Login failed with request has arrived WITHOUT a JSESSIONID cookie
Platform Notice: Data Center Only - This article only applies to Atlassian products on the Data Center platform.
Note that this KB was created for the Data Center version of the product. Data Center KBs for non-Data-Center-specific features may also work for Server versions of the product, however they have not been tested. Support for Server* products ended on February 15th 2024. If you are running a Server product, you can visit the Atlassian Server end of support announcement to review your migration options.
*Except Fisheye and Crucible
Summary
Problem
Users are not able to login JIRA application and keeps getting redirected back to the login page without any error.
The following appears in the atlassian-jira-security.log
1
2
3
4
5
6
7
8
9
10
11
12
13
14
2015-12-28 09:57:47,662 http-nio-8704-exec-10 admin 597x173x1 - 127.0.0.1 /rest/gadget/1.0/login The user 'admin' has PASSED authentication.
2015-12-28 09:57:47,670 analyticsEventProcessor:thread-1 anonymous Setting JIRA Auth Context to be 'anonymous'
2015-12-28 09:57:47,671 analyticsEventProcessor:thread-1 anonymous Setting JIRA Auth Context to be 'anonymous'
2015-12-28 09:57:47,674 http-nio-8704-exec-10 admin 597x173x1 14nnevm 127.0.0.1 /rest/gadget/1.0/login Gadget login called with lastLoginResult : com.atlassian.jira.bc.security.login.LoginResultImpl@3fcc3085[reason=OK,loginInfo=com.atlassian.jira.bc.security.login.LoginInfoImpl@4f0efad5[lastLoginTime=1451267867635,previousLoginTime=1451267834825,loginCount=121,currentFailedLoginCount=0,totalFailedLoginCount=<null>,lastFailedLoginTime=<null>,elevatedSecurityCheckRequired=false,maxAuthenticationAttemptsAllowed=3],userName=admin,deniedReasons=[]]
2015-12-28 09:57:47,697 http-nio-8704-exec-8 anonymous 597x174x1 - 127.0.0.1 / There is no cookie header.
2015-12-28 09:57:47,698 http-nio-8704-exec-8 anonymous 597x174x1 - 127.0.0.1 / The request has arrived WITHOUT a JSESSIONID cookie
2015-12-28 09:57:47,706 http-nio-8704-exec-16 anonymous 597x175x1 - 127.0.0.1 /secure/MyJiraHome.jspa There is no cookie header.
2015-12-28 09:57:47,707 http-nio-8704-exec-16 anonymous 597x175x1 - 127.0.0.1 /secure/MyJiraHome.jspa The request has arrived WITHOUT a JSESSIONID cookie
2015-12-28 09:57:47,711 http-nio-8704-exec-16 anonymous 597x175x1 - 127.0.0.1 /secure/MyJiraHome.jspa HttpSession created [1wzw0uv]
2015-12-28 09:57:47,726 http-nio-8704-exec-11 anonymous 597x176x1 - 127.0.0.1 /secure/Dashboard.jspa There is no cookie header.
2015-12-28 09:57:47,726 http-nio-8704-exec-11 anonymous 597x176x1 - 127.0.0.1 /secure/Dashboard.jspa The request has arrived WITHOUT a JSESSIONID cookie
2015-12-28 09:57:47,729 http-nio-8704-exec-11 anonymous 597x176x1 - 127.0.0.1 /secure/Dashboard.jspa HttpSession created [6b5w9s]
2015-12-28 09:57:47,730 http-nio-8704-exec-11 anonymous 597x176x1 - 127.0.0.1 /secure/Dashboard.jspa Gadget login called with lastLoginResult : null
2015-12-28 09:57:47,731 analyticsEventProcessor:thread-1 anonymous Setting JIRA Auth Context to be 'anonymous'Diagnosis
No SSL and/or proxy configured
Username and password is entered correctly
Cause
There is an extra secure="true" argument in the <JIRA_INSTALL>\conf\server.xml file despite no SSL is configured.
1
2
3
4
5
6
7
8
9
10
11
12
<Connector port="8080"
maxThreads="150"
minSpareThreads="25"
connectionTimeout="20000"
secure="true"
enableLookups="false"
maxHttpHeaderSize="8192"
protocol="HTTP/1.1"
useBodyEncodingForURI="true"
redirectPort="8443"
acceptCount="100"
disableUploadTimeout="true"/>Solution
Resolution
Remove the secure="true" argument and restart JIRA.
Was this helpful?