이 문서는 Jira, Confluence, Bitbucket, Bamboo 등 Atlassian 제품 군에서 HTTPS(SSL) 설정에 대한 가이드를 제공합니다.
1) Key 파일 저장
[atlassian@JIRA application-data]$ pwd /data/atlassian/application-data [atlassian@JIRA application-data]$ ls crowd jira keystore |
2) Https 접근 허용을 위하여 server.xml 수정
[atlassian@JIRA conf]$ pwd
/data/atlassian/confluence/conf
[atlassian@JIRA conf]$ vi server.xml
<Connector port="80" connectionTimeout="20000" redirectPort="443"
<Connector port="443" maxHttpHeaderSize="8192"
maxThreads="150" minSpareThreads="25"
protocol="org.apache.coyote.http11.Http11NioProtocol"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" scheme="https" secure="true"
clientAuth="false" sslProtocols="TLSv1,TLSv1.1,TLSv1.2" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" SSLEnabled="true"
URIEncoding="UTF-8" keystorePass="keypass"
keystoreFile="/data/atlassian/application-data/keystore"/> |
3) web.xml 파일 수정
[atlassian@JIRA WEB-INF]$ pwd
/data/atlassian/confluence/confluence/WEB-INF
[atlassian@JIRA WEB-INF]$ vi web.xml
<security-constraint>
<web-resource-collection>
<web-resource-name>Restricted URLs</web-resource-name>
<url-pattern>/</url-pattern>
</web-resource-collection>
<user-data-constraint>
<transport-guarantee>CONFIDENTIAL</transport-guarantee>
</user-data-constraint>
</security-constraint>
</web-app> |
4) 서버 재시작