGVkT2JqZWN0PjY9psdAACW0JbABBlbmNyeXB0ZWRDb250ZW50cQB+AAFMAAlwYXJhbXNBbGd0ABJMamF2YncQB+AAJ4cHVyAAJbQqzzF" at com.google.gson.JsonObjectDeserializationVisitor.visitFieldUsingCustomHandler(JsonObjectDeserializationVisitor.java:100) at com.google.gson.ReflectingFieldNavigator.visitFieldsReflectively(ReflectingFieldNavigator.java:63) at com.google.gson.ObjectNavigator.accept(ObjectNavigator.java:120)

Cause

The exception/error are caused due to corrupted tokens for the Application Tunnel configured in Confluence.

Solution

Resolution

Regenerate the security key for impacted application tunnel. Please follow below steps

  • Regenerate the security key in admin.atlassian.com. To generate the security key:

    1. Go to admin.atlassian.com.

    2. Go to Settings > Application tunnels.

    3. Next to your tunnel, select Actions > Regenerate security key.

    4. Go through the wizard to generate a new security key.

    5. Update the key in your self-managed instance. You can either choose to be redirected to your instance, or copy the key and give it to the admin of this instance so they can update it manually.

Updated on April 7, 2025
Platform
Data Center only
Product
Confluence Data Center
On this pageSummaryDiagnosisCauseSolution

Still need help?

The Atlassian Community is here for you.
Ask the Community