Configuring Crowd to Work with SSL needs a bit of a sprucing up.
Example connector out of date
The example connector (which most customers use by default) is missing many of the configuration that is included in the default 8095 connector included in Crowd. This can lead to issues that result in a support ticket.
There is not section on adding a redirect
Confluence includes a section on adding a security constraint to automatically redirect traffic from http to https, this is missing in the Crowd documentation. While it's possible to figure out how to add this by reviewing other Atlassian product documentation (or Tomcat documentation), it's easy to miss all of the areas in which you need to add the security constraint (as Crowd has 4 webapps, vs 1 for Confluence).
There is no step to update the base url
Updating the base url is an important step that is easy to forget, the documentation should include it.
Update the example connector to include all settings from the 8095 default connector:
Add a section detailing how to implement https redirect
Edit these files:
Add the following at the end of the file before the </web-app> tag:
Add a section that details how to update the base url:
- In your browser, go to > General
- Change the Base URL field from http to https