WebSudo Login Issues With HAProxy

Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.

Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.

*Except Fisheye and Crucible

Summary

Problem

Accessing Admin-related functions require a websudo authentication. With HAProxy in front of Confluence (as a load balancer for the Data Center), this becomes a problem if HAProxy is not configured correctly

Diagnosis

Environment

  • This applies only to HAProxy configurations with Confluence

Cause

Indirect flag in the cookie configuration in HAProxy, example:

1 2 3 4 5 6 7 8 9 backend confluence_app option httplog option forwardfor option http-server-close option httpchk mode http balance roundrobin cookie JSESSIONID prefix indirect nocache

According to https://cbonte.github.io/haproxy-dconv/configuration-1.5.html :

Note: it is highly recommended not to use "indirect" with "prefix", otherwise server cookie updates would not be sent to clients

Solution

Resolution

Remove the indirect flag in the cookie configuration in HAProxy, followed by a restart

Updated on April 2, 2025
Platform
Data Center only
Product
Confluence Data Center
On this pageSummaryDiagnosisCauseSolution

Still need help?

The Atlassian Community is here for you.
Ask the Community